Industrial control systems are often responsible for the monitoring and management of critical assets such as power generating facilities, water and wastewater treatment plants and transportation networks. Control systems in many industries have to remain operational 24/7 to meet operational and regulatory requirements. To address the increasing interest in securing private industry and public infrastructure, ISA has developed a comprehensive resource guide to its cybersecurity resources. ISA offers a variety of training courses on industrial cybersecurity as well as books and reference publications. Training classes and ISA technical resources are based on the ISA99/IEC62443 standards. In addition, ISA is developing a certificate program in cybersecurity.
After the National Institute of Standards and Technology (NIST) of the U.S. Department of Commerce requested information from stakeholders on the Cybersecurity Framework, in early April the Automation Federation submitted comprehensive responses from both the ISA99 standards development committee and the ISA Security Compliance Institute (ISCI). A wide range of government agencies, industry groups, private industry representatives and security specialists are participating in developing the Cybersecurity Framework, called for in President Barack Obama’s Executive Order to reduce the growing threat of cyber-attacks on the nation’s critical infrastructure.
To ensure ISA members are aware of the full complement of available cybersecurity resources, ISA staff compiled the resource guide featuring short descriptions and links to course offerings, publications and services. In addition, ISA members can join the ISA Safety and Security Division to stay up-to-date on industrial cybersecurity and process safety.
The ISA99 committee continues to develop additional standards and technical reports in the ISA-62443 (IEC 62443) series, several of which will soon be circulated for review and comment. The Automation Federation also plans to offer a free webinar on Monday, Aug. 5 to discuss its ongoing support for the NIST Cybersecurity Framework.