We are thrilled to share that we have added ISA/IEC 62443-2-1 to the SecurityGate Platform. This update will assist users in creating a robust IACS (Industrial Automation and Control Systems) Security Program, enabling them to strengthen their security measures and safeguard their systems.
Overview of ISA/IEC 62443-2-1
Part 2-1 of the ISA/IEC 62443 series of standards describes what is required to define and implement an effective IACS cybersecurity management system. The audience includes asset owners responsible for the design and implementation of such a program.
In the context of Part 2-1, the asset owner is also the operator of the IACS and the equipment under control. The security program covers the entire lifecycle of the IACS. It consists of implementing and maintaining personnel, policy and procedural, and technology-based capabilities that reduce cybersecurity risk.
A security program consists of the implementation and maintenance of personnel, policy & procedural, and technology-based capabilities that reduce cybersecurity risk. The security program must be coordinated with the organization’s overall Information Security Management System (ISMS). The ISMS sets the overall security governance.
Connection between 3-2 and 2-1
ISA/IEC 62443-3-2, which is the Security Risk Assessment for the system design is already available in the SecurityGate Platform. The figure below shows the relationship between 3-2 and 2-1.
Conducting an ISA/IEC 62443-2-1 Assessment in the SecurityGate Platform
The ISA 62443-2-1:2009 assessment in the SecurityGate Platform includes a total of 153 questions and guides the user on what should be included in a Cyber Security Management System (CSMS) for IACS and how to go about developing the CSMS for IACS.
The assessment is also mapped to MITRE, NIST CSF 1.1, and NIST 800-53r5.
Introduction Tab
Assessment Grid
Insights from Main Dashboard
Stay tuned as we build our ISA/IEC standards library. Contact [email protected] to learn more.
About SecurityGate
SecurityGate is an innovative software company that has built the leading SaaS platform to enable cyber teams to secure the world’s critical infrastructure. With SecurityGate’s critical infrastructure expertise, simplified dashboards, and actionable data workflows, asset owners and consultant partners are empowered to collaborate and mature cyber programs faster and easier than traditional manual methods.
SecurityGate serves clients across the Energy, Utilities, Manufacturing, and Transportation sectors, covering hundreds of critical facilities globally. SecurityGate has received the State of Texas Governor’s Award and Game Changer Award in Utilities and was named a Most Promising Technology Company by the Rice Alliance. SecurityGate is a member of startup communities, ION Houston, Geekdom in San Antonio, and Capital Factory in Austin and Dallas.
To learn more about SecurityGate, visit www.securitygate.io
