Commend Cyber Security Certified to IEC 62443 Standard
Already in 2019, Commend International was certified according to the EN ISO 27001 standard. Now we have taken the next step: since December 6th 2021, we have also been certified according to IEC 62443-4-1.
The successful certification according to
IEC 62443-4-1 underlines the importance of
"Secure-by-Design" as an integral part of
Commend's product development.
This certification by the globally recognized Cyber Security certification service provider TÜV SÜD confirms that our development teams can develop and implement secure communication and automation solutions in accordance with the IEC 62443-4-1 standard. The cooperation with TÜV SÜD was very goal-oriented and competent. Since this standard is still very new to us, it was important to develop a common understanding of the requirements and their implementation.
Trust us, Cyber Security is part of our DNA
All those involved, and especially the entire project team, deserve the highest credit for making the certification possible in such a short time. The cornerstone of this success was certainly our Cyber Security Strategy, which we have consistently pursued for years, and the Information Security Management System (ISMS) we have in place.
At Commend, we have always known when it comes to Cyber Security, there is no simple solution that covers all security needs. Regardless of the size of a Commend system and the underlying network infrastructure, Cyber Security is a cooperative effort that requires the collaboration of all stakeholders along the entire product supply chain, from the vendor to the end user.
It's not just about what tools to use or what actions to take, but what to use them for (or against) and when, how, and where to implement them. It's about identifying potential risks and targets, understanding threats, and taking action to counter them.
Cyber-crime is increasingly targeting critical infrastructures, and the numbers are frightening: For instance, hackers tapped into the U.S.'s Colonial Pipeline in April 2021 through a VPN that lacked multi-factor authentication, resulting in a $5 million Bitcoin payment to regain access. (Reuters, 2021)
As part of our defense-in-depth strategy, cyber security is firmly embedded at Commend and we sustainably support our customers' security strategies. To not only claim this, but also prove it to an independent auditor, we decided to certify to IEC 62443 Part 4-1.
The certification underlines Commend's strong commitment to offer standardized Cyber Security in products and industrial solutions for our customers to operate machinery, plants and infrastructures in a safe and future-proof manner.
More information about "Trust" and Cyber Security
