New Siemens suppliers must comply with minimum binding cybersecurity requirements, which will be introduced step-by-step starting on February 15, 2019, and anchored in a separate, binding clause in all new contracts.

These requirements will apply primarily to suppliers of security-critical components such as software, processors and electronic components for certain types of control units. Existing suppliers who do not yet comply with the requirements are to implement them gradually. The goal is to better protect the digital supply chain against hacker attacks. In this regard, Siemens is following the course laid down by the Charter of Trust for cybersecurity. The requirements stipulate, for example, that suppliers must integrate special standards, processes and methods into their products and services. The reason: to prevent vulnerabilities and malicious codes at suppliers – and thus in Siemens products as well. In the future, suppliers themselves must, for example, perform security reviews, conduct tests and take corrective action on a regular basis. Siemens is making these requirements mandatory for its own activities as well.

 

“This step will enable us to reduce the risk of security incidents along the entire value chain in a holistic manner and offer our customers greater cybersecurity,” said Roland Busch, member of Siemens’ Managing Board and the company’s Chief Operating Officer and Chief Technology Officer. “If all our partner companies put their global weight behind these measures and implement them together with their suppliers, we can generate tremendous impact and make the digital world more secure.”

 

In the fall of 2018, Siemens further strengthened its internal capacities for repelling hacker attacks and restructured its cyberorganization. Operating as a worldwide network, the new unit combines what were once separate areas. As a result, Siemens is now the first major company to take a holistic approach to the topic of cybersecurity. Not only does the new Siemens organization investigate, analyze and repel hacker attacks; it also develops new cybersecurity services and teams up with the company’s business units to launch these services on the market. The goal is to react to attacks with even greater speed and flexibility. In every region and at every division, the company has also strengthened its network of cybersecurity managers, who now report to Natalia Oropeza, Siemens’ Chief Cybersecurity Officer.

 

Siemens has been active in the field of cybersecurity for about 30 years. Its first cybersecurity team was established back in 1986. The company currently has around 1,275 employees worldwide working exclusively on cybersecurity-related matters. Other employees at the divisions and in the regions also contribute to the company’s activities in the cybersecurity field.

You may also like

A Quantum Leap for Cybersecurity: The Charter of Trust’s PQC Ambition
icon Emerging Technologies

A Quantum Leap for Cybersecurity: The Charter of Trust’s PQC Ambition

The Charter of Trust is taking decisive steps to secure our digital future in the quantum era. As quantum computing advances, the risks to today’s cryptographic systems grow ever more urgent. Our dedicated working group is leading the way in raising awareness, promoting standards-based migration, and fostering collaboration across industries, governments, and academia. Together, we are committed to a proactive, well-coordinated, and risk-driven transition to post-quantum cryptography—ensuring digital trust and resilience for generations to come. Discover our vision and join us as we shape a secure digital world for the quantum age.
July 07, 2026
Read the Charter's contribution to the European Commission's public consultation on the Digital Omnibus Package
icon Emerging Technologies

Read the Charter's contribution to the European Commission's public consultation on the Digital Omnibus Package

The rapid expansion of EU digital regulation has strengthened security, privacy, and trust, but it has also created overlapping obligations, inconsistent timelines, and administrative complexity. The Digital Omnibus Package provides a timely opportunity to streamline these rules, ensure greater coherence, and enable businesses to focus resources on resilience and innovation rather than redundant compliance tasks.
The Charter of Trust welcomes the Commission’s initiative to harmonize digital regulations across the EU, aiming to reduce administrative burdens while maintaining high standards of security and privacy. Representing the unified views of its Partners, this paper addresses all key legislation within the scope of the Digital Omnibus and offers comprehensive recommendations. It emphasizes the need for a unified incident reporting system, risk-based notification requirements, and fair compliance processes to minimize regulatory overlap. The Charter calls for clearer liability clauses, global recognition of certifications, and stronger supply chain security.
In data regulation, the Charter advocates ensuring alignment between the rules on data intermediation services under the DGA and B2B data sharing under the Data Act and extending exemptions to mid-cap companies, all while safeguarding trade secrets. For artificial intelligence, the paper recommends a phased approach to new requirements, integrated conformity assessments, harmonized compliance templates, and clear definitions, supported by sector-specific guidance and transparent AI categorization. The Charter also encourages the European Commission to ensure that ePrivacy reform is future-proof, fosters innovation, and reflects the needs of both businesses and consumers. Finally, it recommends robust security standards and cross-border recognition for the EU Business Wallet, with industry involvement in technical standards and integration with data access systems.
Collectively, these measures are designed to foster innovation, resilience, and trust in the EU’s digital landscape, allowing businesses to thrive in a coherent and future-ready regulatory environment.
October 14, 2025
Charter of Trust Welcomes Zscaler
icon General announcements

Charter of Trust Welcomes Zscaler

We are thrilled to announce that we welcome Zscaler as the newest Partner to the Charter of Trust!

Zscaler is a leading cloud enterprise security provider helping global businesses accelerate their digital transformation by becoming more agile, efficient, resilient, and secure.

With Zscaler as a partner in the Charter of Trust, we aim to strengthen global cyber resilience through trust – by fostering actionable collaboration between industry leaders, governments, and public-private platforms. Zscaler brings robust expertise and innovation to the table, making it the ideal partner to drive this mission forward.

“Zscaler is excited to drive meaningful change alongside our new partners, laying a foundation of trust essential for successful digital transformation,” said Sam Curry, Zscaler CISO. “In today’s world, the need for reducing inherent trust and default access has never been greater. To truly stay ahead of ever-evolving threats, we must unite as a coalition of practitioners. Cyber attackers aren’t taking breaks, and with advancements like artificial intelligence, quantum cryptography, and emerging technologies on the horizon, collaboration is the key to securing the future.”

“We are proud to welcome Zscaler to the Charter of Trust. Their focus on cybersecurity innovation and commitment to openness reflect our shared ambition to create a safer, more resilient digital future. Together, we’ll strengthen trust, transparency, and security across the global digital landscape.” highlighted Dr. Summit Chada, Charter of Trust Co-Chair and COO Group Security & Business Lines CISO at Atos.

“With Zscaler as a Partner of the Charter of Trust, we believe that we can strengthen the global commitment to secure digital transformation by combining technological innovation with the Charter of Trust’s collaborative approach to cybersecurity leadership.” Ralf Schneider, Charter of Trust Co-Chair and Senior Fellow and Head of Cybersecurity and NextGenIT Think Tank at Allianz SE, welcomes Zscaler to the Charter of Trust.

We are excited to join forces and work together to advance digital trust and security across industries.
September 29, 2025