ISA/IEC 62443 provides a powerful tool to reduce the risk of financial, reputational, human, and environmental impact from cyber-attacks on Industrial Automation and Control Systems (IACS). However, since it is a “horizontal standard”, 62443 is meant to address a wide range of industries, and any specific company is likely to find that while most of the standard applies to their IACS, parts of it may not. For example, some “normative requirements” that are appropriate for an interstate pipeline, may not be relevant to a chemical plant or a discrete manufacturing facility. There are also obvious differences between a large-scale corporation with many sites and thousands of employees, and a small company with a few dozen staff.
This white paper is intended to address the needs of Owner/Operators of industrial facilities. It will discuss the following:
1. What is an IACS Cybersecurity Program?
2. Preparing an IACS Cybersecurity Program
3. How does an IACS Cybersecurity program relate to IT Cybersecurity?
4. Costs and Benefits of an IACS Cybersecurity Program
5. What to do next
This white paper is available at no cost. Request your copy by submitting the form to the right, and we'll email you a link to download the file.
Why it is recommended that each company establishes their own IACS Cybersecurity Program to manage cybersecurity risks.
In the coming months, ISAGCA plans to publish additional white papers intended for IACS vendors, suppliers of IACS products and services, Integration/engineering services, and more.
In the coming months, ISAGCA plans to publish additional white papers intended for IACS vendors, suppliers of IACS products and services, Integration/engineering services, and possibly other major stakeholders such as insurers and regulators.