Cybersecurity for embedded systems

SERMA will assist you in testing the security of embedded systems such as IoT, IIoT, industrial computers and electronic equipment in general.


  • Governance documentation (plan, policy, process, methodology) compliant with ISO 27000, IEC 62443
  • Compliance and conformity of the embedded systems environment
  • Analysis of the security risks (EBIOS, TARA, TVRA, ISO 27005, IEC 62443)
  • Definition of the security target
  • Security by design and defence in depth
  • Security specifications and development assistance
  • Security assurance (ISO, IEC, common criteria)
  • Vulnerability management
  • Support for security certification (CSPN, standard certification, etc.)


  • Organisational and physical audit
  • Compliance audit (ISO, IEC, NIST, etc.) & CSPN audit
  • Architecture audit (ANSSI, IEC 62443)
  • Source code audit
  • Auditing, support and monitoring of suppliers (ISO, IEC)
  • Technical system audit & product evaluation (SW, HW, Telecom)
  • Pentest for the integrated system and product

Awareness / Training

  • Awareness of security issues affecting embedded systems
  • ISA / IEC 62443 & ISO 27001/5 standards
  • Secure architecture and software coding
  • Security of embedded systems and IoT
  • CSPN certification

Our teams are at your service