Are you competent on IACS cybersecurity?

On this blog ESC’s Dr Fan Ye looks back at some of his previous articles written for LinkedIn and raises the question ‘Are you competent on IACS cybersecurity?’

Are you competent on IACS cybersecurity?

Looking back at the following posts we can establish from our experiences that there is a general lack of competence in the field of IACS cybersecurity.

If you are an IACS asset owner, IACS product manufacturer, IACS integrator, or an IACS service provider, do you have the necessary competence in fulfilling your role on IACS cybersecurity, e.g. in compliance with IEC 62443 series standards on Security for IACS?

One way of building up the necessary competence is through training.

TÜV Rheinland has recently started a CySec Specialist certificate course on IACS cybersecurity. Successful delegates will be issued a CySec Specialist (TÜV Rheinland) certificate.

TÜV Rheinland training program and structure diagram below

ESC is one of the TÜV Rheinland approved course providers, with Dr Fan Ye (GICSP) as the approved trainers, on the following courses:

In order to obtain a CySec Specialist (TÜV Rheinland) certificate, a delegate must

  • Demonstrate adequate knowledge on the fundamentals of cyber security, either by attending the fundamentals course and pass the exam, or by pass the exam without attending the fundamentals training; and
  • Attend advanced training courses on specialist areas such as Product Development and Risk Assessment and pass the exam

If you are interested and would like to find out more about the training programme, see ESC’s Training and Industrial Control Systems Cyber Security pages for more details.