SGS

World-leading testing and certification company that, through SGS Brightsight, provides CRA and RED security evaluation, conformity assessment, and notified-body services.

CompanyCyber Resilience Act Compliance

Pricing: Custom (contact sales)

Updated June 2026.

What is SGS?

SGS is the world's largest testing, inspection, and certification company. Its cybersecurity arm, SGS Brightsight, runs accredited security-evaluation laboratories (including a facility in Graz, Austria) that assess digital products against CRA requirements and RED cybersecurity standards. SGS develops tailored CRA service packages and operates a Notified Body that can issue EU type certificates for RED Article 3(3) using EN 18031.

Best for: Manufacturers of higher-assurance digital products (chips, secure elements, payment, embedded) needing lab evaluation and EU type certification
Pros
  • Massive global scale (~99,500 employees; ~2,500 labs/offices in 115 countries)
  • Brightsight is a top-tier security-evaluation lab with deep Common Criteria and high-assurance expertise
  • Notified Body able to issue EU type certificates for RED cybersecurity (EN 18031)
  • Accreditations including ISO/IEC 17025, plus IEC 62443 and EN 18031 capability
Cons
  • Large enterprise TIC firm — formal certification-led engagements, less suited to small or early-stage manufacturers
  • No public pricing
  • Evaluation/certification focus rather than ongoing in-house remediation engineering

Key Features

CRA gap and compliance assessment
Product security evaluation in Brightsight labs
RED cybersecurity testing to the EN 18031 series
Conformity assessment and EU type examination (Notified Body)
IEC 62443 product and component evaluation
Common Criteria and high-assurance security evaluation
Vulnerability assessment of digital products
CE-marking support

Sources & references

Where the information on this listing comes from. Always verify pricing and capabilities against the vendor before a purchasing decision.

SGS — official websitePrimary source
SGS — Why the Cyber Resilience Act matters
SGS
SGS Brightsight opens Graz security-evaluation facility
SGS

Spot an error, or do you represent SGS? Request a correction.

Quick Info
PricingCustom (contact sales)
ModelTesting + certification + advisory
Founded1878
CloudNo
Self-HostedNo
Visit Website →

Last updated: Jun 17, 2026

SGS Alternatives
View All Alternatives
pi3g
German embedded-Linux and IoT specialist helping SME manufac...ONEKEY
European product-cybersecurity platform automating SBOM gene...TUV SUD
Global testing and certification body offering CRA readiness...Bureau Veritas
Global TIC group whose cybersecurity unit delivers end-to-en...DEKRA
Major TIC organization offering CRA readiness, security eval...
Certifications
EU Cyber Resilience ActREDEN 18031IEC 62443Common CriteriaISO/IEC 17025