V-DIG Audit: E.ON SE

Audit Phase: V-DIG Date of Audit: May 2026 Jurisdiction of Incorporation: Germany (DAX-listed; registered E.ON SE, Essen)

Enterprise Technology Stack & Vendor Relationships

Wiz (Cloud Security / CNAPP)

The most operationally specific evidence in this audit concerns Wiz, an Israeli-founded cloud-native application protection platform (CNAPP) vendor. A published event listing for the “Frankfurt Wizdom Meet-Up” (February 2025) names two E.ON Digital Technology personnel as speakers: Julia Heinrichs (Cloud Security Engineer) and Daniel Müller (Product Owner, CNAPP), presenting a session titled “From Onboarding to Security Policy Implementation.”¹ The existence of a dedicated Product Owner role for CNAPP at E.ON Digital Technology, as listed on the event agenda, indicates structural rather than peripheral integration of the Wiz platform — reflecting enterprise-grade adoption rather than a pilot engagement. This evidence is contingent on live verification of the event listing URL ¹; if confirmed, it constitutes direct public documentation of an active operational Wiz deployment at E.ON Digital Technology as of early 2025.

Wiz was founded in 2020 by Assaf Rappaport, Yinon Costica, Roy Reznik, and Ami Luttwak — all alumni of Israeli military intelligence Unit 8200. This founding background is extensively documented across major technology press. No E.ON–Wiz relationship is disclosed in E.ON’s 2023 Annual Report² or other official corporate filings reviewed.

CyberArk (Identity & Privileged Access Management)

The prior research cycle surfaced a PeerSpot vendor comparison page³ as the basis for asserting “E.ON Global Commodities” as a named CyberArk customer. PeerSpot aggregates anonymous user reviews segmented by company size and industry; attribution to a named entity such as E.ON Global Commodities requires a clearly identified reviewer, which cannot be confirmed without live access. No corroborating primary source — procurement record, press release, E.ON filing, or CyberArk case study — naming this relationship has been identified. Status: Unverified. Requires live confirmation of ³ before any factual claim can be made.

Check Point Software Technologies

Two putative connections were advanced in prior research; both are rejected on evidentiary grounds.

• E-REDES (Portugal): A Check Point Quantum Rugged Gateway deployment is documented at E-REDES⁴⁵, but E-REDES (formerly EDP Distribuição) is a subsidiary of EDP — Energias de Portugal, S.A., an independent energy group with no ownership or operational relationship to E.ON SE. The misattribution of E-REDES to E.ON’s corporate family is a material error that must not carry forward.⁴⁵
• “CHECK.point” eLearning: A case study describing E.ON’s corporate university use of a “Check Point” platform⁶ refers to checkpoint-elearning.com, a German corporate learning management vendor — an entirely distinct entity from Check Point Software Technologies Ltd. (checkpoint.com). This is a vendor name collision and a false positive.⁶

Status: No verified E.ON–Check Point Software Technologies relationship identified.

Claroty (OT/ICS Security)

The evidentiary chain for a Claroty deployment at E.ON rests on: (a) E.ON’s confirmed membership in the European Network for Cyber Security (ENCS)⁷; (b) a generalised claim that ENCS utility members have shown interest in Claroty solutions; and (c) an industry conference co-presence argument. None of these constitute direct procurement evidence. Notably, at E.ON’s own Tel Aviv-based cybersecurity startup challenge, Claroty did not win — a competing asset discovery vendor was selected⁸. Claroty’s Israeli founding and investor profile are documented⁹, but no E.ON–Claroty contract, deployment case study, or procurement announcement has been identified.

Status: No verified E.ON–Claroty deployment identified. ENCS membership is confirmed; this does not constitute Claroty procurement.

SentinelOne, Palo Alto Networks, Verint, NICE

No public evidence of E.ON procurement relationships with SentinelOne, Verint, NICE, or Palo Alto Networks has been identified in any source reviewed. Status: No public evidence identified.

Systems Integrators and Core Enterprise Platforms

E.ON’s technology modernisation programme — documented across annual reports and press coverage — confirms relationships with SAP (ERP and S/4HANA migration), Microsoft Azure, and Siemens (operational technology)². E.ON’s adoption of Kraken Technologies (Octopus Energy’s UK-origin billing and CRM platform) for customer management modernisation is corroborated by industry press (circa 2022–2024). None of these are Israeli-origin platforms.

Publicis Sapient is identified in an HFS Research analyst excerpt¹⁰ as active across the energy and utilities sector, but this document does not name E.ON as a specific client. No Publicis Sapient press release, case study, or E.ON filing confirming a named engagement has been identified. Status: No public evidence identified of a Publicis Sapient–E.ON engagement mandating Israeli-origin technology.

Surveillance, Biometrics & Retail Technology

Facial Recognition and Biometric Platforms

No direct, attributable evidence has been identified linking E.ON to any Israeli facial recognition or biometric platform, including BriefCam, AnyVision/Oosto, Trigo, or Trax. The prior research cycle explicitly conceded the absence of such evidence. E.ON is an energy network operator and not a retail or physical security operator; the commercial rationale for retail biometric deployment (loss prevention, frictionless checkout) has no application to its business model. Sources reviewed include corporate disclosures², vendor case study databases, and the CNCD-11.11.11 investigative report¹¹. Status: No public evidence identified.

Predictive Analytics and Workforce Monitoring

E.ON employs data analytics platforms — including reported use of Databricks on cloud infrastructure for energy consumption modelling and customer propensity analysis¹² — but these are not Israeli-origin platforms. Databricks was founded by UC Berkeley academics and is headquartered in San Francisco. No evidence of Israeli-origin sentiment analysis, social media monitoring, or workforce surveillance tooling deployed at E.ON has been identified. Status: No public evidence identified.

Third-Party Deployment

Status: No public evidence identified.

Cloud Infrastructure, Data Residency & Sovereign Cloud Participation

Data Centre Presence in Israel

No evidence that E.ON operates, leases, or co-locates data centre infrastructure within Israel has been identified. E.ON’s cloud strategy, as disclosed in its 2023 Annual Report², is oriented toward European hyperscaler regions — principally AWS Frankfurt and Microsoft Azure Germany — in alignment with EU GDPR data localisation obligations. Status: No public evidence identified.

Project Nimbus and Government Cloud Relationships

Project Nimbus is a multi-year cloud infrastructure contract awarded to AWS and Google Cloud for provision of services to the Israeli government and military¹³¹⁴. E.ON has no role as a cloud service provider and is not a Nimbus contractor, sub-contractor, or named participant. The contextualisation of E.ON’s ordinary commercial use of AWS infrastructure as a contribution to Project Nimbus is an interpretive macro-argument, not a contractual or operational relationship, and is not supported by any primary source. Status: No public evidence identified of E.ON participation in or direct contribution to Project Nimbus.

Data Sovereignty Services to Israeli State Bodies

Status: No public evidence identified.

Defence, Intelligence & Security Sector Technology Relationships

Military and Intelligence Contracts

No evidence of any contract, partnership, or service agreement between E.ON and the Israeli Ministry of Defence, the Israel Defence Forces, or any Israeli intelligence agency has been identified in any source reviewed. Status: No public evidence identified.

Dual-Use Technology Provision

Status: No public evidence identified.

Offensive Cyber and Weapons Technology

E.ON SE is an energy distribution and networks utility with no documented offensive cyber capabilities and no involvement in weapons technology development or provision. Status: No public evidence identified.

AI, Algorithmic & Autonomous Systems

AI/ML Provision to Israeli State Bodies

Status: No public evidence identified.

Training Data and Model Development

Status: No public evidence identified.

Autonomous Systems and Lethality

Status: No public evidence identified.

Technology Ecosystem & R&D Footprint

Tel Aviv Innovation Hub

E.ON established a structured innovation hub network following its acquisition of innogy (circa 2019), with hubs in Berlin, Silicon Valley, and Tel Aviv¹⁵. The Tel Aviv hub’s mandate encompasses startup scouting, proof-of-concept partnership, and venture-client activity across grid automation, energy communities, and electrification use cases¹⁵. The hub’s existence and operation are corroborated by multiple independent sources spanning the 2019–2024 window: the SAP.iO Foundry Tel Aviv programme listing¹⁶, the E.ON Corporate Cyber Security Challenge hosted in Tel Aviv¹⁷, and the Startup Nation Central Climate Solutions Prize partnership¹⁸. The current (2025) operational status, staffing level, and active programme portfolio of the Tel Aviv hub cannot be confirmed without live verification.

Confirmed operational period: 2019–2024+. 2025 status: unconfirmed.

SAP.iO Foundry Tel Aviv — Co-participation with Israel Electric Corporation

In October 2020, the SAP.iO Foundry Tel Aviv programme — a corporate accelerator run by SAP’s venture arm in Israel — was documented as naming both E.ON Innovation and the Israel Electric Corporation (IEC) as co-corporate partners sponsoring a utilities-focused startup cohort¹⁶. IEC is a state-majority-owned utility forming the backbone of Israeli civilian electricity infrastructure. The programme surfaced Israeli-founded startups including FSIGHT (AI energy optimisation) and Future Grid (renewable integration platform) for joint beta-testing and commercial evaluation.

The co-participation framework placed E.ON and an Israeli state-linked entity in a direct joint technology evaluation relationship. This represents the most substantively verified direct operational link between E.ON and an Israeli state-linked entity in this audit. Whether the IEC relationship or the FSIGHT/Future Grid evaluations progressed to commercial deployment post-2020 has not been established.¹⁶

Startup Nation Central — Climate Solutions Prize (2024)

E.ON is documented as lead corporate partner and track sponsor for the Startup Nation Central “Climate Solutions Prize,” with TIGI (a thermal energy storage startup) announced as the winner of the E.ON-sponsored “Energy Solutions for Industry & Buildings” track in early 2024¹⁸. The prize involves direct financial award plus subsequent mentorship and corporate engagement commitments.

Startup Nation Central is an Israeli non-profit established to promote Israeli technology globally; its board and advisory structure includes figures from Israeli government and the IDF technology ecosystem. E.ON’s sponsorship constitutes a direct, named, and financially committed partnership with this organisation as of 2024.¹⁸ The German-Israeli Energy Partnership framework provides additional bilateral context for energy digitalisation cooperation, though this is an industry promotion instrument rather than a critical document¹⁹.

E.ON Corporate Cyber Security Challenge, Tel Aviv

E.ON hosted a cybersecurity-focused startup challenge in Tel Aviv, documented in an event listing¹⁷ and a trade press report of the outcome⁸. The competition targeted OT and industrial control system security solutions. The winning submission was an asset discovery platform (not Claroty)⁸. This confirms active technology scouting by E.ON in the Israeli cybersecurity startup ecosystem. Based on available source context, the event is estimated to have occurred approximately 2018–2020; ongoing status is unknown.¹⁷⁸

Acquisitions and Corporate Investments in Israeli-Origin Technology

No verified acquisition by E.ON of an Israeli-origin technology company has been identified in corporate filings² or press records reviewed. Status: No public evidence identified.

Patent and IP Arrangements with Israeli Institutions

Status: No public evidence identified. Sources checked: E.ON annual reports and European Patent Office public records.

Civil Society Scrutiny & Regulatory History

NGO and Academic Investigations

The CNCD-11.11.11 “Don’t Buy into Occupation V” report (November 2025)¹¹ was cited in prior research in the context of cloud infrastructure and Project Nimbus. The report’s scope, as understood from its organisational mandate, targets construction, finance, and technology companies directly contracted to Israeli state bodies. Whether E.ON is named as a subject of this report cannot be confirmed without live access to the full document; E.ON’s profile does not obviously match the report’s primary targeting criteria, and the prior research cycle cited it only as general contextual background rather than as an E.ON-specific finding.

The German-Israeli Energy Partnership publication¹⁹ documents bilateral cooperation in energy sector digitalisation and cybersecurity but is an industry promotion document, not a critical investigation.

Status: No verified NGO investigation specifically targeting E.ON’s Israel-related technology relationships has been identified.

Boycott, Divestment and Sanctions Campaigns

No BDS campaign or organised divestment initiative specifically targeting E.ON’s technology relationships with Israel has been identified in any source reviewed. E.ON has faced scrutiny in Germany relating to its energy operations (coal phase-out, gas supply chain) and labour practices, but not in connection with Israeli technology sector relationships. Status: No public evidence identified.

Regulatory and Legal Actions

No regulatory inquiry, export control proceeding, sanctions-related investigation, or legal action involving E.ON’s technology relationships with Israeli state entities or Israeli-origin technology vendors has been identified. Status: No public evidence identified.

End Notes