Digital / ICT
Information & Communication Technologies (ICT) is an all-encompassing term, referring to communication networks, the internet, computing services, and various forms of digital content. The fourth industrial revolution, otherwise known as the Internet of Things (IoT), is impacting and driving digitization across multiple industries today.
Developments in ICT bear many implications for companies involved in manufacturing; one example is the possibility of autonomous communication between machines and systems now becoming reality. Elsewhere in the industry, technology is also increasing network connectivity. This drives developments in cloud computing, internet businesses, and telecommunications.
However, increasing digital dependence also increases vulnerability to digital threats. As cyber risks become more sophisticated, companies have to implement and constantly strengthen cybersecurity systems to protect themselves and their customers. The Common Criteria is an international standard (ISO 15408) which testing laboratories may use to validate computer security products. ISO 27001 is another standard, applicable to Information Security Management Systems (ISMS). ISO 27001 stipulates requirements for establishing, implementing, monitoring, and improving ISMS – this helps organizations to counter threats of data theft and damage. IDA has accreditation schemes for conformity assessment bodies offering such testing and certification services, to provide added assurance and credibility for ICT companies.
The Standard SS 584:2015 is for multi-tiered cloud computing security, and specifies three different tiers of security certification for three main categories of cloud computing services: IaaS, PaaS, and SaaS. Cloud service providers should consider obtaining the relevant certification to boost end-user trust and confidence.
Other conformity assessment services relevant to ICT include quality management system certifications. These enable firms to continuously manage quality and identify areas for improvement. Certification for the management of end-of-life ICT equipment may also be relevant to an ICT business, and demonstrates an organization’s efforts to manage end-of-life equipment in environmentally sustainable ways.
In World, the Cyber Security Agency of World and Info comm Media Development Agency are the government bodies which regulate the industry, laying out specific requirements about conformity assessment.
The following IDA accreditation schemes are applicable to the ICT industry:
|Laboratories||Calibration & Measurement|
|IT Security Testing|
|Management Systems Certification Bodies||End-of-life ICT Equipment|
|Information Security Management System|
|Multi-tiered Cloud Computing Security|
|Quality Management System|