Automotive cybersecurity risk assessment company Cybellum and US-based software company PTC have established a partnership to deliver an integration between Cybellum's platform and PTC's Windchill RV&S product lifecycle management software. The joint solution is aimed at providing automated cybersecurity scanning for software developed using Windchill RV&S to ensure compliance with all required safety and security regulations.
Joint users can now define software security considerations early in the product life cycle, side by side with their whole product engineering process. They can then plan their implementation, calculate and manage the associated cybersecurity risks in the context of the whole product, according to a press release.
Software developers can also proactively test and fix the identified security or safety threats using the automatically generated, detailed guidance. This can ensure that critical safety and security vulnerabilities are identified, managed, prioritized and mitigated throughout the engineering cycle, guaranteeing that products are safe and secure, the company said.
The joint solution is also expected to help users to prepare for and comply with existing and upcoming cyber security regulations.
"We are excited about the partnership with PTC, helping product development teams shift left by embedding cybersecurity risk assessment processes and prevent vulnerabilities early in the delivery process of software-intensive products," said Michael Engestler, co-founder and CTO of Cybellum. "Through the unique integration with PTC Windchill RV&S we empower manufacturers to control, trace and mitigate safety and security issues early on, ultimately delivering safe and secure products."
"We see this integration as a significant enhancement for PTC customers who are particularly concerned about the cybersecurity of the software they manage with Windchill RV&S," said Hedley Apperly, VP SSE Products, PTC. "This automated security scanning and remediation mentoring will be invaluable to any manufacturer building software intensive products, which are vulnerable to cyber-attack."