Weidmüller Industrial Security

Simply secure.

Weidmüller Industrial Security

Cyber Security - NIS2, CRA and Co call for action

In today's digital world, Industrial Security is an essential topic for every company in the field of automation. The number of cyber attacks is constantly increasing. In view of these threats and the increasing legal requirements - such as the Cyber Resilience Act, NIS 2, RED DA or the EU Machinery Regulation - it is high time to take a close look at industrial security.

At Weidmüller, we are aware of these challenges and have already integrated numerous security functions into our products. Our solutions offer you comprehensive protection and help you to secure your systems against growing threats. For secure use of your machines and systems.

Weidmüller Industrial Security at a glance

Weidmüller Industrial Security at a glance

This is a YouTube video. By clicking on this video, you agree to Google/YouTube's Privacy Policy & Terms of Use . You also agree to our Privacy Policy.

Comprehensive portfolio, various partnerships and certification of our development processes in accordance with IEC 62443. Watch our video for an entertaining overview of how we can support you with your cybersecurity challenges.

Industrial Security: New laws, requirements and industrial standards

Overview: Which industrial security laws and standards apply to whom?

NIS2 applies to many industries with more than 50 employees or a turnover of more than €10 million. This applies to security in IT and OT (Operation Technology) departments, including product suppliers.

The CRA, RED-DA and MVO laws apply to products ranging from simple devices with a communication interface to machines.

Certification from TÜV Nord

IEC 62443-4-1 certification from TÜV Nord

Weidmüller has received the certificate for industrial IT security according to IEC 62443-4-1 from TÜV Nord. IEC 62443 is the most important internationally recognised standard for IT security in automation and control systems. The certificate underlines Weidmüller's commitment to developing secure-by-design products. The aim is to enable customers to operate their machines and systems safely with secure-by-design products and to comply with legal security requirements such as the NIS2 Directive and the Cyber Resilience Act (CRA).

Industrial Security: Quality standard from Weidmüller

As a family-run industrial company, Weidmüller stands for high robustness and quality. Under these conditions, we are constantly expanding our standardised and internal quality standards and are ISO 9001 certified as a company. Cybersecurity is a high priority for our company, our processes and our products.

Product security at Weidmüller

  • Use the extensive security functions of Weidmüller products in accordance with the ‘Defence in Depth’ concept. Advice from Weidmüller or with the help of our ‘Product Security Guideline’ (see Downloads).
    It is important that the security functions are used in accordance with the risk assessment of the application.
  • From industry for industry: Weidmüller also uses its own products in the production of security functions.
  • Weidmüller checks the applicability of security functions for all relevant products and takes appropriate measures.
  • Weidmüller has implemented the ‘Product Security Incident Response Team’ (PSIRT) and informs about discovered security gaps.

Weidmüller uses the international security standard IEC 62443 for its development processes and products

  • Weidmüller has certified its product development process in accordance with IEC 62443-4-1 .
  • Weidmüller develops products in accordance with IEC 62443-4-2.
  • Weidmüller develops automation products for the marine industry in compliance with the security industry standard IACS UR-E27.

IT/OT-Security at Weidmüller

  • Weidmüller implements the NIS2 requirement at company level in the areas of IT and OT.
  • The development and operation of the u-link remote maintenance platform is ISO 27001 certified.

PSIRT

The Weidmüller PSIRT (Product Security Incident Response Team) is your trustworthy partner when it comes to the security of our products. We specialise in identifying, analysing and resolving security incidents quickly and efficiently. Our aim is to ensure the integrity and security of our products and to strengthen the trust of our customers. Through proactive measures and close co-operation with all parties involved, we ensure that our products always meet the highest security standards.

Weidmüller is also a member of CERT@VDE , the platform for publishing security vulnerabilities.

Defence in Depth model

The Defence in Depth model is a strategic approach to information security that aims to protect systems and networks from a variety of threats by implementing multiple layers of security.

The idea behind this concept is that a single security measure is not enough to fully protect a system. Instead, several security levels or layers are implemented to recognise, prevent or mitigate potential attacks at different levels.

Partnerships

Partnership for cyber consulting with Orange Cyberdefense

  • Support: Orange Cyberdefense helps customers as a member of the Weidmüller partner network with the implementation of security measures in machines or production plants.
  • Consultancy: Provides comprehensive advice on security lifecycle management.
  • Monitoring: The Security Operation Centres (SOC) from Orange Cyberdefense monitor systems and installations around the clock.

Increased security integration of our products into IT/OT systems through partnership with Fortinet

  • Partnership for industrial cybersecurity: We are working with Fortinet to strive for an extended integration of security functions in our products.
  • Focus on IT-OT convergence: The collaboration aims to overcome the challenges of merging IT and OT, particularly with regard to legal requirements such as NIS2 and CRA.
  • Availability and support: Fortinet software is made available on Weidmüller hardware.

Downloads

Perfect complementation