NIST 800-82 Rev 3

NIST 800-82 Rev 3 now released

We had recently posted about the NIST 800-82 Special Publication Revision 2 being updated and the draft version being published. Now this draft has been formally approved and hence now we have a full version available for implementation by stakeholders such as Asset Owners, Engineering Design Consultants, Contractors, Automation vendors, OT Cybersecurity professionals and any other persons or organizations who need to be aware of OT Cybersecurity.   What …

Read more

ICS Cybersecurity Risk Assessment

What is ICS Cybersecurity Risk Assessment?

In this short guide, we will take a look at what we mean by ICS security assessment. ICS  is short for industrial Control Systems. These may be DCS (Distributed Control Systems), or PLC (Programmable Logic Controllers) based, or some form of SCADA (Supervisory Control and Data Acquisition Systems) or any other programmable type systems. These include not only BPCS (Basic Process Control Systems) but also SIS (Safety Instrumented Systems). …

Read more

OT Cyber Security training

OT Cyber Security Training Workshop at Toyo Engineering India at Mumbai

OT Cyber Security Training workshop in Mumbai, India Abhisam successfully conducted an OT Cyber security Training workshop, at Toyo Engineering India’s Mumbai office. The two day workshop was attended by more than 35 senior engineering and  IT professionals from Toyo. This comprehensive event included OT/ICS cyber security,  as well as IEC 62443 training, ISO 27001 training and NIST 800-82 training. Toyo Engineering India Private Limited (Toyo-India), an Engineering Consultancy …

Read more

Supply Chain Cyber Security

Supply Chain Cyber Security Training module for ICS Security

Abhisam will soon be adding  a new Supply Chain Cyber Security Training module to its popular Industrial Cybersecurity training course. This module will be part of the Advanced Modules 2 in the Certified Industrial Cybersecurity Professional training course (CICP) and will be available to learners who opt for the Professional version of the course. What is supply chain cyber security? What are supply chain attacks? Any system that uses …

Read more

log4j

Log4j vulnerability and ICS security

As you may already be aware, a new critical remote code execution vulnerability (CVE-2021-44228) affecting Apache Log4j software library versions 2.0-beta9 to 2.14.1 has been discovered. What is the Log4j vulnerability? Log4j is used in many websites,  consumer and enterprise services and  applications—as well as in operational technology products, which includes even Industrial Control Systems such as DCS, SIS, PLC, SCADA, Process Historians and similar hosts and controllers. For …

Read more

Industrial Cybersecurity Trends | What to expect from ICS security in 2021 and beyond?

Abhisam recently published a report on the State of Industrial Cybersecurity in the year 2020 and the road ahead in 2021. The report was compiled by contributions from several different experts from various industry segments, who are individually having at least 25 years of experience in their own domains as well as having  deep knowledge about Industrial Cybersecurity. To understand the basics, please see this basic Industrial Cybersecurity guide …

Read more