Drivesec Weseth®

Drivesec Weseth is a platform that supports IoT system manufacturers and their suppliers by integrating Security by Design principles throughout the CI/CD process. The platform covers multiple phases of the development lifecycle including planning, coding, building, testing, release, deployment, operation, and monitoring. The platform provides cybersecurity process design and risk analysis capabilities, including compliance with Cyber Security Management System (CSMS) and Software Update Management System (SUMS), item definition, and Threat Analysis and Risk Assessment (TARA). It supports architecture and concept development through requirements engineering, cybersecurity concept development, and architectural design. During the code phase, the platform addresses security software and hardware design, secure coding practices, and secure operating system configurations. The testing phase includes automated vulnerability assessment, functional security testing, automated verification, and penetration testing capabilities. For deployment and monitoring, Weseth provides continuous automated vulnerability search, vulnerability scanning and assessment, and continuous monitoring features. The monitoring capabilities include product management, Virtual Security Operations Center (VSOC) functionality, and incident response management. The platform offers modular solutions that can be integrated at different stages of the CI/CD process to help prevent disruptions and delays while ensuring secure and resilient solutions reach the market.