Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


05:30 PM
Dark Reading
Dark Reading
Products and Releases

Eurofins Digital Testing Launches Cyber Security Division

Expands testing capabilities to serve TV operators, broadcasters, content companies, device manufacturers, and others in Europe and around the globe

Hasselt, Belgium – November 14, 2018 – Eurofins Digital Testing, a global leader in end-to-end quality assurance (QA) and testing services, today announced that the company has launched a new Cyber Security Division to serve the media and entertainment industry, Internet of Things providers, and other key markets. Concurrently, the company announced the appointments of Marcel Mangel, Erik Rutkens, and Sean Walls as Managing Directors of Cyber Security, overseeing a team of nearly 100 security experts around the globe.  

Today, media and entertainment companies in particular face numerous security threats. These span their internal enterprise software applications and hardware, physical office locations, service delivery infrastructure, content protection methods, billing systems, customer-facing applications, and consumer devices including PCs, tablets, mobile devices, connected TVs, set-top boxes, smart home/IoT devices, and more. 

Eurofins’ new Cyber Security Division was established to help new and existing customers conduct risk and vulnerability assessments; meet compliance obligations; develop effective security programs; train employees; and test applications and devices for vulnerability via audits and ethical hacking programs. 

“Today marks a significant milestone in the evolution of Eurofins Digital Testing and is a critical sign of the times for our customers around the world,” said Johan Craeybeckx, Business Line Director, Eurofins Digital Testing International. “We view cyber security as a natural extension to our extensive testing solution portfolio to help our customers address their threats and vulnerabilities. As part of this effort, we have assembled an exceptional leadership team comprised of Marcel Mangel, Erik Rutkens, and Sean Walls, who collectively bring decades of proven and diverse cyber security experiences to bear. We share a common vision to protect our clients’ connected systems, data, and services throughout the media and entertainment industry, and other sectors, across Europe and around the globe.” 

Cyber Security Leadership Team 

Marcel Mangel is a Managing Director of Cyber Security, based in Germany. Mr. Mangel was most recently Chief Technical Officer at TÜV SÜD Digital Service GmbH, and has over a decade of experience in offensive as well as defensive cyber security. He also serves as an assistant professor for IT security at the University of Applied Sciences in Rosenheim, and holds a master’s degree in computer science as well as several renowned IT security certifications. 

Based in the Netherlands, Erik Rutkens is a Managing Director of Cyber Security, and comes to Eurofins through its acquisition of Insite Groep, the holding of Insite Security and ITsec Security Services, earlier this year. Mr. Rutkens was co-founder of Zercopter. Prior to serving as CEO of Insite Groep, Mr. Rutkens was a Senior Manager at KPMG and spent more than ten years in various teaching roles at the University of Groningen. 

Sean Walls is also a Managing Director of Cyber Security, based in the United States. He has over 20 years of experience in cybersecurity and information technology, and has held executive leadership roles with several international cyber security and IT integration companies.Additionally, Sean has developed successful cybersecurity business units for other large organizations, and has been a strategic advisor to many Fortune 500 and 100 companies over the years. 

Messrs. Mangel, Rutkens, and Walls oversee a diverse team of personnel, labs, and regional offices serving clients around the globe, and they report to Johan Craeybeckx, Business Line Director, Eurofins Digital Testing International. 

Cyber Security Services  

Eurofins Digital Testing’s new Cyber Security Division provides a range of services across six broad categories, including: 

·  Security assessments: Provide companies with a baseline security posture and identify vulnerabilities, threats, and likelihood of exploits and business impacts. This enables them to manage remediation efforts in a way that aligns with their business priorities. Services include: governance gap assessments; external security assessments; internal security assessments; device assessments; (web) application assessments; mobile app assessments; local and remote infrastructure assessments; wirelessassessments; physical security assessments; security awareness/social engineering assessments; penetration testing and more. 

·  Device, app and infrastructure testing services: Provide manufacturers and service providers the ability to secure products and reduce vulnerabilities or risks that could negatively affect their customers through ethical hacking, automated testing tools, auditing and reporting programs. Services include: application security; platform security; logging auditing and monitoring; physical security; cryptography and more. 

·  Compliance services: Enable companies to prepare for, and meet, contractual and regulatory compliance obligations. Services include: gap assessments; remediation assessments; readiness assessments; compliance audits and more, using standards such as ISAE 3402 and SOC, I, II an II. 

·  Advisory services: Enable organizations to develop an effective and relevant security program to minimize risks, manage compliance and align security with business goals and objectives. Services include: policy development; creation of specific or comprehensive security programs; governance; risk management; vulnerability management; asset management; identity and assessment management; disaster recovery and business continuity; incident response; ISO 27001; NIST Cybersecurity Framework (CSF) and more. 

·  Security awareness & training services: Support organizations in raising security awareness. Train employees to proactively recognize threats and protect data, transforming them from a being the greatest security risk to the greatest securityasset. Services include e-learning, serious games, workshops and more. 

·  Managed services: Enable organizations to focus on what they do best. Eurofins’ experts monitor the security of networks, infrastructure and devices and respond to security incidents. Eurofins can also provide security officers or data privacy officers as a service. 


Legacy of Security and Compliance Testing  

Prior to today’s announcement and the recent acquisition of Insite Security, Eurofins Digital Testing was already an established leader providing security-related services to the media and entertainment industry. Notably, Eurofins helped develop and manages the content security compliance program for the Digital Production Partnership (founded by ITV, BBC and Channel 4). Eurofins Digital Testing assesses and validates the checklists submitted by suppliers to ensure compliance with the DPP-defined security best practices, in order to receive the official DPP “Committed to Security Mark.”  

Eurofins Digital Testing is also the official CI Plus LLP approved Test Centre, serving device manufacturers and CI Plus DVB operators. CI Plus is the default standard for linear pay-TV delivery on iDTVs (integrated digital TV) which secures video, via the Common Interface (CI) and Conditional Access Module (CAM), enabling the delivery of valuable HD and UHD to retail receivers in a secure environment. 

Outside of the media and entertainment industry, Eurofins Digital Testing Cyber Security Division will also serve select clients across the profit and non-profit sector, including: financial, utilities, healthcare, transportation, and more. 


Recommended Reading:

Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Cyberattacks Are Tailored to Employees ... Why Isn't Security Training?
Tim Sadler, CEO and co-founder of Tessian,  6/17/2021
7 Powerful Cybersecurity Skills the Energy Sector Needs Most
Pam Baker, Contributing Writer,  6/22/2021
Microsoft Disrupts Large-Scale BEC Campaign Across Web Services
Kelly Sheridan, Staff Editor, Dark Reading,  6/15/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2021-06-23
Vulnerability in OpenGrok (component: Web App). Versions that are affected are 1.6.7 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise OpenGrok. Successful attacks of this vulnerability can result in takeover of OpenGrok. CVSS 3.1 ...
PUBLISHED: 2021-06-23
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
PUBLISHED: 2021-06-23
A command execution vulnerability exists in the default legacy spellchecker plugin in Moodle 3.10. A specially crafted series of HTTP requests can lead to command execution. An attacker must have administrator privileges to exploit this vulnerabilities.
PUBLISHED: 2021-06-23
Heap based buffer overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file.
PUBLISHED: 2021-06-23
Heap based buffer overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file.