Cybersecurity of embeeded systems
SERMA supports you in testing the cybersecurity of embedded systems such as IoT, IIoT or industrial computers and electronic equipment in general.
Governance
- Governance documentation (plan, policy, process, methodology) according to IS0 27XXX, IEC 62 443
- Compliance and conformity applicable to the environment of embedded systems
- Security risk analysis (EBIOS, TARA, TVRA, ISO 21434, IEC 62443)
- Gap analysis
- Definition of security target
- Security by design and defence in depth
- Security specifications and development assistance
- Safety assurance (ISO, IEC, common criteria)
- Vulnerability and threat management
- Support for security accreditation (CSPN, standard certification, etc.)
Audit
- Organisational and physical audit
- Compliance audit (ISO, IEC, NIST, ..) & CSPN audit
- Architecture audit (ANSSI, IEC 62 443)
- Source code audit
- Audit, support and monitoring of suppliers (ISO, IEC)
- Technical system audit & product evaluation (SW, HW, telecom)
- Pentest for integrated system and product
Sensibilisations / Training
- Training of security embeeded systems
- ISA / IEC 62 443 & ISO 27001/5 standard
- Secure architecture and software encryption
- Security of embeeded and IoT systems
- CSPN certification
