Excelitas Technologies maintains a global cybersecurity risk management program designed to protect the confidentiality, integrity, and availability of company, customer, supplier, and regulated information. The program is anchored on the NIST Cybersecurity Framework 2.0 and is structured around the core cybersecurity functions of Govern, Identify, Protect, Detect, Respond, and Recover.
Our cybersecurity program establishes enterprise-wide governance, risk management, technical safeguards, security monitoring, incident response, recovery planning, and supplier risk management practices. These practices are applied across our global operations and are reviewed on a recurring basis to support consistent, repeatable, and risk-informed cybersecurity outcomes.
Excelitas uses a unified compliance framework approach to align its cybersecurity program with recognized industry and regulatory frameworks, including ISO/IEC 27001:2022, UK Cyber Essentials, Boost Aerospace Air Cyber, and U.S. Department of Defense CMMC Level 2 requirements where applicable. Framework mappings are maintained to support customer assurance, contractual due diligence, and continuous program improvement.
The cybersecurity program is overseen by dedicated cybersecurity leadership with executive sponsorship and is supported by internal governance, independent assessment activities, supplier risk oversight, security event management, and continuous improvement processes. Program maturity is periodically assessed and identified improvement actions are tracked to closure.
This attestation reflects Excelitas Technologies’ cybersecurity risk management program at a point in time and is provided for general informational purposes. Specific certifications, assessment results, contractual commitments, or customer-specific compliance representations may be made available under appropriate confidentiality terms.