Choose another country to see content specific to your location

//Select Country

Introduction to IEC 62443 for Integrators and Suppliers

Classroom Course

Course Description

Industrial cyber security is becoming increasingly important for manufacturers, integrators, and asset owners dealing with industrial automation and control systems (IACS). Modern systems are controlled by software systems and are highly networked, which presents new risks and challenges for business models based on cloud services as industry embraces the IoT/Industry 4.0 approach.

This kind of new business model and the extensive networking open up an ever-increasing potential for cyber security attacks that needs to be addressed. However, ensuring security in industrial operations is not an exclusively technical issue that can be covered purely by technical components such as firewalls and virus scanners.

The decisive factor in safe operations is whether the plant personnel have an adequate understanding of security in order to be able to detect and meet security threats in their daily work as quickly as possible. TÜV SÜD offers a training program that is perfectly tailored to the needs of the industry.

Through targeted industrial IT security trainings, you will build up the necessary competencies to be able to design, maintain, and operate your facilities and plants safely and in a secure way.

In this instructor-led, online course, Introduction to IEC 62443 for Integrators and Suppliers, we provide instruction on the necessary security foundation to guide your industrial personnel so they can better understand how to implement the most important IT and OT security principles for secure plant operations. No prior security knowledge is required.

Course Benefits

  • All staff involved in a modern industrial system now require at least basic IT and industrial cyber security knowledge in order to recognize security problems and not to endanger industrial operations through their behavior.
  • The training increases the participants security awareness by communicating existing threats and current attack vectors.
  • In addition, the level of knowledge about relevant security methods, security systems and standards are raised by all participants for further training.

Who Will Benefit

  • All staff involved in a modern industrial system now require at least basic IT and Industrial Cyber Security knowledge in order to recognize security problems and not to endanger industrial operations through their behavior.
  • Operations managers, project and production managers, product managers and product owners, technical industry specialists, plant personnel who may be
    involved with security aspects

Course Agenda

Security Foundation

Day 1

  • Welcome & Agenda Day 1
  • Introduction to Information Security (incl. basics of IT Security)
  • IT/OT convergence
  • Coffee Break
  • IEC 62443
    • Scope, Terms & Concepts, Life-Cycle-Approach
    • Defense in Depth
    • Maturity Level
    • Requirements to IACS System and Device
    • Zones and conduits
  • Lunch Break
  • IEC 62443 (contd.)
  • Risk Assessments according to IEC 62443-3-2
    • High-level risk analysis
    • Zones and conduits
  • Coffee Break
  • DIY Risk Assessment/Exercise: Architecture, zones and conduits based on high-level risk analysis
  • Q&A

Day 2

  • Welcome & Agenda Day 2 (incl. Wrap-up Day 1)
  • System security requirements (IEC 62443-3-3)
  • Coffee Break
  • Technical security requirements for IACS components (IEC 62443-4-2)
  • Lunch Break
  • Secure product development life cycle (IEC 62443-4-1)
  • Coffee Break
  • Security program requirements for IACS service providers (IEC 62443-2-4)
  • EXAM

Duration

2 Days

Next Steps

Select Your Location

Global

Americas

Asia

Europe

Middle East and Africa