Swisscom Iot Inspector Security

How Swisscom saves USD 400,000 per avoided IoT security incident through automated firmware analysis

Better Safe Than Sorry: How Swisscom Increases Security ROI by CHF 374K

Swisscom analyzes around 80 firmware images per year, mainly as part of its procurement process for new IoT devices, as well as for ongoing product development and support.

Request the full case study free of charge and download it directly.

Executive Summary:

With IoT Inspector, Swisscom achieves a Security ROI of up to CHF 374K for each prevented faulty rollout:

  • Improving IoT security by running automated security analyses and compliance checks that device manufacturers often overlook, and strengthening its position when negotiating with vendors.
  • Reducing maintenance and replacement costs by systematically detecting security threats before rolling out faulty firmware updates.
  • Guaranteeing excellence of service and maintaining brand reputation by ensuring the highest security levels for customer-premises equipment.


ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of an automated Product Cybersecurity & Compliance Platform (PCCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.

Critical vulnerabilities and compliance violations in device firmware are automatically identified in binary code by AI-based technology in minutes – without source code, device, or network access. Proactively audit software supply chains with integrated software bill of materials (SBOM) generation. “Digital Cyber Twins” enable automated 24/7 post-release cybersecurity monitoring throughout the product lifecycle.

The patent-pending, integrated Compliance Wizard™ already covers the upcoming EU Cyber Resilience Act (CRA) and existing requirements according to IEC 62443-4-2, ETSI EN 303 645, UNECE R 155 and many others.

The Product Security Incident Response Team (PSIRT) is effectively supported by the integrated automatic prioritisation of vulnerabilities, significantly reducing the time to remediation.

Leading international companies in Asia, Europe and the Americas already benefit from the ONEKEY Product Cybersecurity & Compliance Platform and ONEKEY Cybersecurity Experts.



Sara Fortmann

Marketing Manager


euromarcom public relations GmbH

+49 611 973 150