Governance and Compliance

CONTACT US

As the reliance on digital systems continues to increase, so does the subsequent threat on organisations from cyber incidents. Evolving legislation means that there is now a suite of standards, frameworks and regulations that relate to different aspects of cyber security. Compliance may seem arduous, but meeting the frameworks to meet such regulations will enhance security, boost resilience of critical operations and support organisations to reduce the risks of cyber crisis. Secura, a Bureau Veritas company, offers a wide range of services to help improve governance and achieve compliance with applicable regulations.

  • EU Cyber Resilience Act (CRA)

    The CRA is the first-ever EU-wide legislation of its kind, mandating cybersecurity requirements for both hardware and software products throughout their entire life cycle. Its aim is to improve the cybersecurity of digital products and services sold in the EU. 

    We support organisations to gain a thorough understanding of CRA and its impact, undertake gap assessments to help achieve certification to applicable standards, and support with actions to ensure compliance.

  • UK Cyber Security and Resilience Bill (CRB)

    The Cyber Security and Resilience Bill is a proposed UK law that aims to improve the country's cybersecurity and resilience in light of increased cyber threats. It is expected to expand the scope of existing regulations, increase reporting requirements, give more power to regulators and improve supply chain security. We offer a wide range of services to support cyber security and resilience, helping organisations to satisfy the requirements of the Cyber Security and Resilience Act once it comes into force in the UK.

  • IEC 62443

    IEC 62443 is a comprehensive series of international standards designed specifically for industrial automation and control systems security. It provides a systematic approach to identifying and mitigating cybersecurity risks throughout the entire lifecycle of industrial control systems. 

    Whatever stage of your IEC 62443 certification journey you’re at, we can support with certification services, training and awareness.

  • DORA

    The Digital Operational Resilience Act (DORA) is designed to enhance operational resilience, reduce IT threats and boost the ability of financial companies across the European Union to prevent and deal with ICT-related incidents. 

    We offer a range of services including boardroom training, gap analyses and implementation services to support you in achieving compliance.

  • NIS2

    The Network and Information Security Directive (NIS2) is the EU-wide legislation on cybersecurity, providing legal measures to enhance the overall level of cyber security and standardise cyber resilience across the EU.

    Our services include clarifying if NIS2 is applicable to your organisation, flexible training delivery, compliance mapping and implementing actions to ensure compliance.

Cyber Resilience Act (CRA)

Cyber Resilience Act (CRA)

Read More
Cyber Resilience Bill

Cyber Resilience Bill (CRB)

Read More
IEC 62443 Certification

IEC62443 Certification

Read More
DORA Compliance

DORA Compliance

Read More
NIS2 Compliance

NIS2 Compliance

Read More