Case study

Improving their human risk management

Industry:
Service Industry / Technology

Employees:
> 30,000

Bilfinger is an international industrial services provider aimed at enhancing efficiency and sustainability in the process industry. They offer a broad range of services and digital applications across the value chain. Active primarily in Europe, North America, and the Middle East, Bilfinger serves sectors like energy, chemicals, pharma, and oil & gas. With around 30,000 employees, the company emphasizes safety, quality, and generated €4.5 billion in revenue in 2023.

“Recognizing the critical role of the human element in cyber security, we partnered with SoSafe to fortify our defences against the most common entry point for cyber threats: email. By adopting a holistic approach that combines targeted knowledge transfer with practical, impactful tools, we have not only enhanced our workforce’s ability to identify potential threats but have also cultivated a robust cyber security culture.”

Nnamdi Ozonma
Information Security Officer

Challenge

Enhancing cyber security through improved human risk management

Bilfinger recognised the importance of the human element in cyber security. Aware that nearly all successful cyber attacks involve email as a key attack vector, they aimed to enhance their employees’ preparedness. Strengthening this human aspect was identified as the main goal to bolster overall security resilience.

Solution

Holistic approach to cyber security with targeted knowledge transfer and impactful tools

Bilfinger chose SoSafe for their specialized expertise in knowledge transfer and education. SoSafe’s approach focuses on using tools that have a real impact on learners. This method involves mirroring real-world scenarios, which allows employees to apply their learning practically through simulations. The strategy proved effective in educating the workforce about recognizing potential threats and significantly enhancing the security culture.

Result

Building a strong cyber security culture through continuous training

The implementation of SoSafe’s programme led to a notable increase in threat reporting, driven by heightened awareness and more accessible reporting options. This improvement reflects a significant shift in employee behaviour across all levels, from frontline staff to senior management, demonstrating a deeper understanding of potential cyber threats. The behavioural changes, along with other strategic measures, have fostered a more security-aware culture within the organisation. Collectively, these efforts have positioned Bilfinger as a model for effective human risk management in cyber security.

Ralf Schumacher
live at HuFiCon 2025

Six-time Grand Prix winner Ralf Schumacher brings a high-performance mindset to HuFiCon’s main stage — discover his playbook for human-first resilience.

Register now
Popup background

Compliance & security

ISO 27001
TISAX
GDPR

Industry recognition

The Forrester Wave™ Strong Performer 2024: Human Risk Management Solutions

Experience our products first-hand

Use our online test environment to see how our platform can help you empower your team to continuously avert cyber threats and keep your organization secure.

The Forrester Wave™ Strong Performer 2024: Human Risk Management Solutions