Security audit enables organisations to evaluate their IT system’s level of protection
• Certification of auditing services by ANSSI (the French Network and Information Security Agency) ensures quality of services
Airbus Defence and Space, a key player in the cyber security market in Europe, has just been awarded PASSI (certification for audits on the security of IT systems) certification by ANSSI (the French Network and Information Security Agency) in recognition of its security auditing services. The PASSI certification comes following a demanding process, and recognises the quality and compliance of the audit services. It covers technical, organisational and social aspects.
It also guarantees the confidentiality of the data gathered during the audit from organisations that use the cyber security services of Airbus Defence and Space, in particular critical infrastructure operators, who have to comply with the new obligations of the French legislation – Loi de Programmation Militaire (LPM 2014 – 2019).
François Lavaste, Head of CyberSecurity at Airbus Defence and Space, stated:
We are very proud of this certification for our audit services; This certification ensures that clients benefit from intrusion tests or audits created by high-level experts in conformance with the requirements stipulated by ANSSI.”
The IT security system audit is a way of obtaining an objective and clear evaluation of the level of protection of an IT system. It highlights technical and organisational vulnerabilities in the IT system and identifies the areas requiring improvement in order to increase the security level.
About Airbus Defence and Space
Airbus Defence and Space, a division of Airbus Group, is Europe’s number one defence and space enterprise and the second largest space business worldwide. Its activities include space, military aircraft and related systems and services. It employs more than 38,000 people and in 2015 generated revenues of over 13 billion Euros.
CyberSecurity, a business cluster within Airbus Defence and Space, provides companies, critical national infrastructures and government and defence organisations with reliable, high-performance products and services to detect, analyse and counter increasingly sophisticated cyber attacks.