Our qualifications and labels

Brightway is recognised by the competent authorities. These qualifications, certifications and labels guarantee the independence, level of expertise and rigour of our engagements.

Official qualifications and certifications

Formal recognition issued by independent certification bodies (ANSSI, COFRAC, FIRST).

PASSI ANSSI

The PASSI qualification (Information Systems Security Audit Provider) is issued by ANSSI, France’s national cybersecurity agency. It is the official reference recognition in France for security audit providers.

Brightway is PASSI-qualified on the 4 accredited scopes: organisational and physical audit, architecture audit, configuration audit, and penetration testing. The qualification is periodically renewed by ANSSI through document review and on-site assessments.

PASSI qualification is a common requirement in French public procurement and tenders for Operators of Essential Services (OES) under NIS2.

Obtained in
2022
Verify on the official website

Qualiopi

Qualiopi is the French quality certification for training providers, issued by certification bodies accredited by COFRAC (the French national accreditation body). It has been mandatory since January 2022 for training organisations.

Brightway’s Qualiopi certification covers training actions (category 1 of the National Quality Reference Framework). It attests to the quality of our teaching processes, training engineering, learner follow-up and continuous improvement approach.

Obtained in
2023

Sector labels

Sector recognitions attesting to the French origin and reliability of our services.

CERT FIRST

FIRST (Forum of Incident Response and Security Teams) is the international reference organisation that brings together security incident response teams. The FIRST label is granted after verification of the practices, ethics and operational capabilities of the candidate CERT.

FIRST membership grants Brightway access to privileged information-sharing channels between CERTs worldwide, enables coordinated responses during cross-border incidents, and provides access to threat intelligence feeds shared by members.

Obtained in
2021
Verify on the official website

France Cybersecurity

The France Cybersecurity label is awarded by the France Cybersecurity association, backed by France’s national cybersecurity agency (ANSSI), the General Directorate for Enterprise (DGE) and the main industry organisations (Hexatrust, ACN, CESIN, CIGREF). It distinguishes cybersecurity solutions and services designed and operated in France, after review of the label’s specifications by an independent panel of experts.

For Brightway, the label covers the “Audit, advisory and training” category. It assures clients that our engagements are delivered in France, by French teams, in compliance with national and EU regulations — a meaningful marker for organisations attentive to digital sovereignty.

Obtained in
2022
Verify on the official website