CODRA announces the renewal of the First Level Security Certification (CSPN) issued by ANSSI (the French National Cybersecurity Agency), now covering its entire Panorama Suite platform. This renewal confirms the solution’s robustness and the consistency of our approach: cybersecurity is not a one-off milestone, but a long-term commitment to serving operators and integrators.
Recognition for SCADA that builds on a track record of excellence
For several years now, Panorama has been on a path of building trust: it was the first SCADA platform to be CSPN-certified by ANSSI back in 2019, followed by the ANSSI-qualified version in 2020. This 4th renewal further consolidates this momentum: maintaining high standards, developing the platform and supporting industrial projects over the long term.
Panorama remains the 1st and only SCADA system at to hold an active certification that has been maintained without interruption since 2019
SCADA and OT cybersecurity: now inseparable
With the acceleration of regulatory and organisational requirements (including the NIS2 Directive), industrial architectures must balance availability, operational safety and cybersecurity. In this context, SCADA plays a central role: it sits at the crossroads of data flows, operator access, inter-system exchanges and day-to-day operations. SCADA performance can no longer be separated from cybersecurity requirements.
At CODRA, this challenge is addressed on two levels:
- at the product level, with mechanisms designed to integrate with industrial security policies,
- in our support services, to help our clients deploy and operate Panorama Suite in accordance with robust and realistic principles in the field.
Implementing best practices: practical measures, tailored to the specific installations
Beyond certification, the cybersecurity of an industrial system relies on best practices applied across the entire OT environment: SCADA workstations and servers, the network, PLCs, field equipment and operational procedures. Key areas include, in particular:
- physical access monitoring (mapping, protecting, tracking),
- network segmentation and filtering (limiting the spread of incidents, controlling traffic),
- management of removable media (reducing risks associated with transfers between networks),
- account and privilege management (authentication, separation of duties, directories),
- configuration hardening (enabling only what is necessary, limiting services, reducing the attack surface).
These best practices must be adapted to the context of each site (criticality, operational constraints, maintenance organisation) and updated over time.
Long-term support from CODRA
The CSPN renewal reflects our ambition: to offer a recognised SCADA platform and support our clients over the long term, from design through to operation, whilst integrating cyber security considerations at every stage.
To take this further, CODRA provides recommendations and implementation guides for industrial environments, available in a dedicated section.
