Cybersecurity

“A cyber-secure product development based on standards and process compliance: with INVENSITY, you establish best practices from the automotive industry, known for its all-encompassing and detailed approach.”

Gabriel Krämer | Head of Cybersecurity

âťť

A cyber-secure product development based on standards and process compliance: with INVENSITY, you establish best practices from the automotive industry, known for its all-encompassing and detailed approach.

Gabriel Krämer
Head of Cybersecurity

With INVENSITY, you have a partner who has extensive and long-standing experience in the field of cybersecurity in product development (for embedded systems) and covers a wide range of aspects from a single source, including consulting, coaching, management, and engineering.

We always customize our solutions together with our clients. With our own software application ISAT pro, we also offer a state-of-the-art solution for the creation and management of their Cybersecurity Risk Assessments.

Arnd Wurst
âťť
We recognized early on that cybersecurity-compliant development is not only beneficial for us, but above all for our customers. Together with INVENSITY, we have positioned ourselves well. We were particularly convinced by the approach of jointly finding a solution that was a perfect fit for us, while benefiting from best practices from other industries.
Arnd Wurst
Team Leader Global R&D - Software Development
GEMĂś
Dipl.-Ing. Markus Alttahler
âťť
From the practical applicability of IEC 62443 to the holistic view of our structures and processes for cybersecurity:

The INVENSITY team's experience and, in particular, cross-industry expertise enabled us to plan and take the next steps in standards-compliant cybersecurity development at STW.

Dipl.-Ing. Markus Alttahler
Software Development
Sensor-Technik Wiedemann GmbH

Client references

Partner

From methodical consulting …

  • The integration of measures in the field of cybersecurity is becoming indispensable for the development departments of technology manufacturers.
  • INVENSITY supports its customers in the selection of suitable approaches and measures, providing advice along the lines of actual needs. At the same time, INVENSITY supplements the competence development of companies at the points where it is necessary.
  • The goal is to enable the company to act competently on its own.

… to operational support.

  • Execution of Threat Analysis & Risk Assessments (TARAs) for (pilot) projects, i.e. definition of aspects (assets) worthy of protection with subsequent complete hazard analysis and risk assessment as well as identification of options for the respective handling of the identified risks.
  • Creation and coordination of cybersecurity concepts (system / software / hardware / safety), including requirements & architectures as well as an assessment regarding the suitability of third-party hardware & software.
  • Taking over cybersecurity management tasks, e.g. project-specific coordination, methodological support of the development team, etc.

Competencies

Norms, standards, regulations and processes

Embedded systems are increasingly networked with each other and with the environment and realize an ever higher degree of automation. As a result, the demands on cybersecurity are constantly increasing.

Security Management

Successfully managing cybersecurity activities and integrating them into the overall development process requires both management skills and technical cybersecurity expertise.

Cybersecurity Risk Assessment

High-quality, resilient and process-oriented security assessments are an essential part of the development process of cyber-physical systems.

Security Concepts

Once the decision to address risk has been made, a cybersecurity concept must be created that defines specific mechanisms to be implemented.

Security Implementation

After defining the cybersecurity concept and deriving the requirements and architecture design, the implementation of the cybersecurity mechanisms is the next step.

Security Testing

As for any other functionality, requirements-based testing is a must for cybersecurity mechanisms. However, additional types of testing are required to provide assurance that no critical unknown vulnerabilities remain in the system.

Selected References

Automotive

Conducting a risk analysis and developing a security concept for a body computer

Learn more

Automotive

Conducting a risk analysis and developing a security concept for a body computer

Learn more

Automotive

Cybersecurity support for ISO 21434 and TARA

Learn more

Plant Engineering

Cybersecurity consulting for a Tier 1 supplier of industrial control equipment

Learn more

Publications

Updates | Cybersecurity

Cybersecurity

Understanding the Cyber Resilience Act: Strengthening Digital Security
April 15, 2024

Cybersecurity

EU regulation for cybersecurity and digital product security: The Cyber Resilience Act
March 20, 2024

Cybersecurity

12 bugs per week: Is it time for a new automated negative testing approach?
March 6, 2024

Cybersecurity

The Importance of Vulnerability Management in the Automotive Industry
September 4, 2023