LG Electronics (LG) has taken a significant leap in its cybersecurity journey, earning the prestigious Level 3 Cybersecurity Management Systems (CSMS) certification from TÜV Rheinland, a global leader in testing and certification. As the highest level of CSMS certification, this achievement underscores LG’s unwavering commitment to cybersecurity excellence, particularly as it solidifies its position as a leading tier-1 mobility solution supplier.
This milestone demonstrates LG’s proactive approach to ensuring cybersecurity throughout the entire lifecycle of its automotive products—from development and manufacturing to real-world application. A key factor in LG’s successful certification was the implementation of Cybellum’s CSMS Solution from its Product Security Platform, which provided LG with a comprehensive framework to meet the rigorous requirements of ISO/SAE 21434 and UN R155.
What Is CSMS Certification?
The CSMS certification confirms compliance with international cybersecurity standards and regulations, including ISO/SAE 21434 and UN R155, now mandatory for automakers across 56 markets. Achieving this certification involves extensive evaluations, such as simulated cyberattacks, to ensure robust security measures and processes are in place.
By advancing from Level 2 to Level 3 certification, LG has demonstrated its commitment to exceeding industry norms. This achievement reflects its ability to address increasingly stringent cybersecurity criteria through advanced testing of both its CSMS framework and its manufactured products.
Cybellum and LG: Joining Forces for Better CSMS Management
A key enabler of LG’s CSMS certification journey was Cybellum’s Product Security Platform, specifically its CSMS Solution. This solution empowered LG to:
- Streamline compliance with ISO/SAE 21434 and UN R155 requirements.
- Identify and mitigate vulnerabilities using advanced cybersecurity testing and risk management tools.
- Enhance its overall product security framework, ensuring secure design, development, and lifecycle management.
Cybellum’s platform provided LG with real-time insights into cybersecurity risks and offered automated tools to meet regulatory and industry standards, enabling LG to meet TÜV Rheinland’s rigorous certification requirements efficiently.
Aligning with Industry Best Practices
Beyond CSMS, LG adheres to the Automotive Software Process Improvement and Capability Determination framework, widely known as Automotive SPICE® (ASPICE). ASPICE, developed by the Automotive Special Interest Group, sets the standard for evaluating and improving vehicle software development processes. LG’s recognition for implementing ASPICE for Cybersecurity further highlights its leadership in adhering to cutting-edge industry practices.
Staying Ahead in the Era of Software-Defined Vehicles
As the automotive industry accelerates its transition to software-defined vehicles, LG continues to address evolving cybersecurity challenges. The company has reinforced its efforts through strategic initiatives, including its acquisition of Cybellum in 2021. By leveraging Cybellum’s expertise and tools, LG is better equipped to deliver safer and more reliable solutions for automakers and end users.
LG is at the forefront of employing cutting-edge security technologies and processes to deliver safer and more reliable solutions for automakers and end users. We will continue to refine our security systems to stay ahead of increasingly sophisticated cyberthreats targeting the mobility sector
Eun Seokhyun, president of LG Vehicle Solution Company
Conclusion
LG’s achievement of Level 3 CSMS certification marks a significant step in its journey to become a global leader in automotive cybersecurity. With the support of Cybellum’s CSMS Solution and its steadfast commitment to industry best practices, LG is well-positioned to navigate the complex cybersecurity landscape of the software-defined vehicle era.