SecProve
ProfessionalVendor-neutralBSI· issued from DE

IT-Grundschutz-Berater

BSI Zertifizierter IT-Grundschutz-Berater

Personnel certification by the Federal Office for Information Security (BSI). The exam is administered exclusively by the BSI in Bonn — 80 questions in 90 minutes with case studies. Strict prerequisites: min. 5 years IT professional experience, including 2 years in information security, plus proven IT-Grundschutz project leadership. Only approx. 287 certified consultants listed nationwide. The BSI follows ISO 17024 but is not DAkkS-accredited — the certificate is issued by governmental authority. In government agencies and KRITIS environments the strongest German credential for IT-Grundschutz competence.

Official page at BSI↔ Compare with another cert
Exam fee
$2,500
Ongoing
Study time
80–160 hrs
Delivery
Validity

› Quality score

27.5 / 40

Four-axis SecProve rubric, each 0–10. SecProve editorial assessment — each axis carries a written justification so you can push back on any single call without dismissing the whole score.

Blueprint rigor
How well-defined and rigorous the exam blueprint is.
BSI publishes the Grundschutz catalogues with extreme rigour.
8.5/10
Practical evidence
Hands-on labs / written reports vs pure MCQ.
Three-day course + exam plus practical work product (consultant tier).
4.5/10
Currency & upkeep
How aggressively content is kept current with the field.
BSI keeps Grundschutz current; modular updates each year.
8.5/10
Market recognition
How often this signal actually moves a hiring decision.
Default consultant credential in German federal / KRITIS environments.
6.0/10

› Market signals

public, citable inputs to the recognition score

Default consultant credential in German federal / KRITIS environments. Recognised under §8a BSIG audit framework.

› Built for these roles

IT-Grundschutz ConsultantCISO in GovernmentKRITIS ConsultantISMS AuditorSecurity Consultant in Public Sector

› Exam format

Written, 80 questions (75 MC + 5 case studies), 90 minutes, 60/100 points to pass, only in Bonn at BSI

› Recertification

Every 3 years, proof of activity + participation in BSI experience exchange, 221 EUR fee

› NICE Framework work roles

The NIST NICE work-role IDs this cert maps to. NICCS lookup.

OG-WRL-014OG-WRL-012OG-WRL-002
Recognition
DE
Exam languages
de

› Core domains covered

The 1 domain this cert is centrally about. Passing the exam demonstrates working knowledge of each.

A1Governance, Risk & Compliance

Risk frameworks (NIST RMF, ISO 31000, FAIR), policy development, audit, regulatory compliance, third-party risk.

› Prerequisites

Experience

IT-Grundschutz-Praktiker + advanced training (2 days) + min. 5 years IT experience + 2 years IS + leading project work (40+ person-days)

See this cert’s domains highlighted on the interactive map, or compare it against the rest of the catalog.

Highlight on the domain mapBrowse all certifications