Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Securing Industrial Control Systems and Safety Instrumented Systems

You're reading from   Securing Industrial Control Systems and Safety Instrumented Systems A practical guide for safeguarding mission and safety critical systems

Arrow left icon
Product type Paperback
Published in Aug 2024
Publisher Packt
ISBN-13 9781801078818
Length 256 pages
Edition 1st Edition
Arrow right icon
Author (1):
Arrow left icon
Jalal Bouhdada Jalal Bouhdada
Author Profile Icon Jalal Bouhdada
Jalal Bouhdada
Arrow right icon
View More author details
Toc

Table of Contents (14) Chapters Close

Preface 1. Part 1:Safety Instrumented Systems
2. Chapter 1: Introduction to Safety Instrumented Systems (SISs) FREE CHAPTER 3. Chapter 2: SIS Evolution and Trends 4. Chapter 3: SIS Security Design and Architecture 5. Part 2: Attacking and Securing SISs
6. Chapter 4: Hacking Safety Instrumented Systems 7. Chapter 5: Securing Safety Instrumented Systems 8. Part 3: Risk Management and Compliance
9. Chapter 6: Cybersecurity Risk Management of SISs 10. Chapter 7: Security Standards and Certification 11. Chapter 8: The Future of ICS and SIS: Innovations and Challenges 12. Index 13. Other Books You May Enjoy

Conducting risk assessments in SISs

For the context of SISs, we will highlight how a risk assessment is conducted with a focus on IEC 62443, NAMUR, and BowTie as widely adopted standards in process industries.

IEC 62443-3-2

The IEC 62443-3-2 standard utilizes a qualitative approach to cyber risk assessment aimed at identifying the potential for cyber attacks that could lead to incidents harming human life, the environment, property, or operational capabilities. A detailed summary of this methodology is provided in the following diagram:

Figure 6.3 – Diagram depicting the HAZOP method for risk assessment based on the IEC 62443-3-2 standard

Figure 6.3 – Diagram depicting the HAZOP method for risk assessment based on the IEC 62443-3-2 standard

As per Figure 6.3, the steps taken for the high-level risk assessment were the following:

  1. Identify/select systems under consideration (SuCs): This step is about defining the scope of the risk assessment. It involves identifying SISs and other ICSs that will be assessed.
  2. Identify threats and vulnerabilities...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image