While commending the Pell Center for bringing greater attention to this vital challenge, 2014 ISA President Peggie Koon, Ph.D., emphasizes in a letter to the center that a comprehensive workforce development strategy is being implemented to train and prepare those responsible for protecting the critical and industrial infrastructure that forms the foundation of modern economies, and serves as the greatest potential target of cyber terrorists and the greatest risk of potential damage from cyber attack.

The Framework for Improving Critical Infrastructure Cybersecurity, published in early 2014 by the US National Institute of Standards and Technology, sets forth guidelines to help owners and operators involved in the critical and industrial infrastructure identify, assess and manage cyber risk. The Framework is based on the input of leading cybersecurity experts from government and multiple industry sectors.

Cited throughout the Framework, Dr. Koon notes, is a series of standards on industrial automation and control systems security that are being developed by ISA in an international effort involving experts from more than 200 companies and organizations representing energy, water and wastewater, food and beverage processing, chemicals,  petroleum refining and other vital industry sectors. The standards, designated the ISA 62443 series, are being adopted as they are completed by the Geneva-based International Electrotechnical Commission (IEC) as the IEC 62443 series, assuring recognition by industries and governments across the globe.

The Pell Center report, Professionalizing Cybersecurity: A Path for Universal Standards and Status, makes the important point that the technology for combating cyber attacks is only as good as the people who develop, implement and maintain it. However, for those responsible for protecting the critical infrastructure and industrial base, the required expertise extends well beyond the tools and technology of cybersecurity, Dr. Koon points out: “They require an understanding of the engineering interactions of complex automation and control systems-in which cyber vulnerabilities exploited in sectors such as energy production and distribution, water treatment, refining and chemicals can disrupt and damage multiple sectors, with potentially severe consequences for public health and welfare, and on a vast and interconnected economy.”

“As the leading professional association for automation and control systems engineers and practitioners, ISA represents the very people who must meet the great and challenging demands for knowledge and expertise in protecting the industrial and critical infrastructure,” states Patrick Gouhin, ISA Executive Director and CEO.

“ISA’s leadership in industrial cybersecurity extends well beyond the standards by leveraging the vast expertise and knowledge from the ISA/IEC 62443 program,” Gouhin adds. “This has led to programs for the training, certification, and continuing education of those who must understand the complexities and interactions of advanced automation and control systems while protecting critical infrastructure and the industrial base.”

These programs include:

Professional certification and certificate programs

  • Certified Automation Professional® (CAP®) Certification, which demonstrates proficiency in all aspects of industrial automation and control systems including network and control systems security
  • Industrial Cybersecurity Certificate Program, which demonstrates proficiency in understanding and applying the ISA/IEC 62443 international standards
  • Certified Mission-Critical Professional (CMCP) Certification, in development under a US Department of Labor grant to Cleveland Community College, focusing on the skills and knowledge to combat cyber and other threats in industrial operations
  • Study courses and preparation materials in support of the Control Systems Engineering (CSE) program, a specialized Professional Engineering (PE) license recognized in the US and administered by the National Council of Examiners for Engineering and Surveying, which includes coverage of network and control systems security

Competency-based workforce development

  • The Automation Competency Model (ACM), developed by the Automation Federation, the umbrella organization of ISA, in conjunction with the US Department of Labor, establishes what individuals need to know to successfully perform the tasks required in automation occupations, including network and control systems security.

Training classes, publications and conferences on:

  • Basic and advanced cybersecurity for industrial automation and control systems
  • Understanding and implementing the ISA/IEC 62443 standards

For more information, visit the ISA cybersecurity resources web page.

About ISA
Founded in 1945, the International Society of Automation is a leading, global, nonprofit organization that is setting the standard for automation by helping over 30,000 worldwide members and other professionals solve difficult technical problems, while enhancing their leadership and personal career capabilities. Based in Research Triangle Park, North Carolina, ISA develops standards; certifies industry professionals; provides education and training; publishes books and technical articles; and hosts conferences and exhibitions for automation professionals. ISA is the founding sponsor of The Automation Federation.

Upcoming Events

August 9 - August 11 2022

MaximoWorld 2022

View all Events
banner
80% of Reliabilityweb.com newsletter subscribers report finding something used to improve their jobs on a regular basis.
Subscribers get exclusive content. Just released...MRO Best Practices Special Report - a $399 value!
DOWNLOAD NOW
“Steel-ing” Reliability in Alabama

A joint venture between two of the world’s largest steel companies inspired innovative approaches to maintenance reliability that incorporate the tools, technology and techniques of today. This article takes you on their journey.

Three Things You Need to Know About Capital Project Prioritization

“Why do you think these two projects rank so much higher in this method than the first method?” the facilitator asked the director of reliability.

What Is Industrial Maintenance as a Service?

Industrial maintenance as a service (#imaas) transfers the digital and/or manual management of maintenance and industrial operations from machine users to machine manufacturers (OEMs), while improving it considerably.

Three Things You Need to Know About Criticality Analysis

When it comes to criticality analysis, there are three key factors must be emphasized.

Turning the Oil Tanker

This article highlights the hidden trap of performance management systems.

Optimizing Value From Physical Assets

There are ever-increasing opportunities to create new and sustainable value in asset-intensive organizations through enhanced use of technology.

Conducting Asset Criticality Assessment for Better Maintenance Strategy and Techniques

Conducting an asset criticality assessment (ACA) is the first step in maintaining the assets properly. This article addresses the best maintenance strategy for assets by using ACA techniques.

Harmonizing PMs

Maintenance reliability is, of course, an essential part of any successful business that wants to remain successful. It includes the three PMs: predictive, preventive and proactive maintenance.

How an Edge IoT Platform Increases Efficiency, Availability and Productivity

Within four years, more than 30 per cent of businesses and organizations will include edge computing in their cloud deployments to address bandwidth bottlenecks, reduce latency, and process data for decision support in real-time.

MaximoWorld 2022

The world's largest conference for IBM Maximo users, IBM Executives, IBM Maximo Partners and Services with Uptime Elements Reliability Framework and Asset Management System is being held Aug 8-11, 2022