ISASecure® program: DNV GL to conduct cybersecurity certifications

ISASecure® program: DNV GL to conduct cybersecurity certifications

The ISA Security Compliance Institute (ISCI) announces that DNV GL - Digital Solutions has signed an agreement to conduct cybersecurity certification assessments as an ISO/IEC 17065 accredited ISASecure® certification body.

The ISASecure certification program, developed within the International Society of Automation, certifies conformance to the ISA/IEC 62443 series of internationally adopted industrial cybersecurity standards. ISASecure assesses industrial automation and control products and systems to ensure they are robust against network attacks, free from known vulnerabilities, and meet the security capabilities defined in the ISA/IEC 62443 standards.

Through its agreement with the ISASecure program, DNV GL will become the third certification body within the ISASecure certification program in South East Asia. The ISASecure program — which currently has ISO/IEC 17065 accredited certification bodies in the US, Japan, Germany, and soon, Canada — is rapidly expanding its global reach through additional agreements with certification bodies around the globe who are in the accreditation process.

Mathias Steck, Regional Manager, Digital Hub, Asia at DNV GL - Digital Solutions, says:

“At DNV GL, we’re dedicated to improving maritime and energy sector safety and integrity, and providing high-quality certification services. Companies rely on DNV GL to manage their critical risks and demonstrate compliance with regulations and standards. By joining the ISASecure program, we’re able to meet our customers’ growing demand for automation and control system cybersecurity using the internationally accepted, consensus-based ISA/IEC 62443 standards.”

Andre Ristaino, Managing Director of the ISASecure Program, commented:

“We’re pleased to welcome DNV GL as an ISASecure certification body. As an international company with a solid reputation, DNV GL provides additional credibility to the ISASecure program; and enables companies in their region to do business locally and extends global coverage for cybersecurity certification of automation.”

Founded in 2007 as a wholly owned subsidiary of the International Society of Automation, the ISA Security Compliance Institute’s mission is to provide the highest level of assurance possible for the cyber security of automation control systems.

The Institute was established by thought leaders from major organizations in the industrial automation controls community seeking to improve the cyber security posture of critical Infrastructure for generations to come. ISCI Members include Chevron, ExxonMobil, Shell, Aramco Services, Honeywell, Schneider Electric, Yokogawa, exida, Codenomicon, CSSC, and IPA-Japan.

The Institute’s goals are realized through industry standards compliance programs, education, technical support, and improvements in suppliers’ development processes and users’ life cycle management practices. The ISASecure® designation ensures that automation and control system products conform to industry consensus cyber security standards such as ISA/IEC 62443, providing confidence to users of ISASecure products and systems and creating product differentiation for suppliers conforming to the ISASecure specification.