The 62443 Standards; and Intro to the IACS Cybersecurity Lifecycle. Flashcards
ISA99 Industrial Sectors
Chemical Processing
Petroleum Refining
Food and Beverage
Energy
Pharmaceuticals
Water
Manufacturing
ISA99 Comitee Scope
The ISA99 commitee addresses industrial automation and control systems whose compromise could result in any or all the following situations:
- endangerement of public or employee safety
- enviromental protection
- loss of public confidence
- violation of regulatory requirements
- loss of propietary or confidential information
- economic loss
- impact on entity, local, state, or national security
ISA/IEC 62443 - How many publications do they have?
Consist of 14 publications, 10 of them are standars (normative) and 4 are technical reports (informative).
How are organized ISA62443 standars?
Is organized into four groups:
* General
* Plicies & Procedures
* System
* Component
What kind of standars contain each group in ISA62443?
General: contains standards and reports that are general in nature
Policies & Procedures: addresses the people and process aspects of an effective security progam
System: focus in on the technology related aspects of security
Component: focuses on specific security related technical requirements of products and components
ISA63443 IACS Cybersecurity Lifecycle
Assess Phase: detailed cyber Risk Assessment
Devolop & Implementation Phase: design and engineering of cybersecurity countermeasures
Maintain Phase: cyber incident response & recovery
Which SDO works with ISA to develop a series of standars for IACS cybersecurity?
International Electrotechnical Commission (IEC)