Cybersecurity expert
DEKRA Solutions

DEKRA offers you unique cybersecurity solutions from one organization

DEKRA: your cybersecurity expert

Cybersecurity solutions for products and systems

In our increasingly digitalised world, cybersecurity is an important issue. Because not only offline, but also online, security is key. We regularly hear of hackers penetrating a network, with dire consequences. You naturally want to protect the users of your connected products from cyberattacks. And increase the trust they have in your organisation. DEKRA's cybersecurity experts are happy to support you in obtaining certificates and seals of approval that show you have been independently tested and certified.

DEKRA's cybersecurity experts offers certifications for various products and systems. For example, we test the cybersecurity of charging stations, electric vehicles, lighting and medical devices. We also certify organisations according to the keurmerk pentesten​. These organisations conduct pen tests (penetration tests), with which they try to penetrate their customers' networks, thus testing their customers' cybersecurity.

Risk analysis for insight

Organizations are not always aware of the risks they run from cyberattacks. DEKRA therefore advises organizations to carry out a risk analysis. Try to get answers to questions such as: How strong is your current cybersecurity? What financial damage do you incur when you are hacked? And what damage does this cause to your brand?
DEKRA Audit is happy to help you assess your risk analysis​. Based on this assessment, you can make a well-considered decision about the design of your cybersecurity.

Future-proof products and services

Unfortunately, you will never have a 100% guarantee that your organisation or product is cyber-resistant. However, with the right certifications you offer the best resistance to cyberattacks. In addition, you show that you have done everything to make it as difficult as possible for hackers. Cybersecurity is becoming increasingly important. By properly setting up your organization now, you are well prepared for the future and you offer future-proof products and services.  

RED directive: cybersecurity of products

The RED Delegated Act is a European legislation and part of the CE directive. Article 3.3 is an extension of this legislation. DEKRA is a Notified Body for the RED Directive and extends the scope to Article 3.3. The RED directive sets requirements for cyber security for certain products. All products in the EU with a radio connection such as Bluetooth or 4G must comply with the RED Delegated Act Articles 3.3(d), (e) and (f) from August 1, 2024. These article numbers include the following:
Article 3.3(d): Network Security
Radio equipment does not harm the network or its functioning nor misuse network resources, thereby causing an unacceptable degradation of service.
Article 3.3(e): security of personal data and privacy
Article 3.3(f): protection against fraud

ETSI EN 303 645 and IEC 62443

DEKRA developed the world's first cybersecurity certification program especially for electric vehicle charging stations. We developed the program based on ETSI EN 303 645 and IEC 62443. We are notified body for the RED directive and are extending the scope to article 3.3.

    DEKRA is Notified Body for the RED directive and is extending the scope to article 3.3. We determine whether your product is compliant by looking at:
    • ETSI EN 303 645 for consumer IoT (internet of things) products
    • IEC 62443 for IoT products for industries

    NIS and NIS2: cybersecurity of network and information systems

    NIS and NIS2 set requirements for the cybersecurity of information and IT systems. NIS stands for network and information systems. This legislation covers companies providing 'essential services', such as healthcare facilities and telecoms and energy companies. The original guideline dates back to 2016. With the entry into force of NIS2 in 2023, more companies will be designated as providers of essential services. These include food manufacturers, postal and courier companies and government departments. In addition, companies should identify and address cybersecurity risks in supplier relationships and the supply chain. Finally, requirements on the security measures to be applied have been tightened.
    Organizations covered by NIS or NIS2 must identify and address cybersecurity risks in supplier relationships and the supply chain. In addition, they must take security measures, which have been tightened since 2023.

    ISO 27001

    To comply with the NIS directive, you can use the ISO 27001 standard. It allows you to shape your information security management system in a structured way. DEKRA Audit is happy to certify you against ISO 27001.

    Why DEKRA as your partner for cybersecurity?

    • We are a multidisciplinary cybersecurity partner. We combine our expertise of e-mobility, lighting and medical devices with cybersecurity.
    • Especially for charging stations, we offer the world's first certification programme.
    • We provide ISO 27001 certifications in the form of a People Based Audit​. In this, we have an eye for the human factor in your business processes.
    • With a certificate from DEKRA, you give your customers more confidence and strengthen your position in the market.
    • We have accreditation from IECEE to issue CB certificates for IEC 62443-4-1, IEC 62443-4-2, IEC 62443-3- and IEC 62443-2-4.
    • We have a DEKRA Seal for IEC 62443-4-1. This involves auditing you annually, allowing you to rise in maturity level.
    • We certify pentesters according to the keurmerk pentesten (quality pentesting mark). As part of this, we offer the pentester a free baseline measurement.
    • Our cybersecurity experts conduct penetration test for products to test its cybersecurity.