Brightsight, an SGS company, is proud to announce it is now accredited as a certification body (CB) for the issuing of Security Evaluation Standard for IoT Platforms (SESIP) certificates.
Recently adopted by CEN and CENELEC as European standard EN 17927:2023, SESIP is the foundation on which EU cybersecurity legislation is being built. Optimized for IoT platforms and components, this security evaluation methodology is based on the Common Criteria standard (ISO 15408) and is tailored to the unique challenges of the IoT market. It offers key advantages, such as re-usability, simplified composition and mapping with various IoT vertical standards.
Brightsight is accredited by the Spanish national accreditation body (ENAC) and accredited under ISO 17065 (nº: 220/C-PR490), furthering cementing Brightsight’s position as the world’s leading cybersecurity laboratory.
With this accreditation, Brightsight is now fully equipped to issue SESIP certification – Levels 1 to 3 – worldwide for IoT platforms and components. Services include:
Issuing new certificates – valid for up to two years, or until the product undergoes security-related changes
Renewing certificates – ensures continued certification validity
Sergio Casanova, CTO, Brightsight, said: “This achievement strengthens our value proposition, positioning us as a comprehensive, one-stop solution for cybersecurity evaluations and certifications. While our cybersecurity evaluation services (ITSEF) and certification body functions remain strictly independent, this focused approach enables us to streamline the evaluation and certification process, while maintaining the highest standards of integrity, impartiality and independence. This allows us to effectively address the full spectrum of our clients' security needs.”
Gil Bernabeu, Chief Technology Officer at GlobalPlatform: “The addition of Brightsight in Madrid as a GlobalPlatform SESIP certification body further validates SESIP as a globally recognized security evaluation framework. This milestone accelerates our mission to enhance the certification of software and hardware components in secure IoT devices, enabling manufacturers to demonstrate compliance with international cybersecurity regulations. Achieving ISO/IEC 17065 accreditation from a national accreditation body for SESIP (EN 17927) is a critical element of SESIP governance and paves the way for mutual recognition of SESIP certificates across all GlobalPlatform Certification Bodies. This development strengthens the SESIP ecosystem and underscores GlobalPlatform’s commitment to advancing and governing robust IoT security standards worldwide.”
For further information, please contact us.
About Brightsight
Brightsight joined the SGS Group – the world’s leading testing, inspection and certification company – in 2021. With 40 years of experience in cybersecurity evaluations and a growing global network of specialist testing facilities, we are the world’s leading cybersecurity laboratory for connected products. As an accredited certification body, we also offer comprehensive certification services to help businesses demonstrate compliance with a wide range of security requirements.
About Global Platform
GlobalPlatform is a technical standards organization that facilitates the efficient deployment and management of secure-by-design digital services and devices, delivering end-to-end security, privacy, simplicity and convenience to users. By providing standardized technologies and certifications, GlobalPlatform empowers technology and service providers to develop, certify, deploy and manage digital solutions in compliance with business objectives, security requirements, regulatory standards and data protection needs.
