How does a top German bank manage cyber readiness?

How does a top German bank manage cyber readiness?

DZ BANK AG is Germany's second-largest bank. It’s a central institution to around 800 cooperative banks, and a core part of the financial infrastructure that millions of people and businesses across Germany rely on.

It goes without saying that the cyber security team protecting it needs to be sharp, aligned, and ready to respond when it counts.

Cyber readiness has to work in real conditions

But analysts are busy. Shift work means you're rarely getting everyone together at the same time. New hires can often find themselves onboarding with three or four disconnected platforms, making it nearly impossible to build a consistent baseline across the team.

And running meaningful group exercises can require a level of coordination that just isn’t sustainable.

Then there’s the compliance angle. German legislation means DZ BANK can't track individual training data. So the usual way of measuring impact wasn’t an option for the team.

These constraints are exactly why their approach and subsequent success is so interesting.

Flexible and consistent for the needs of finance

Rather than trying to force a standard training model into a non-standard environment, DZ BANK focused on what they could see: whether people were more confident, whether onboarding was more consistent, and whether the team was better prepared when a real incident landed.

With TryHackMe, they built a program that actually fits:

  • Self-paced, bite-sized learning actually aligns to the pressure and realities of shift work
  • Learning paths create consistent baseline knowledge across the team
  • Group exercises are easy to organize, and strengthen collaboration and decision making
  • Relevant insights don’t conflict with Germany regulations

If your organization is dealing with the same tension between regulatory constraints and the need for real, practical security training,  this case study is well worth a read.