Skip to searchSkip to main content
Brightsight

  • The leading cybersecurity laboratory for connected products

    Get your products ready and in compliance with the latest security regulations and requirements

    Explore our services
    Learn more about the European Union Cybersecurity Certification
    All five European Brightsight laboratories are licensed to perform security evaluations of IT products as independent test labs under the EUCC.
    Learn more about our EUCC evaluation services

Addressing your security evaluation challenges

Find out about Brightsight's lab services

Smooth and efficient security evaluation journey

We don’t just tick boxes. We take you on a full journey to help you understand what the best options are for you.

We are accredited by 50 leading organizations and schemes. We own a lot of intellect on certification or approval that can help you in your journey.

Offering you complete one-stop-shop services. We offer pre-evaluation services as preparation for evaluation, are a cybersecurity lab to validate compliance and a certification body to certify your product.

You can count on our reliability and predictability and benefit from combined strengths of integration with SGS.

Find out about the certification services from Brightsight CB

Customer-centric focus

We balance the right level of security with time to market by offering a transparent planning.

You can count on a flexible evaluation approach, where possible.

Offering local presence for smooth and clear communication as well as compliance with local schemes.

Delivering high-quality evaluation technical report.

Reusing intelligence from past projects to speed up time-to-market.

Our security evaluation and certification services

Security Evaluations
Site Security Evaluations

Get your product tested already in the development stage to avoid any security issues in your final product. We evaluate IT products up to the highest security level of EAL 7.

We can perform independent site security evaluations or as a part of product evaluations.

Training Workshops
Pre-evaluation Services

Our training workshops are adapted to meet your specific needs and interests at the level you require.

To help you prepare for the formal evaluation, we offer various pre-evaluation services (documentation support, gap analysis,  advisory, and many more)..

Why Brightsight as your security evaluation partner?

At Brightsight, we build trust in today’s hyperconnected world. Our ambition is to be at the forefront of cybersecurity. 

We evaluate various IT products, work with developers across the entire value chain: from IP to end device, and provide comprehensive support throughout the entire certification journey. We help you navigate the regulatory landscape, so that you can leverage your existing certifications to minimize redundant testing and combine evaluations across multiple schemes to save time. Your success is our priority. 

Brightsight, by SGS, is your trusted cybersecurity lab for connected products. With over 40 years of expertise in IT security evaluations and certifications, Brightsight has expanded from a single lab in the Netherlands into a global network. Accelerating growth to solidify global presence, today, we operate in Europe and Asia through locations in Madrid, Barcelona, Meyreuil, Graz, Beijing, Shanghai, and Singapore, while Gossamer serves our North American customers from offices in Columbia, MD, and Clackamas, OR.

Scheme recognition

As a laboratory recognised by more than 50 international schemes, Brightsight offers efficient security evaluations by reusing results or combining evaluations, where possible. 

Brightsight is the leading laboratory in Common Criteria security evaluations. We have 40 years of experience in Common Criteria, the most widely recognised and comprehensive IT security standard in the world that can be used to certify any IT system or device. We work with 10+ Common Criteria schemes worldwide.

Learn more
Common Criteria
SESIP
EUCC
Common.SECC
RDI
eIDAS
CSA Singapore
BSI
CCN
GSMA
PSA Certified
ETSI
Cybersecurity Labelling Scheme by Cyber Security Agency of Singapore
SGS Cybersecurity Mark
CPSTIC
European Commission
ISO
NIST
EMVCo
PCI
Die Deutsche Kreditwirtschaft
Mastercard
American Express
Visa
Discover Network
Troy
MIFARE
DTSEC
National IT Evaluation Scheme by Cyber Security Agency of Singapore
FeliCa Networks
TSE
FIDO Alliance
Sertit
ELO
Australian Payments Network
eftpos
napas
Paynet - Payments Network Malaysia
pay.uk
JCB
Interac
Pure Payments
LINCE
California State Senate
ICAO
AAMI
FDA - U.S. Food and Drug Administration
EU-MDR
UNECE
ISA
China NMPA
DPA
IEC
TISAX - ENX Assocaiation
Global Platform
Swiss Digital Initiative
OWASP

What customers and partners say about our security evaluation services

Datecs logo
"The project has been successful and matches our expectations. The communication with the project manager was perfect, we received weekly reports. The senior security evaluator has a high level of technical expertise. In overall the project execution was effective, based upon established best practices, processes, project updates and tools."

Technical Support from Department of Innovative Technologies, Datecs Ltd.

Stefan Mitov

Infineon logo
“The SGS Brightsight Common Criteria Course helped me understanding certification requirements, especially for the NSCIB alternate approach. The training content is well structured and there is enough time provided for Q&A. The trainers provided me with in depth knowledge on the subject, and now I can help our development team to decide what is required and what is not. I would definitely recommend this training to my colleagues and business partners.”

Product Security Certification Expert, Infineon Technologies
Kalaiselvam Suruddaiyan

CEC Huada logo
"SGS Brightsight and HED have already been working together for 10 years, as SGS Brightsight's evaluation methodology seamlessly matches HED's product development phase. This is possible because of the deep understanding of Chinese business, culture, and language of SGS Brightsight. SGS Brightsight's service and time-to-certificate mentalities are critical to our business."

CEO of CEC, Huada Electronics Design Co, Ltd. 
Chang Feng

Check Point Software Technologies LTD.

My colleague told me that if we wanted to get this certification fast, there was only one company that could do it, and advised me to talk to SGS Brightsight. He was right.“

VP, Check Point Software Technologies

Gera Dorfman

MagicCube

The SGS Brightsight’s team’s approach, knowledge, and attention to detail played a big part in making this a successful endeavor. This certification provides recognition and third-party technical validation, which will facilitate widespread adoption and deployment of our products globally.”

Co-founder and CEO, MagicCube
Sam Shawki

PAX Technology

"Thanks to our trusted partner SGS Brightsight’s expertise and hard work in completing the highest standards of security evaluation in such a quick period.”

VP, PAX Technology
Alex Dong

Listen to Bright Insight Podcast

Coming events

Money 20/20
​3-5 June
​Amsterdam, the Netherlands

We will be in Amsterdam attending Money20/20—Europe's largest fintech trade show—to gain knowledge of where the future of fintech is headed. 

Identity Week Europe
​17-18 June
​Amsterdam, the Netherlands

Meet us in Amsterdam for Identity Week Europe 2025—it's the world's largest and most important identity event. 

Learn More
Learn More

Building digital trust

Get your products evaluated

  • Security reports to demonstrate compliance and readiness 
  • 3rd-party security evaluations for risk management
  • Evidence of security capabilities as a market differentiator 

Work with Brightsight

  • Expertise from 50+ scheme accreditations and 700+ security projects annually
  • 40+ years of experience in security evaluations
  • 170+ security evaluators and 55+ setups