The scope of the certification includes the SMA Sunny Portal, a monitoring portal developed and operated in Germany, and all of the areas and processes required for its operation, including conservation, renewables and energy management (CREM), HR, administration, compliance, legal, and indirect procurement.
Doris Spielthenner, Managing Director Australia and New Zealand SMA Australia and Regional Manager APAC, said achieving ISO certification reflected SMA’s wider commitment to implementing the most advanced cybersecurity and privacy frameworks.
“As technologies evolve, we remain dedicated to safeguarding our customers’ data with the highest standards of security.”
“Inverters are the brain in every PV system, but, unfortunately, they are also increasingly becoming a target for hackers. The cybersecurity measures we have put in place give us the edge over other companies that manufacture inverters and operate monitoring portals. The ISO certificate is proof that the security practices we have implemented meet a high standard of quality and reliability,” said Marek Seeger, Information Security Manager at SMA.
ISO 27001 is the leading international standard dedicated to information security, setting the benchmark for organisations worldwide. The ISO 27001 framework outlines stringent requirements for establishing, implementing, operating, and continuously improving an Information Security Management System (ISMS).
SMA’s Sunny Portal has registered over one million PV systems in more than 200 countries worldwide, which equates to a total inverter power of 41 GW. The company’s successful ISO 27001 certification is the result of an extensive evaluation process in which all aspects of SMA’s information security management were assessed by external auditors. Implementing effective security measures, providing regular training for employees, and continually monitoring risks were just a few examples of these aspects.
As a pioneer in the solar industry, SMA understands the unique challenges that arise from the rapid advancement of technology, particularly in maintaining robust security and privacy standards. To address this growing concern, the market leader has called for a unified, national approach to cybersecurity.
“As consumer energy systems become more connected, the risk of cyber attacks increases. Without strong, industry-wide cybersecurity measures, we leave the door open for cybercriminals to exploit and disrupt our infrastructure,” Spielthenner said.
In addition to achieving ISO certification, SMA have committed to adopting new, best practice standards for customer privacy and cyber security across all systems, paving the way for enhanced measures that protect both privacy and security for all customers.
By submitting this form you agree to pv magazine using your data for the purposes of publishing your comment.
Your personal data will only be disclosed or otherwise transmitted to third parties for the purposes of spam filtering or if this is necessary for technical maintenance of the website. Any other transfer to third parties will not take place unless this is justified on the basis of applicable data protection regulations or if pv magazine is legally obliged to do so.
You may revoke this consent at any time with effect for the future, in which case your personal data will be deleted immediately. Otherwise, your data will be deleted if pv magazine has processed your request or the purpose of data storage is fulfilled.
Further information on data privacy can be found in our Data Protection Policy.