Why modern process safety programs must incorporate ICS security assessments.
by John Cusimano, CISSP, GICSP, CFSE & Paul Gruhn, P.E., CFSE
The majority of process plants today are controlled and operated by automation systems built on Ethernet TCP/IP networks and legacy Microsoft operating systems. These systems are vulnerable to cyber security breaches resulting in potentially significant risks. Standards have been developed on how to assess and mitigate cyber risks to these systems. This paper provides an introductory summary of these topics.
We understand the strong connection between Industrial Cybersecurity and Process Safety. We also believe that you can’t achieve process safety in today’s world of open, integrated control systems without addressing cybersecurity. At aeSolutions we have expertise in both fields and are working with some of the world’s leading oil & gas and petrochemical companies to help them engineer industrial cybersecurity into their new or existing control systems and integrate cybersecurity into their Process Safety processes.