OT/IT Cybersecurity

Convergence between industrial networks (OTs) and information networks (IT) imposes new threats and risks in the world of industry. Beyond the classical risk of data loss, and financial impact the lack operational cyber security may endanger safety of people and in extreme case may impact public safety.

In order to minize those risks, CertX is providing comprehenive services reagrding OTand IT cyber security as well as data privacy.

Think like a hacker

Our certification programs have been developed by cybersecurity specialist, initially trained to perform penetration tests and support secure system/infrastructure development. Based on that strong cybersecurity knowledge , our dedicated department can help you to anticipate potential future cyber risks thanks to this offensive spirit that we cultivate.

An unique cross-sector experience

We are strongly believe that experiences from all sectors should be considered as key inputs for other ones. In this regard, our cybersecurity department keeps updated, follows and participates to the development of future cybersecurity standards in several domains such as Energy, Automotive, Railway, Healthcare, Drones…

Our participation to international standardization committees gives to our clients a strong confidence to initiate cyber security related improvements

Standardization for supporting regulation compliance

 

Across all industries, regulations are evolving to incorporate cyber security aspects as foundational requirements. Whether through the publication of the NIS/NIS2 (Directive on Security of Network and Information Systems), the CSA (Cybersecurity Act) or the GDPR (General Data Privacy Regulation), implementation and demonstration of good security practices from organizations will become mandatory in a near future.

That is typically the case across the automotive industry where the UNECE WP.29/R155 cyber security requirements for future authorization scheme of road vehicles has been approved and published in June 2020

Demonstration of Cyber Security Management System (CSMS) by automotive stakeholders will become mandatory for new vehicle type approvals as of July 2022 and, records of security activities for every new vehicle produced as of July 2024. For establishing relevant management systems and handling cyber security across organization, a new standard called ISO/SAE 21443 has been specifically developed for such purpose, and in alignement with other existing frameworka applied through the automotive industry (e.g. ISO/SAE 26262).

It takes 20 years to build a reputation and few minutes for a hacker to ruin it. CertX improves your defence.

Our Cyber Security Services

Industrial Cybersecurity – Product and Management System Certifications

Certification for Component Manufacturers

  • ISA/IEC 62443-4-1 for Secure Development Lifecycle
  • ISA/IEC 62443-4-2 for Component Technical Security Capabilities

Certification for System Manufacturers

  • ISA/IEC 62443-4-1 for Secure Development Lifecycle
  • ISA/IEC 62443-3-3 for System Technical Security Capabilities

Certification for System Integrators and Service Providers

  • ISA/IEC 62443-3-3 for System Technical Security Capabilities
  • ISA/IEC 62443-2-4 for IACS Service Providers Security program

Certification for Asset Owners

  • ISA/IEC 62443-2-1/-2-3 for Cyber Security Management System (incl. patch management)

     

    Automotive Cybersecurity – Equipments and management system certification

    Cyber Security for Road Vehicle Stakeholders

    • ISO 21434 for Cyber Security Management System
    • ISO 21434 / SAE J3061 for secure item development

     

    Be ready for 2022, and demonstrate your compliance with upcoming UNECE WP.29/R155

     

    Learn more about our product assessment & certification process

    Courses & Trainings

    CertX can increase the cybersecurity competencies of your team members through several courses

     

    The courses delivered by CertX can be tailored to provide overviews with a focus according to your preferences (see hot topics in the deteailed training descriptions). 

    Contact us to define your own focus area(s) – we build a course for you.

    Certification Courses

    CertX also propose a personal certification process including a 4-days course which can be validated through an official certificate delivered by passing a final exam.

     

    Based on a clear course structure, trainees can partially follow the certification course and complete it in multiple steps

    Learn more about our training & person certification process

    Contact

    Kilian Marty

    Head of the Cybersecurity department
    kilian.marty@certx.com
    T +41 26 309 29 94