Cisco XDR BSI C5 Attestation At a Glance
Available Languages
Bias-Free Language
The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
The Cisco extended detection and response solution, Cisco XDR, has achieved BSI C5 attestation, meeting rigorous cloud computing and security standards in Germany and across the EU region.
Modernize security operations with an attested, cloud-first XDR solution
What is BSI C5 attestation?
BSI C5 (Cloud Computing Compliance Criteria Catalogue) is an attestation developed by the German Federal Office for Information Security, or Bundesamt für Sicherheit in der Informationstechnik, a crucial institution for ensuring a secure digital landscape in Germany. It sets forth criteria for cloud service providers to demonstrate compliance with rigorous security and transparency standards.
● Enhanced Security
BSI C5 attestation affirms that the cloud-first Cisco XDR maintains high levels of security — helping protect your data, networks, and users against evolving threats.
● Transparency and Trust
BSI C5 attestation documents that Cisco XDR operates with full transparency and in accordance with the BSI C5 criteria catalogue, giving you confidence in Cisco’s platform security and your data handling.
● Compliance Assurance
Meet strict regulatory requirements and industry standards — making it easier to stay compliant with German and EU cloud security and data protection needs.
The BSI attaches great importance to transparency.
As part of an audit, the cloud provider must provide a detailed system description and submit environmental parameters that provide information on data location, service provision, jurisdiction, location, certifications, as well as investigation and disclosure obligations towards government agencies.
As a result of the created transparency, it is easier for your organization to decide whether cloud services comply with legal regulations (e.g. data protection), your own guidelines, or the risk situation with regards to industrial espionage.
Cisco XDR presently has achieved the following certifications:
● C5 (Germany/EU)
● CMMC (USA)
● ENS High (Spain/EU)
● ISO 27001 (Global)
● SOC2 Type 2 (Global)
Verify and Get Started
1. Visit the Cisco Trust Portalv
2. Click the “Get documents” button
3. Search for “Cisco XDR”
4. Download the Cisco XDR BSI C5 attestation
Visit the Cisco XDR webpage for additional resources and self-guided product demo.