This short guide will explain all aspects of SCADA Security Certification. But first we will understand what is a SCADA. What is SCADA? SCADA is short for Supervisory Control and Data Acquisition System. These systems are used in a wide variety of industries from electrical grids (electrical substation SCADA) to pipeline monitoring systems. A typical SCADA consists of remote terminal units (RTUs), and/or PLCs (Programmable Logic Controllers) and/or IED …
This brief guide will explain how to take IEC 62443 training at a much lower cost today than in earlier years. Note: The most cost effective and easiest way to learn all IEC 62443 essentials is to take the Abhisam Certified Industrial Cybersecurity Professional training course. This fully self-paced, online course consisting of text, voice over, videos, animations, assessments and exercises, can be taken anytime from anywhere via any …
Here’s a guide to IEC 62443. After going through this (somewhat short) IEC 62443 guide, you will understand how it helps you secure your Industrial Automation and Control Systems (IACS for short) against cyber threats. Let us understand more about it, why it was developed and where it can be used. What is IEC 62443? IEC 62443 is not a single document, but a set of standards, practices and …
If you have been working in the field of Industrial Control Systems cyber security (ICS security) or in the broader Operational Technology cybersecurity domain (OT security) then you may have heard of the standard ANSI/ISA/IEC 62443, referred to these days as simply IEC 62443. This standard has certain Foundational Requirements that are important and these are explained in short here. This short guide will explain these IEC 62443 Foundational …
Abhisam is pleased to announce that the Industrial Cybersecurity Training Course (Certified Industrial Cybersecurity Professional) has now an updated module on OT Security standards. The previous module titled IACS Security Standards has been thoroughly revised and has got several new sections that cover a lot about the parts of the ANSI/ISA/ IEC 62443 standard that have been published so far. What is the CICP program? Abhisam introduced the Industrial …
HAZOP Training in India Abhisam is pleased to announce that Instructor led training workshops on HAZOP, are being restarted from June 2022. Accordingly you can now easily get HAZOP Training in India via a traditional, classroom type workshop that gives a hands on experience in conducting a HAZOP Study. What is HAZOP? What is the full form of HAZOP? HAZOP is a Hazard and Risk Assessment technique used …
Update: The Full version of NIST 800-82 Rev 3 has been released. The National Institute of Standards and Technology (NIST) that is a part of the US Department of Commerce had invited public comments before release of the Revision 3 of the NIST 800-82 Guide to ICS Security, we had a blog post that talked about this a few months ago here. This Initial public draft has now been …
What is a HAZOP Study? HAZOP is an acronym for Hazard and Operability Study. It is one of the most popular hazard and risk assessment techniques used in industry and especially so the process industry (think Oil & Gas production, Petroleum refining, Chemical manufacturing, bulk pharmaceuticals manufacturing, Food & Beverage, Fossil Fuel power generation and so on), It is also very popular in industries like Mining and Metals processing, …
Abhisam is pleased to announce that a new module on understanding IEC 62443-2-4 is now a part of the Abhisam Industrial Cybersecurity training course (Professional Version). What is IEC 62443-2-4? As you probably know, the IEC 62443 series of standards is developed jointly by ISA (International Society of Automation) and IEC (International Electrotechnical Commission), to provide guidance for implementing Industrial Cybersecurity. The term is synonymous with OT Security (Operational …
As you may already be aware, a new critical remote code execution vulnerability (CVE-2021-44228) affecting Apache Log4j software library versions 2.0-beta9 to 2.14.1 has been discovered. What is the Log4j vulnerability? Log4j is used in many websites, consumer and enterprise services and applications—as well as in operational technology products, which includes even Industrial Control Systems such as DCS, SIS, PLC, SCADA, Process Historians and similar hosts and controllers. For …
