IEES Limited is a specialist consultancy focused on embedded security and product cybersecurity, supporting manufacturers of connected, IoT, industrial, and medical products. We integrate cybersecurity expertise into existing engineering, software, design-control, risk-management, quality, regulatory, manufacturing, and lifecycle design processes. Our work supports secure-by-design architecture, connected-product cybersecurity controls, product threat modelling, secure software development, SOUP/SBOM and software supply-chain review, cryptographic update mechanisms, vulnerability handling, lifecycle evidence, and regulatory readiness for connected-product frameworks, including the EU Cyber Resilience Act, RED EN 18031, and medical device cybersecurity expectations.
Cybersecurity Support for Product Manufacturers
Connected Medical Devices
Connected Industrial Products
Connected Industrial Products
Support for connected and software-enabled medical products where cybersecurity evidence, risk-control traceability, secure updates, SOUP/SBOM visibility, vulnerability handling, and post-market security processes need to align with existing engineering, software, quality, regulatory, risk-management, and lifecycle activities.
Connected Industrial Products
Connected Industrial Products
Connected Industrial Products
Embedded and product cybersecurity support for connected industrial electronics, sensors, gateways, wireless products, and long-life field-deployed devices. IEES helps manufacturers review secure architecture, product threat models, firmware integrity, secure updates, device identity, provisioning, vulnerability handling, and lifecycle-security evidence.
RED & CRA Readiness
Connected Industrial Products
RED & CRA Readiness
Practical readiness support for manufacturers preparing connected products for RED EN 18031 and EU Cyber Resilience Act expectations. IEES helps teams identify cybersecurity gaps, review secure-by-design architecture, assess SBOM and software supply-chain visibility, strengthen secure update and vulnerability-handling processes, and structure lifecycle evidence.