Tuesday, July 25, 2017

Industrial Cybersecurity for SMEs.


The International Society of Automation (ISA), at the request of the US Department of Homeland Security, has developed a white paper designed to help small- and medium-sized enterprises (SMEs - the Acronym SMB is used in the USA) recognize their vulnerability to industrial cyberattack and forge an effective cybersecurity plan based on established standards and practices.

The white paper covers:
• Risk assessment
• Essential cybersecurity initiatives, including: Identification, Protection, Detection, Response and Recovery
• Awareness and training
• Continuous improvement &
• Additional references
“Effective cybersecurity management is essential for all organizations, regardless of size,” emphasizes Bill Joss, ISA’s Senior Business Development Manager. “However, most medium- and smaller-sized companies that manage industrial processes and employ some level of automation are unaware of the cyber-risks they face, and are not adequately prepared to implement the proven cybersecurity standards and practices that are available to them.”

“Industrial Cybersecurity for Small and Medium Sized Businesses” draws on ISA’s vast in-depth knowledge of industrial automation and control systems (IACS) and subject-matter expertise in industrial cybersecurity.

“SMBs need to fully understand their cybersecurity risk and take action to reduce this risk, just as they do with other business risks,” Joss says. “The absence of previous incidents, or the belief that the organization is not a likely target, is not sufficient justification for ignoring this issue.”

SMBs—just like large manufacturing operations—are at risk from a wide variety of threats, including amateur and professional hackers, environmental activists, disgruntled employees or contractors and even nation states or terrorists. In addition, many cybersecurity incidents are a result of accidents or unintentional actions. A company does not have to be a specific target to be affected.

The document was co-written by two prominent ISA cybersecurity experts: Steve Mustard, a consultant who has developed cybersecurity management systems, procedures and training for many critical infrastructure organizations throughout the world; and Eric Cosman, a manufacturing operations and control systems consultant and Co-Chair of the ISA99 Committee on industrial cybersecurity standards and practices.

@ISA_Interchange  #PAuto #SME #SMB 

No comments:

Post a Comment