About „Brightsight by SGS“

(SGS Digital Trust Services GmbH)

Digital trust has evolved from a time when cybersecurity was primarily the concern of governments and the banking industry. In that select but highly regulated space, Brightsight was the trailblazer, setting global benchmarks for high security assurance.

Trusted, effective, they became market leaders. But that was just the beginning. As the world of cybersecurity evolved and expanded, so did they. And what began with a single lab in the Netherlands soon became a global network.

Since joining SGS, growth has accelerated, including strategic acquisitions like Gossamer and Penumbra in the US solidifying their presence around the globe. The headquarter of Brightsight is in Delft, the Netherlands. Through the integration of Brightsight’ s expertise and our comprehensive testing, inspection and certification services, we can address the rising complex digital trust concerns and regulations, from the Internet of Things to the medical, industrial and automotive sectors. With our strength combined, clients know that they can rely on us. From where we stand today, we can see the world of tomorrow as artificial intelligence, quantum computing, and extended reality push the boundaries of what’s possible. We are navigating an increasingly interconnected dynamical landscape where digital trust has become more essential.

At SGS, we understand that the new challenges require bold new approaches. It is why we are relentless in our pursuit of pioneering innovation, partnering with research institutes, startups, teach leaders and clients to design and deliver the right services and solutions, when you need to be sure.

Brightsight by SGS in Graz was established in 2019 as SGS Digital Trust Services GmbH. We became the first Austrian lab accredited by the BSI (Bundesamt für Sicherheit in der Informationstechnik) to evaluate secure products up to Common Criteria’s highest assurance level. Today, we specialize in cybersecurity services for the DACH region, with a strong presence in the Alps-Adriatic area. Our core offerings include Security Testing & Assessment (IoT with the Radio Equipment Directive and Cyber Resilience Act, Medical, Automotive), Common Criteria & SESIP Evaluations, Security Trainings & Workshops, BSI IT-Sicherheitskennzeichen (Security Label).

Projects

• K2 Digital Mobility Context-Embedded Vehicle Technologies

Together with Magna Steyr Fahrzeugtechnik GmbH and Virtual Vehicle Research GmbH, SGS Digital Trust Services GmbH worked on the three-year K2DM research program. The project aimed to enhance and introduce methods and processes to prepare the industry for upcoming security requirements under UN Regulations 155 and 156. SGS DTS contributed expertise in vehicle-level threat analysis, risk assessment, and penetration testing. Document templates were reviewed for compliance, test plans were developed for new vehicle designs, and project execution was validated across multiple vehicle types provided by Magna Steyr Fahrzeugtechnik GmbH. The project delivered valuable insights for automotive manufacturers and suppliers, helping them meet rising cybersecurity demands and address new challenges driven by digital innovation in the sector.

• Secure Development Lifecycle lecture at TU Graz

SGS DTS organized a lecture for the Institute of Information Security at TU Graz, giving students insight into state-of-the-art Secure Development Lifecycle (SDL) processes from an evaluation laboratory’s perspective. The students were guided through the entire lifecycle—from risk analysis, product design, and secure development to production, testing, validation, and secure end-of-life processes. In a practical exercise, they designed a secure product with industry-standard user documentation and later evaluated its security. Through this initiative, we not only introduced future engineers and product designers to our work but also gathered valuable feedback on challenges vendors frequently face, helping us refine our internal processes and training materials.

Collaboration with SILICON ALPS

We are mainly interested in networking, learning what is needed to build digital trust. Joint projects, like setting up a combination of process and product certification regarding the new requirements in changing certification landscape could be beneficial for the SILICON ALPS cluster.

We aim to expand awareness of our services and capabilities within the local community. Our goal is to establish long-term partnerships that foster digital trust and help organizations meet evolving security requirements across various industries. By collaborating with multiple partners, we can create mutual benefits through process optimization and more efficient certification procedures throughout supply chains.

Contact & Next Steps

For more information contact Tobias Wagner, Account Manager, here.