Incident Command System for Industrial Control Systems (ICS4ICS) is designed to improve global Industrial Control System cybersecurity incident management capabilities. ICS4ICS will leverage FEMA's Incident Command System framework for response structure, roles, and interoperability. This is the system used by First Responders globally when responding to hurricanes, floods, earthquakes, industrial accidents, and other high impact situations. Incident Command Systems have been tested for more than 30 years of emergency and non-emergency applications, throughout all levels of government and within the private sector.
ICS4ICS needs volunteers to help evaluate existing FEMA's Incident Command System materials and develop any additional materials needed to manage the unique needs of Industrial Control System cybersecurity incidents. The team will define the credential processes and engage people to obtain their credentials. We will evaluate existing training offerings related to FEMA's Incident Command System and identify unique training needs for Industrial Control Systems cybersecurity incidents. We will develop and test ICS4ICS exercise capabilities to help refine ICS4ICS materials.
Incident Command System for Industrial Control Systems (ICS4ICS) was explained in a webinar in June 2021. In July 2021, ICS4ICS announced that four individuals obtained their Incident Commander credentials as part of the cybersecurity first responder credentialing program. ICS4ICS clarifying information was provided during a follow-up video in August 2021.
The ISA Global Cybersecurity Alliance has joined forces with the Cybersecurity and Infrastructure Security Agency (CISA) and cybersecurity response teams from more than 50 participating companies to adopt FEMA's Incident Command System framework for response structure, roles, and interoperability.
The ISAGCA is a collaborative forum hosted by the International Society of Automation (ISA), a 40,000-member global professional automation engineering society. ISAGCA’s mission is to advance cybersecurity readiness through awareness, education, standards, and knowledge-sharing. Membership is open to any organization concerned about cybersecurity—end users, automation providers, system integrators, consultants, government agencies, and more.
ISAGCA member companies, industry organizations, and their constituents represent over $1.5 trillion in annual revenues, coming from industries such as critical infrastructure, oil & gas, pharmaceuticals, automotive, automation suppliers, IT suppliers, and providers of cybersecurity products and services.
ISAGCA member companies and thought leaders have a long history of adopting a standards-based approach for securing automation products and operating sites based on the ISA/IEC 62443 series of international cybersecurity standards. Together, we advocate for the adoption and implementation of this series of standards that are proven to protect critical infrastructure and other important installations within industry.