DEKRA solutions
DEKRA provides unmatched cybersecurity solutions, all from a single expert organization.
Cyber Security
Cybersecurity solutions for products and systems
In today's digital age, cybersecurity has become a critical concern. Security is paramount, not just offline but online as well. With frequent reports of hackers breaching networks and causing significant damage, it's natural to prioritize the protection of your connected products against cyberattacks. Moreover, enhancing your organization's trustworthiness is essential. DEKRA's team of cybersecurity experts is dedicated to assisting you in achieving certifications and seals of approval. These credentials demonstrate that your products and systems have undergone rigorous independent testing and certification, offering peace of mind to both you and your users.
DEKRA's team of cybersecurity specialists provides comprehensive certification services for an array of products and systems. Our expertise extends to conducting thorough cybersecurity assessments for charging stations, electric vehicles, lighting solutions, medical devices and more. Additionally, we offer certification according to the "Keurmerk Pentesten" standard. Certified organizations perform penetration tests, or "pen tests," aiming to breach their clients' networks in order to evaluate and enhance their cybersecurity defenses, ensuring robust protection against digital threats.
Risk analysis for insight
Many organizations may not fully grasp the extent of risks posed by cyberattacks. To bridge this gap, DEKRA strongly recommends conducting a comprehensive risk analysis. This crucial step involves delving into key questions to evaluate your cybersecurity posture: How robust is your current cybersecurity framework? What financial repercussions could you face in the event of a breach? And importantly, how would such an incident impact your brand's reputation? By addressing these questions, organizations can better understand their vulnerabilities and implement stronger defenses against cyber threats.
DEKRA Audit is happy to assist you in performing a risk analysis.Based on this assessment, you can make a well-considered decision about the design of your cybersecurity measures.
Benefits of cybersecurity certification
- Safeguard Sensitive Data: Protect your confidential information from cyber threats.
- Boost Organizational Trust: Enhance confidence in your organization by demonstrating a commitment to security.
- Customer Protection: Secure your products from cyberattacks, ensuring customer safety and trust.
- Mitigate Risks: Showcase your efforts in making it exceedingly difficult for hackers to breach your defenses.
- Regulatory Compliance: Align with European legislation effective from August 2024 - comply with the RED Delegated Act, Article 3.3.
Future-proof products and services
While it's true that absolute certainty against cyber threats can never be guaranteed, obtaining the right certifications positions your organization at the forefront of cyber resistance. These certifications are not just badges of honor; they are tangible evidence that you've taken extensive measures to fortify your defenses against hackers. In an era where cybersecurity is of paramount importance, proactively securing your organization and its offerings ensures you're not just prepared for what lies ahead but also delivering products and services that are resilient in the face of future challenges. Equip your business with the armor it needs to thrive in a digital landscape where security is not just valued but expected.
RED directive: cybersecurity of products
The RED Delegated Act is part of European legislation within the CE directive framework. Article 3.3. is an extension of this legislation. As a Notified Body for the
RED Directive >
DEKRA broadens its purview to encompass Article 3.3, underscoring a commitment to enhancing cybersecurity measures across a range of products. The directive mandates rigorous cybersecurity standards for all EU-based products featuring radio connectivity, including but not limited to Bluetooth and 4G technologies.
Commencing August 1, 2024, adherence to the RED Delegated Act Articles 3.3(d), (e), and (f) becomes compulsory. These articles include the following:
Radio equipment does not harm the network or its functioning nor misuse network resources, thereby causing an unacceptable degradation of service.
ETSI EN 303 645 and IEC 62443
DEKRA has developed the first-ever cybersecurity certification program specifically designed for electric vehicle (EV) charging stations, setting a new global standard in the industry. This innovative program is set up according to the stringent requirements of ETSI EN 303 645 and IEC 62443 standards, ensuring unparalleled security measures. As a recognized Notified Body for the RED directive, DEKRA is expanding its expertise to include Article 3.3.
DEKRA is Notified Body for the RED directive and is extending the scope to article 3.3. We determine your product's compliance by examining:
- ETSI EN 303 645 for consumer IoT (internet of things) products
- IEC 62443 for IoT products for industries
Get the most important cybersecurity information in one easy-to-read PDF and start preparing in an optimal way for solid online security for your organization.
Request >
NIS and NIS2: cybersecurity of network and information systems
NIS and NIS2 set requirements for the cybersecurity of information and IT systems. NIS stands for network and information systems. This legislation covers companies providing 'essential services', such as healthcare facilities and telecoms and energy companies. The original guideline dates back to 2016. With the entry into force of NIS2 in 2023, more companies will be designated as providers of essential services. These include food manufacturers, postal and courier companies and government departments. In addition, companies should identify and address cybersecurity risks in supplier relationships and the supply chain. Finally, requirements on the security measures to be applied have been tightened.
Organizations covered by NIS or NIS2 must identify and address cybersecurity risks in supplier relationships and the supply chain. In addition, they must take security measures, which have been tightened since 2023.
ISO 27001
To comply with the NIS directive, you can use the ISO 27001 standard. It allows you to shape your information security management system in a structured way. DEKRA Audit is happy to certify you against ISO 27001.
Why DEKRA as your partner for cybersecurity?
- We are a multidisciplinary cybersecurity partner. We combine our expertise of e-mobility, lighting and medical devices with cybersecurity.
- Especially for charging stations, we offer the world's first certification programme.
- We provide ISO 27001 certifications in the form of a People Based Audit.In this, we have an eye for the human factor in your business processes.
- With a certificate from DEKRA, you give your customers more confidence and strengthen your position in the market.
- We have accreditation from IECEE to issue CB certificates for IEC 62443-4-1, IEC 62443-4-2, IEC 62443-3- and IEC 62443-2-4.
- We have a DEKRA Seal for IEC 62443-4-1. This involves auditing you annually, allowing you to rise in maturity level.
- We certify pentesters according to the keurmerk pentesten (quality pentesting mark). As part of this, we offer the pentester a free baseline measurement.
- Our cybersecurity experts conduct penetration test for products to test its cybersecurity.
More cybersecurity services
ISO 27001 Certification
Outdated technology, misusing IT or malware infections. These can all lead to cybercrime, IT failures, espionage and data misuse. How should you implement a strong information security strategy? ISO 27001 certification gives you this opportunity, letting you protect confidential information in your organization. DEKRA can is happy to test your organization against the international ISO/IEC 27001 standards.
The Pentesting Quality Mark
If you test the cyber security of other organisations, you will want your clients to know that you are a professional organisation. The pentesting quality mark shows the expertise and security your organisation has to offer. DEKRA audits organisations according to the certification scheme of the Centre for Crime Prevention and Safety (Centrum voor Criminaliteitspreventie en Veiligheid (CCV)). It enables us to decide whether or not you are eligible for the CCV pentesting quality mark.
RED Directive Testing
Are you launching a product on the European market with a wireless radio connection? From August 2025 on, it must comply with the Delegated Act of the Radio Equipment Directive (RED), the European Commission determined. The Delegated Act contains various cybersecurity requirements that manufacturers, importers and distributors must meet to market their wireless devices in the European Union (EU).