by Matias Almeida Garzon
In recent years, the relationship between ICS and OT has become increasingly important as industrial processes have become more interconnected and reliant on technology. Cybersecurity threats have become a pressing issue, and utilities now face the challenge of updating their defence systems to ensure infrastructure protection and service provision.
As stated by Waterfall Security Solutions' Rees Machtemes, #IEC62443 has become the way to go for industrial security standards and frameworks. Nevertheless, a considerable number of energy operators are still reluctant to adopt it for several reasons, some because of the lack of information about its structure and benefits.
Initially formulated by the International Society of Automation (ISA) and later adopted and co-developed by the IEC (International Electrotechnical Commission), 62443 can be broken down into four main areas:
- General – 62443-1
- Policies & Procedures – 62443-2
- System – 62443-3
- Component – 62443-4
The first layer provides a solid basis for the adoption and integration of the standard to protect industrial automation and control operations through four stages:
1. Part one provides the standard’s logical foundation by defining the terminology, concepts and models.
2. Part two deals with the taxonomic dimension by providing the nomenclature and list of abbreviations.
3. Part three is more concerned with the applications aspect by presenting a methodology to produce quantitative metrics derived from the process and technical requirements.
4. Part four includes information about the industrial automation and control systems’ lifecycle.
Learn more about IEC 62443’s implementation and applications, and join our community-based online training programme. Throughout 12 weeks, industry leaders on the topic will provide deep insights into the standard and help the audience strengthen their organisation’s cybersecurity strategy.
➡️Visit our page to learn more and register:
➡️This article provides further insight into the topic: