Proof of quality for IT security

Our IT security certificate helps you to provide evidence of your product's compliance with legal requirements – such as CRA, RED2, NIS2 – and thus make your product future-proof and market-compliant today.

Customers and partners – as well as legislators – are placing increasingly high demands on the independence, transparency, and traceability of the security measures of products and services. In response, NewTec GmbH conducts structured, context-specific security assessments and issues security assessment certificates confirming that no critical vulnerabilities were identified within the defined scope of the investigation and based on the agreed methods.

For providers, the certificate is a strong argument vis-à-vis regulatory authorities (e.g., FDA, EU notified bodies) and serves as proof of quality. It transparently documents that the legal IT security requirements are taken seriously. For buyers and customers, it creates trust: a product with an attestation meets defined security requirements and signals that the manufacturer understands IT security as a key quality feature.

What is tested?

As part of the security assessment, we, as an independent organization, review both the design and practical implementation of the product. The IT security certificate only issued if no critical vulnerabilities are found.

Our neutrality and expertise guarantee an objective evaluation—as reliable proof of quality, even in the context of regulatory requirements such as CRA & Co.

How is testing carried out?

The security assessment follows a structured, multi-phase approach based on established standards such as IEC 81001-5-1, IEC 62443-4-1, and ISO/IEC 21434. Link to Security Assessment Prozess

What does the attestation include?

•     A detailed certificate report,
•     the official attestation certificate with specified security features,
•     an entry in our public certificate list on this website,
•     upon request, a publicly accessible white paper that presents the audited security measures in a generally understandable manner.

Who performs the assessments?

NewTec performs assessments with cross-functional teams of experts. Depending on the product and context of use, we combine cybersecurity analysts, penetration testers, domain experts, and requirements specialists to form an optimally coordinated assessment team. Thanks to our experience in highly regulated industries and our strength in audit quality and documentation, we deliver comprehensible and reliable security assessments – even in regulatory environments.