Schneider Earns exida Security Certification

Thursday, May 12, 2016 @ 04:05 PM gHale


Schneider Electric gained exida accreditation for compliance with its Security Development Lifecycle certification based on IEC 62443-4-1.

Exida’s first industry certificate for SDL applies to Schneider Electric’s Process Automation business product development centers in Foxboro, MA, Worthing, UK, and Hyderabad, India.

RELATED STORIES
exida Inks Pact with Arme
Rockwell, Cisco in DPI Pact
Kaspersky Launches ICS Antivirus
UL Unveils ‘Cybersecurity Assurance Program’

The certification ends up based on international cyber security standards developed to accelerate industry-wide cyber security improvement for industrial automation and control systems (IACS).

“The exida SDL certification demonstrates Schneider Electric’s commitment to setting industry benchmarks when it comes to secure industrial automation and control systems,” said William Goble, Ph.D., exida managing director. “They have a strong, industry-leading product development process to begin with and take a very serious view of every cyber security issue. They built upon that reputation to meet exida’s certification requirements and have strengthened the process that already helps them avoid and counter vulnerabilities.”

Cyber security is fundamental to Schneider Electric’s principles of helping users achieve more with fewer resources in a more connected world.

“As IT and OT converge, more technology is connecting with more technology; more people are connecting with more technology; more people are connecting with more people. All this connectivity is driving an influx of data that is both beneficial and overwhelming,” said Raja Macha, vice president, research and development for Schneider Electric’s Process Automation business. “We can help customers take advantage of all this connectivity—what we call the IIoT—as well as make sense of all that data, but it all has to be secured first. That’s why we address safety and cyber security concerns head on. Not only are our offers ‘secure by design,’ meaning security is inherent to our system design and delivery, but our stronger cybersecurity services complement the protections already designed into our products, targeting people, competencies and processes to ensure there are no gaps.”

The new exida certification applies to Schneider Electric’s Foxboro Evo process control system and Foxboro SCADA systems. Additionally, the three certified sites demonstrate Schneider Electric uses a product development lifecycle that considers cyber security in every phase, part of an institutionalized commitment to securing industrial automation and control systems.