top of page

THE NEW
STANDARD

IN IOT SECURITY &
PRIVACY

TRUSTED - ASSURED - COMPETENT - SECURE

Office Building

ABOUT OUR
IOT ASSURANCE

The last few years have seen the Internet of Things vision grow from a theoretical concept to a major priority for many organiSations. As companies integrate IoT devices into their network infrastructures, they’re looking for new ways to use and manage the data they collect.

Since IoT-enabled devices can connect to a broader network, they can achieve extensive functionality. However, that brings a whole new challenge: securing all that data. An IoT connection - if it’s not properly secured - can have dire consequences.

That is why we are one of the few organisations leading the assurance of IoT devices with the introduction of the

CyberSure IoT Security & Privacy Certification (CS-IoTSP).

The first assurance standard designed to be fully aligned with ISO/IEC 27400 which references standards such as  ISO/IEC 27000, ISO/IEC 27701, ISO/IEC 29134, ISO 31000, and IEC 62443.

Our certification is the leading one on the market to ensure compliance with the guidelines, risks, principles and controls of ISO/IEC 27400 and be fully certified against CS security and privacy controls for IoT.

CYBERSURE IOT
CERTIFICATION

The CyberSure IoT Security & Privacy Certification (CS-IoTSP) identifies three key stakeholders for assessment:

 

  • IoT Service Provider - Responsible for providing services that include the operation of the IoT ecosystem. They are responsible for connectivity, data collection, and managing deployed IoT devices/solutions.

  • IoT Service Developer - Responsible for designing, implementing, and integrating IoT services. It is expected that the developer follows standard practices to secure the IoT ecosystem.

  • IoT User - The end user (including human and digital users) of the IoT ecosystem.

As with ISO/IEC 27400, CS-IoTSP has 45 controls that are assessed against in order to be able to demonstrate secure the deployed IoT solutions. In addition, our certification breaks down the purpose of each control, who the responsible stakeholders are, the associated domain, and guidance on how to implement the IoT solutions securely.

Our certification is highly comprehensive and robust internationally. It is currently one of the only IoT security & privacy certified assurances that recognises PSA Certification in its findings (levels 1 - 3) as part of the security resilience assessment.

ABOUT OUR

TRAINING

Digital Gadget

INDUSTRY
KEY STATISTICS

  • In 2021, there were more than 10 billion active IoT devices.

  • It’s estimated that the number of active IoT devices will surpass 25.4 billion in 2030.

  • By 2025, there will be 152,200 IoT devices connecting to the internet per minute.

  • IoT solutions have the potential to generate $4-11 trillion in economic value by 2025.

  • 83% of organizations have improved their efficiency by introducing IoT technology.

  • It’s estimated that global IoT spending will total $15 trillion in the six-year period between 2019 and 2025.

  • The consumer IoT market is estimated to reach $142 billion by 2026 at a CAGR of 17%.

  • 94% of retailers agree that the benefits of implementing IoT outweigh the risk.

  • The amount of data generated by IoT devices is expected to reach 73.1 ZB (zettabytes) by 2025.

The growth of IoT devices is only set to grow as you can see in the growth from 2016-2020.

devices_iot.png

CYBERSURE IOT
ASSESSMENT

The CyberSure IoT Security & Privacy Certification (CS-IoTSP) assessment varies depending on your organisation size, number of IoT devices deployed and your stakeholder responsibilities.

As an example a company of 50 staff, operating as an IoT Service Developer with 2 sites took 5 working days to assess and accredit. There will be an annual continual monitoring assessment to ensure compliance.

There are opportunities for remediations should non-conformities be found as long as the re-assessment is booked within 90 days of the initial assessment.

Our auditors are experienced in both information security such as Lead Auditors for ISO 27001 and Cyber Essentials but are also experts in privacy (ISO 27701) and IoT security. Our lead auditors are also members of the IoT Security Foundation to help ensure a strong and current working knowledge.

To arrange a consultation to discuss your needs, please complete the Contact Form and add CS-IoTSP to the subject line.

CSIoTSP_cert_edited.jpg
bottom of page