Bureau Veritas leads the way in IECEE 62443 Cybersecurity Certification

Bureau Veritas, a global leader in Testing, Inspection and Certification service for consumer, technology and industrial products, has announced that as of the date of publication, it has successfully issued more than 50% of all IECEE 62443 certificates. Some of the clients who have benefited from a successful Bureau Veritas cybersecurity assessment can be seen below.

Hitachi Energy	ATOP
Image	Image
EtherWAN	MOXA
Image	Image

About IEC 62443

IEC 62443 has been established as the reference standard for cybersecurity in the industrial domain. This standard comes with a holistic approach, providing requirements for the industrial components (e.g. PLCs, HMIs, industrial routers, etc.), as well as for the larger industrial systems. The development and deployment processes are also covered by the standard.

This standard has now been adopted by several markets such as transportation (trains, subways, etc.), utilities network (water, gas, electricity, oil platform, pipelines, etc.), infrastructure (Centralized Technical Management / Building Management System) (towers, tunnels, ports) as well as Smart Buildings / Smart Cities.

On top of the IEC 62443 certification, developers and integrators can certify their products, processes or solutions based on the IECEE scheme, in line with the IEC 62443 requirements. An IECEE certificate will demonstrate that the products, process or solution has passed an extensive evaluation program, which included documentation review, testing and process auditing. Bureau Veritas can support the whole IECEE certification process, with initial preparation, the evaluation work, and the certification step itself.

Bureau Veritas Scope

Bureau Veritas’ global cybersecurity specialists assists service providers, product suppliers and system integrators construct a cybersecurity framework, and help develop the capabilities to manage the information security process, combining IT with OT technology to comply with international standards.

The certification standards provided by Bureau Veritas include program flow and product security respectively with more details in the following table:

Certification Category	Standard	Applicable Client
Process	62443-2-4: Security program requirements	Service Provider
	62443-4-1: Secure product development lifecycle requirements	Product Supplier
System Security	62443-3-3: System Security requirements and security levels	System Integrator
Product Security	62443-4-2: Technical Security requirements for IACS components	Product Supplier

Bureau Veritas has in addition obtained the qualifications of both ISA/IEC 62443-4-2 under the ISASecure^® Program and Component Security Assurance (CSA) V1.0.0. Bureau Veritas is the only testing laboratory in the world to have both the testing qualifications further demonstrating the global leading position of Bureau Veritas in the field of cybersecurity testing and certification.

Bureau Veritas provides a one-stop and value-added solution to their clients supported by their global network and holistic portfolio of services including quality, safety, conformance, sustainability, and cybersecurity solutions.

Get in touchwith us

First name

Last name

Email

Phone (e.g. +1 415-555-1234)

Company

Country / Territory

How can we help you?

Would you like to receive marketing communication from Bureau Veritas?

Yes

No

INFORMATION NOTICE TO DATA SUBJECTS
Your personal data are collected by Bureau Veritas Consumer Products Services Division (“BVCPS”), through its entity Bureau Veritas Hong Kong Limited (having its registered office at 1/F, Pacific Trade Centre, 2 Kai Hing Road, Kowloon Bay, Kowloon, Hong Kong), as well as the BVCPS affiliate(s) with which you had, have or will have a business relationship or that otherwise decide(s) which of your personal data is collected and how it is used.  A list of BVCPS affiliates is available at: BVCPS Locations (https://www.cps.bureauveritas.com/sites/g/files/zypfnx236/files/media/document/BVCPS%20Locations_20210611_for%20web.pdf)
Your personal data are subject to computer processing in order to respond to your requests and to provide you with additional information about BVCPS services, events or topics that may be of interest to you on the basis of your consent to the processing of your personal data for that purpose (by checking the box below).
Your personal data are intended for use by the relevant business departments of BVCPS and/or their service providers depending on the nature of your requests, as well as by BVCPS IT department.    Your personal data will be retained until the earlier of (a) one year after the last communication, or (b) your request to delete the personal data. 
Your personal data may be transferred outside the European Union, on the basis of your explicit consent, as the data subject, to the proposed transfer. By checking the box below, you are providing your explicit consent to the proposed transfer, with your acknowledgement of the possible risks of such transfer due to the absence of an adequacy decision pursuant to Article 45 of the General Data Protection Regulation of 27 April 2016 or of appropriate safeguards pursuant to Article 46 of the General Data Protection Regulation of 27 April 2016.
In accordance with the French Data Protection Act of 6 January 1978 as amended and the General Data Protection Regulation of 27 April 2016, you may have the right to access, rectify and erase any personal data concerning you, as well as the right to limit the processing, the right to oppose to the processing or the right to portability of your personal data. You have the right to withdraw your consent at any time by connecting to the site or application (https://personaldataprotection.bureauveritas.com). and unchecking the box dedicated to the collection of your consent. You also have the right to set out general and specific guidelines that define how you intend these rights to be exercised after your death. You can exercise your rights by e-mail at the following address: https://personaldataprotection.bureauveritas.com. Finally, you have a right to lodge a complaint to the Commission Nationale Informatique et Libertés (CNIL) or the relevant authorities in your country.
Fields marked with an asterisk must be filled in. Otherwise, BVCPS would not be able to respond to your requests and/or provide you with additional information.