Following a successful audit by TÜV NORD, Giesecke+Devrient (G+D) has become one of the first companies in the world to receive the ENX VCS certificate from the ENX Association, further highlighting the company’s pioneering role in cyber security in the automotive industry.
Like many industries, the automotive sector is facing considerable information security challenges. Digitalization, Industry 4.0 and the networking of connected vehicles with the implementation of new mobility concepts require comprehensive data protection and security. The establishment of industry-wide standards can provide crucial support in this regard. This is precisely the task of the ENX Association based in Frankfurt am Main and Paris, an association of car manufacturers, suppliers and national automotive associations. Its aim is to enable secure and trustworthy collaboration in industrial value creation networks, especially within the automotive supply chain.
With the ENX Vehicle Cyber Security (ENX VCS) audit, the organization has now established a new leading certification standard for the automotive industry. ENX VCS was developed in collaboration with experts from the automotive industry – including OEMs, suppliers and service providers. At the invitation of ENX and TÜV NORD, which acts as one of several testing service providers for the certificate, G+D also took part in the pilot phase as a leading company in cyber security.
The ENX VCS certification confirms that a cyber security management system (CSMS) complies with the requirements for vehicle cyber security with regard to electrical and electronic components along the value chain. This requires standardized risk management procedures.
G+D has become one of the first companies to have successfully passed the ENX VCS audit and received a corresponding certificate from the ENX Association after being audited by the neutral testing body TÜV NORD.
With ENX VCS, G+D provides standardized proof of an implemented CSMS in accordance with the international certification standard ISO/SAE 21434 and the ISO/PAS 5112 guideline. This means that the company meets the technical requirements for implementing a CSMS in the supply chain and implements the necessary standardized procedures for managing risks.
“For G+D, security is a central component of its technologies and solutions. Certifications may not seem exciting, but when it comes to security, they are indispensable, especially in the automotive industry. Many regulatory requirements have to be observed for every type approval and the cyber security of the vehicle is also playing an increasingly important role. This has long been a focus for G+D and with the ENX VCS certificate, we can once again confirm our leading position in this area,” explains Jan Eichholz, Head of Connectivity & IoT Security at G+D.
