Kalmar implements cybersecurity standards for port automation

Kalmar, a global provider of port and terminal automation solutions, has reinforced its commitment to cybersecurity by obtaining certifications for two key industry standards: IEC 62443-4-1 and ISO 27001.

The IEC 62443-4-1 standard focuses on industrial automation systems, outlining requirements for a secure development lifecycle (SDL). In 2023, Kalmar's Innovation Centre in Tampere and its Automation Business Line received certification for the software development of its Kalmar One automation system. This made Kalmar the first solution provider in the port and terminal industry to earn certification for the software development of its automation system for all terminal equipment. The certification has recently been extended to cover the MyKalmar INSIGHT solution.

In parallel, ISO 27001 specifies requirements for an information security management system (ISMS) within an organization. Kalmar has secured a company-wide ISO 27001 certification. These accreditations underscore Kalmar's dedication to ensuring a high level of security for its products and solutions.

"Compliance with IEC 62443-4-1 ensures that we can build secure houses for our customers, while ISO 27001 demonstrates that our own house is in order," stated Jouni Auer, Chief Information Security Officer at Kalmar. The certifications also streamline communication and the definition of security requirements between system providers and customers.

The certification process is rigorous, involving independent audits. Kalmar indicates it is continuously developing its cybersecurity practices and expanding its certifications to other solutions.