Bureau Veritas extends Cybersecurity Assessment Portfolio adding IEC 62443-2-4 and IEC 62443-3-3 for System Integrators
Bureau Veritas is delighted to announce that its Consumer Products Services (BVCPS) – Technology Products Business Line Taiwan laboratory is approved by IECEE on February 7, 2022, as a qualified IEC 62443-2-4 and IEC 62443-3-3 Certification Bodies Test Laboratory, successfully expanding the service scope of cybersecurity assessment to assist more system integrators to break down their barriers.
IEC 62443 is currently the most accepted and the key standard tailored for industrial automation at the beginning. Today, it has been adopted by many sectors such as railway, industrial products, automotive, smart building, smart city, energy, utilities, etc. With IECEE’s great credibility, this standard will become one of the most crucial information security standard in non-consumer fields, such as industrial control, transportation, and medical treatment. IEC 62443 describes detailed specifications, with addition to the general rules of IEC 62443-1, various sub-specifications are further defined. The industry can build an information security framework based on the specifications to create a more secure Operation Technology (OT) system.
The certification standards provided by IEC 62443 include program flow and product security respectively with more details in the following table:
|
Certification |
Standard |
Applicable Vendor |
|
Process |
62443-2-4: Security program requirements |
Service Provider |
|
|
62443-4-1: Secure product development lifecycle requirements |
Product Supplier |
|
System Security |
62443-3-3: System Security requirements and security levels |
System Integrator |
|
Product Security |
62443-4-2: Technical Security requirements for IACS components |
Product Supplier |
Bureau Veritas focuses on providing one-stop and value-added services to their clients supported by our global network and holistic portfolio of services including cybersecurity solutions. With the assistance of experienced and skilled technical specialists from Bureau Veritas, it has successfully assisted many well-known companies to complete the implementation of IEC 62443-4-1 and IEC 62443-4-2 and to obtain the relevant certificate. Bureau Veritas not only supports clients to demonstrate their cybersecurity compliance but also guides them to implement quality practices such as security governance, risk mapping and security systems, plan maintenance, tools detection and defence in depth, etc. These will allow the team to perform dual security checks much earlier during the design and testing phases, effectively reducing cybersecurity risks for products and therefore cost and time as well before they are launched to market.