News, Research & Development

DNV GL to conduct cybersecurity certifications under the global ISASecure® program

The ISA Security Compliance Institute (ISCI) announces that DNV GL - Digital Solutions has signed an agreement to conduct cybersecurity certification assessments as an ISO/IEC 17065 accredited ISASecure® certification body.

Industrial cybersecurity standards

The ISASecure certification program, developed within the International Society of Automation, certifies conformance to the ISA/IEC 62443 series of internationally adopted industrial cybersecurity standards. ISASecure assesses industrial automation and control products and systems to ensure they are robust against network attacks, free from known vulnerabilities, and meet the security capabilities defined in the ISA/IEC 62443 standards.

All ISASecure certifications are conducted by globally recognized ISO/IEC 17065 accredited certification bodies.

Through its agreement with the ISASecure program, DNV GL will become the third certification body within the ISASecure certification program in South East Asia. The ISASecure program — which currently has ISO/IEC 17065  accredited certification bodies in the US, Japan, Germany, and soon, Canada — is rapidly expanding its global reach through additional agreements with certification bodies around the globe who are in the accreditation process.

Companies rely on DNV GL to manage their critical risks

“At DNV GL, we’re dedicated to improving maritime and energy sector safety and integrity, and providing high-quality certification services. Companies rely on DNV GL to manage their critical risks and demonstrate compliance with regulations and standards,” says Mathias Steck, Regional Manager, Digital Hub, Asia at DNV GL – Digital Solutions. “By joining the ISASecure program, we’re able to meet our customers’ growing demand for automation and control system cybersecurity using the internationally accepted, consensus-based ISA/IEC 62443 standards.”

Andre Ristaino, Managing Director of the ISASecure Program, commented, “We’re pleased to welcome DNV GL as an ISASecure certification body. As an international company with a solid reputation, DNV GL provides additional credibility to the ISASecure program; and enables companies in their region to do business locally and extends global coverage for cybersecurity certification of automation.”

About the ISA Security Compliance Institute (ISCI)

Founded in 2007 as a wholly owned subsidiary of the International Society of Automation, the ISA Security Compliance Institute’s mission is to provide the highest level of assurance possible for the cyber security of automation control systems.

The Institute was established by thought leaders from major organizations in the industrial automation controls community seeking to improve the cyber security posture of critical Infrastructure for generations to come. ISCI Members include Chevron, ExxonMobil, Shell, Aramco Services, Honeywell, Schneider Electric, Yokogawa, exida, Codenomicon, CSSC, and IPA-Japan.

The Institute’s goals are realized through industry standards compliance programs, education, technical support, and improvements in suppliers’ development processes and users’ life cycle management practices. The ISASecure® designation ensures that automation and control system products conform to industry consensus cyber security standards such as ISA/IEC 62443, providing confidence to users of ISASecure products and systems and creating product differentiation for suppliers conforming to the ISASecure specification. www.isasecure.org

ISASecure® is a registered trademark of the ISA Security Compliance Institute.