ICS Cybersecurity Risk Screening
Time & Location
About the Event
A consequence-based cybersecurity risk screening methodology, performed following the ISA/IEC 62443-3-2 initial risk assessment requirement (ZCR 2), identifies the cyber-vulnerable risk scenarios found in an existing process safety study (e.g., PHA, LOPA, or HAZOP). The study’s original risk ranking is adjusted to show the modified risk should the industrial control system (ICS) or safety instrumented system (SIS) be compromised due to a cybersecurity threat. The results expose the potential magnitude of cyber risk to operations, assists with the prioritization of detailed risk assessments, and facilitates the grouping of assets into zones and conduits.