The ISA-99 Part 1 standard, “Security for Industrial Automation and Control Systems: Concepts, Terminology and Models,” will define the concepts, terminology, and models of industrial automation and control systems security, establishing the basis for the remaining standards in the ISA-99 series.
The ISA-99 Part 2 standard, “Establishing an Industrial Automation and Control Systems Security Program,” will provide guidance for developing a program for the security of industrial automation and control systems. It will offer detailed guidance on process activities and key elements for establishing a cyber security management system.
“Our purpose is to establish standards that will define procedures for implementing electronically secure manufacturing and control systems and security practices and assessing electronic security performance,” said ISA-SP99 Chairman Bryan Singer, of Rockwell Automation Inc., Milwaukee.
The ISA-SP99 committee addresses industrial automation and control systems whose compromise could result in any or all of the following: impact on national security, endangerment of the public or employees, loss of proprietary or confidential information, violation of regulatory requirements and economic loss.
Other standards planned for the ISA-99 series include:
ISA-99 Part 3 - Operating an Industrial Automation and Control System Security Program
ISA-99 Part 4 - Specific Security Requirements for Industrial Automation and Control Systems.