PRESS AND MEDIA

Singapore. TÜV SÜD PSB, the German testing, inspection, certification and training body, today signed an Application and Contract with the ISA Security Compliance Institute (ISCI) to conduct certification assessments using ISASecure certification specifications. The agreement was signed by Mr. Andre Ristaino, Managing Director, ISA Security Compliance Institute and Mr. Richard Hong, CEO, TÜV SÜD ASEAN.

Simultaneously, the Singapore Accreditation Council (SAC) and ISCI signed a Memorandum of Understanding to provide certification body accreditations for the ISASecure® cybersecurity certification program. With this series of events, TÜV SÜD PSB and SAC jointly bring industrial automation and control cybersecurity expertise to the Asia Pacific region. TÜV SÜD PSB will become the first certification body for the ISASecure® ISA/IEC 62443 Certification Program in South East Asia.

This enables TÜV SÜD PSB to independently certify industrial automation and control (IAC) products and organisations, ensuring robust defence against malicious cybersecurity attacks and providing assurances of product conformity to IEC 62443 for end-users of automation technology. Aligned to Singapore’s Smart Nation initiative, the certification scheme will help in strengthening Singapore cybersecurity resilience.

While signing the contract, Mr. Andre Ristaino, Managing Director, ISA Security ComplianceInstitute, said, “The evolving cybersecurity threat landscape for systems and processes has made automation more vulnerable to attacks than ever before. IAC product and service providers now have a way to ensure that systems are resilient to such attacks. We believe this partnership and TÜV SÜD PSB global expertise will greatly benefit the industry in this regard.”

Mr. Richard Hong, CEO, TÜV SÜD ASEAN further added, “Automation and control systems are becoming more complex due to standardised hardware and software components, respectively linked with each other. In such a scenario, independent robust evaluation, coupled with domain expertise is the need of the hour. TÜV SÜD PSB is perfectly poised to evaluate the development lifecycle process of control system product providers and assure their devices and systems are resilient from cyber-attacks and known vulnerabilities, according to the ISASecure certification program.”

TÜV SÜD PSB has established relevant consultancy, testing and certification services according to the new cybersecurity standards ISA/IEC 62443, which focuses on cybersecurity of Industrial Automation and Control Systems (IACS). This certification scheme will enable IAC product manufacturers to carry out cybersecurity tests in Singapore and meet cybersecurity testing requirements for the global and Asia Pacific market. The IEC 62443 family of operational technology (OT) cybersecurity standards help both suppliers and asset-owner companies anticipate potential weaknesses of their automation and control technologies, and counter them with effective protection measures.


About Singapore Accreditation Council (SAC)

 SAC is the national accreditation body in Singapore. It operates a range of accreditation programs that provide independent assessment and formal recognition of the competence of companies in performing specific types of testing, calibration, inspection, certification and other related activities.

About the ISA Security Compliance Institute (ISCI) and ISASecure®

Founded in 2007, the ISA Security Compliance Institute’s mission is to provide the highest level of assurance possible for the cybersecurity of industrial automation control systems (IACS).  ISCI has been conducting ISASecure® certifications on industrial automation since 2011 through its network of ISO/IEC 17065 accredited certification bodies.

The Institute was established by thought leaders from major organisations in the industrial automation controls community seeking to improve the cyber security posture of critical Infrastructure for generations to come.
 
The Institute’s goals are realised through ISASecure® branded industry standards compliance programs, education, technical support, and improvements in suppliers’ development processes and users’ life cycle management practices. The ISASecure® designation ensures that IACS products conform to industry consensus cyber security standards such as IEC 62443, providing confidence to users of ISASecure products and systems and creating product differentiation for suppliers conforming to the ISASecure specification. www.isasecure.org.

Next Steps