Comprehensive audit of a critical network infrastructure and the corresponding management applications by means of an architecture and configuration review as well as a penetration test and application penetration test. Additionally, a cyber incident exercise was executed with the NOC (Network Operations Center).