Log in
logo

COUNTERING CYBER THREATS

barra-separadora

The National Accreditation Body (ENAC) offers interested parties the accreditation scheme of entities that want to certify compliance with the National Security Scheme (ENS).

The accreditation scheme has been developed by ENAC in close collaboration with the Ministry of Finance and Public Administration and the National Cryptologic Centre (CCN).

In the case of systems classified as LIMITED DISSEMINATION (DL) or equivalent, an entity must be accredited by ENAC within the scope of the National Safety Scheme in accordance with UNE-EN ISO / IEC 17065: 2012 Able to certify compliance with STIC requirements. In addition, security auditing entities must have Enterprise Security Enablement (HSEM) in place.

Compliance with STIC requirements in the field of classified systems (DL) may also be certified among those auditing entities that fulfill one of the following options (CCN-STIC-101):

  1. To be an entity, body, agency and unit linked to or dependent on the Public Administrations whose competences include the development of audits of information systems, this is stated in its creation regulations or structure decrees and is guaranteed due impartiality.
  2. Exceptionally, to be a company validated by the CCN, which has demonstrated sufficient technical capacity to carry out STIC audits / inspections on systems handling classified information.

Those interested in applying for accreditation can contact the ENAC in the mail: enac@enac.es

Certification activities are foreseen to be performed for a transitional period until one year after the entry into force of the Technical Safety Instruction in accordance with the National Safety Scheme published in B.O.E. No. 265 of November 2, 2016, in accordance with what is stated in Section VI of the Requirements of the Certification Entities. During this period, certifications granted by an entity being involved in this process will remain valid even if the certification body does not approved the ENAC accreditation process. For more information, consult the Technical Instruction of Compliance with the ENS.

Certification bodies accredited or in the process of accreditation to issue certifications in accordance with the ENS and systems classified with the degree of LIMITED DISSEMINATION (DL) or equivalent:

Nombre Razón social Enlace web Estado Acreditación ENS Estado Acreditación STIC (DL)
AENOR Internacional S.A.U. AENOR Internacional S.A.U. www.aenor.com ACREDITADA
(21/04/2017)
-
Audertis Audit Services, S.L. Audertis Audit Services, S.L. www.audertis.es EN PROCESO -
BDO Auditores, S.L.P. BDO Auditores, S.L.P. www.bdo.es EN PROCESO -
Ingeniería de Sistemas para la Defensa de España (ISDEFE) Empresa pública de consultoría e ingeniería www.isdefe.es - EN PROCESO
LEET Security, S.L. LEET Security, S.L. www.leetsecurity.com EN PROCESO -
LGAI Technological Center, S.A. LGAI Technological Center, S.A. www.appluscertification.com/es EN PROCESO -
Lloyd´s Register Quality Assurance España, S.L. Lloyd´s Register Quality Assurance España, S.L. www.lrqa.es EN PROCESO -
Eurocertificación Eurocert Certification Spain S.L. Desconocida EN PROCESO -
Cámara Certifica Certificación y Confianza, Cámara S.L.U. camaracertifica.es/ EN PROCESO -

 

Go back

Esta web utiliza cookies, puedes ver nuestra política de cookies Si continuas navegando estás aceptándola Modificar configuración