OT security | Abhisam

Supply Chain Cyber Security Training module for ICS Security

Abhisam will soon be adding a new Supply Chain Cyber Security Training module to its popular Industrial Cybersecurity training course. This module will be part of the Advanced Modules 2 in the Certified Industrial Cybersecurity Professional training course (CICP) and will be available to learners who opt for the Professional version of the course. What is supply chain cyber security? What are supply chain attacks? Any system that uses …

IEC 62443 Foundational Requirements

If you have been working in the field of Industrial Control Systems cyber security (ICS security) or in the broader Operational Technology cybersecurity domain (OT security) then you may have heard of the standard ANSI/ISA/IEC 62443, referred to these days as simply IEC 62443. This standard has certain Foundational Requirements that are important and these are explained in short here. This short guide will explain these IEC 62443 Foundational …

Abhisam Industrial Cybersecurity Course CICP gets an updated module on OT Security standards

Abhisam is pleased to announce that the Industrial Cybersecurity Training Course (Certified Industrial Cybersecurity Professional) has now an updated module on OT Security standards. The previous module titled IACS Security Standards has been thoroughly revised and has got several new sections that cover a lot about the parts of the ANSI/ISA/ IEC 62443 standard that have been published so far. What is the CICP program? Abhisam introduced the Industrial …

What is IEC 62443-2-4? Understand it easily

Abhisam is pleased to announce that a new module on understanding IEC 62443-2-4 is now a part of the Abhisam Industrial Cybersecurity training course (Professional Version). What is IEC 62443-2-4? As you probably know, the IEC 62443 series of standards is developed jointly by ISA (International Society of Automation) and IEC (International Electrotechnical Commission), to provide guidance for implementing Industrial Cybersecurity. The term is synonymous with OT Security (Operational …

Log4j vulnerability and ICS security

As you may already be aware, a new critical remote code execution vulnerability (CVE-2021-44228) affecting Apache Log4j software library versions 2.0-beta9 to 2.14.1 has been discovered. What is the Log4j vulnerability? Log4j is used in many websites, consumer and enterprise services and applications—as well as in operational technology products, which includes even Industrial Control Systems such as DCS, SIS, PLC, SCADA, Process Historians and similar hosts and controllers. For …

Industrial cyber security Lifecycle- top 10 controls to secure your IACS

The Abhisam Industrial Cyber Security Lifecycle shows the top 10 controls needed to achieve robust cyber security for your Industrial Automation, Control and Safety System (IACS). IACS is a broad term for control and automation systems such as DCS (Distributed Control Systems), PLC (Programmable Logic Controllers), SCADA (Supervisory Control and Data Acquisition Systems), SIS (Safety Instrumented Systems), HIPPS (High Integrity Pressure Protection Systems), BMS (Burner Management Systems) and others. …

Supply chain attacks can use counterfeit switches

Supply Chain Attacks- ICS Security implications

Supply Chain attacks are something to watch out for In the recently published Abhisam Industrial Cybersecurity Report, we had mentioned supply chain attacks, as something to watch out for in 2024. We never imagined that we would be so right. These supply chain attacks are pretty broad in scope and are not just related to the Industrial Control System devices, such as DCS controllers or SIS Logic Solvers but …

Industrial Cybersecurity Trends | What to expect from ICS security in 2021 and beyond?

Abhisam recently published a report on the State of Industrial Cybersecurity in the year 2020 and the road ahead in 2021. The report was compiled by contributions from several different experts from various industry segments, who are individually having at least 25 years of experience in their own domains as well as having deep knowledge about Industrial Cybersecurity. To understand the basics, please see this basic Industrial Cybersecurity guide …

ICS Security training course gets advanced module

Abhisam is pleased to announce that the popular ICS security training course, which is available as an e-course online, will now have an advanced module that can be accessed by all current learners and GOLD members. This will have many sub modules such as concepts of Kill Chains, the MITRE ATT&CK framework for ICS, Honeypots for Industrial Automation and Control systems and more. Cybersecurity is a growing concern for …