Hikvision Achieves Dual ISO Certification for Enhanced Vulnerability Management and Cybersecurity

Hikvision Achieves Prestigious ISO Certifications for Cybersecurity

Hikvision, a leading provider of innovative security products and solutions, recently announced a significant milestone in its commitment to cybersecurity. The company has been awarded ISO/IEC 29147:2018 and ISO/IEC 30111:2019 certifications by the British Standards Institution (BSI). These certifications are recognized globally and emphasize Hikvision's structured approach to vulnerability management throughout its product lifecycle.

Understanding the Certifications: ISO/IEC 29147 and ISO/IEC 30111

The ISO/IEC 29147:2018 certification outlines a standardized method for organizations to receive and manage vulnerability reports from external researchers. This certification ensures that Hikvision can communicate and disclose security information promptly and transparently, fortifying its responsibility towards its customers and stakeholders. On the other hand, ISO/IEC 30111:2019 specifies the internal processes for investigating and remediating reported vulnerabilities. This structured approach guarantees that Hikvision can address vulnerabilities effectively, ensuring a thorough resolution process.

The achievement of these certifications underscores Hikvision's dedication to fostering trust in cybersecurity practices. The BSI audit highlighted the company’s robust mechanisms for assessing, processing, and responding to security vulnerabilities. By implementing automated tools, Hikvision can efficiently enhance the speed and accuracy of vulnerability management, ultimately reducing risks for users and instilling confidence in the products it offers.

Aligning with Global Regulatory Standards

The timing of this certification is critical as global regulatory frameworks continue to evolve. Hikvision's compliance with international requirements, including the European Union’s Cyber Resilience Act (CRA), further reinforces its commitment to maintaining effective vulnerability disclosure and remediation practices throughout the lifecycle of its connected products. By aligning its procedures with stringent global standards, Hikvision is solidifying its reputation as an industry leader.

A Legacy of Responsible Vulnerability Management

Since its inception, Hikvision has prioritized security as a fundamental aspect of its product development strategy. In 2014, it established the Hikvision Security Response Center (HSRC) to handle the global receipt, processing, and disclosure of security vulnerabilities. By 2018, Hikvision had become a CVE (Common Vulnerabilities and Exposures) CNA partner, collaborating with security researchers worldwide to quickly identify and patch vulnerabilities in its products.

The establishment of the CyberSafe Experience Center in Hoofddorp, Netherlands, in 2023 exemplifies Hikvision's ongoing investment in cybersecurity. This center facilitates regular vulnerability scans on its products and provides partners and customers with insights into its vulnerability management practices. The continuous improvement of its vulnerability handling systems over the past decade showcases Hikvision's commitment to not only meeting global regulatory standards but also leveraging automation to boost response efficiency and enhance product security.

Through the implementation of ISO/IEC 29147 and ISO/IEC 30111 frameworks, Hikvision is actively optimizing its vulnerability management processes while fostering collaboration with the global cybersecurity community. The organization remains dedicated to delivering secure, reliable, intelligent products and solutions worldwide, reinforcing its position as a trusted leader in the security industry.

Conclusion

With these certifications, Hikvision demonstrates not only its compliance with international standards but also its unwavering commitment to enhancing the security of its products and solutions. As cyber threats evolve, Hikvision is poised to lead the way in ensuring user safety and trust across its global operations. To learn more about Hikvision's cybersecurity initiatives, interested parties are encouraged to visit the company's website and explore their dedicated resources.