Cyber Security Management Standard is published by ISA.

Press Release Summary:



As second standard in ISA99 series "Security for Industrial Automation and Control Systems" approved by ANSI, ANSI/ISA-99.02.01-2009, Establishing an Industrial Automation and Control Systems Security Program, describes elements to set up cyber security management system. It also provides guidance on how to meet requirements for each element. Specific topics include policies, procedures, practices, and personnel. Additional ISA99 standards are also under development.



Original Press Release:



New Industrial Cyber Security Management Standard Published by ISA



Research Triangle Park, NC (5 February 2009) - A second standard in the ISA99 series Security for Industrial Automation and Control Systems has been approved by the American National Standards Institute and may be obtained at http://www.isa.org/standards.

The new standard, ANSI/ISA-99.02.01-2009, Establishing an Industrial Automation and Control Systems Security Program, describes elements to set up a cyber security management system and provides guidance on how to meet the requirements for each element. Topics include policies, procedures, practices, and personnel.

"The great value of this standard is that it draws together the best thinking on industrial cyber security management from experts at leading companies and organizations across the globe," states Jim Gilsinn of the US National Institute of Standards and Technology. Gilsinn served as the lead editor for the standard.

The new standard follows last year's publication of the first standard in the series, ANSI/ISA-99.00.01, which serves as the basis of all standards in the ISA99 series by presenting key concepts, terminology, and models. Additional ISA99 standards under development will cover how to operate a security program after it is designed and implemented, and technical security requirements for industrial automation and control systems.

As American National Standards, the ISA99 series serves as the foundation for the IEC 62443 series of the same titles, as being developed by IEC TC65 WG10, "Security for industrial process measurement and control - Network and system security."

Also vital in ISA's industry-leading work in cyber security for industrial automation and control systems is the ISA Security Compliance Institute. The Institute will identify and promote security standards-compliant products and systems in industrial applications. Compliant products or systems will be entitled to carry the ISASecure designation, providing instant recognition of the security characteristics to asset owners, integrators, and the buying public. For more information, visit http://www.isa.org/ISASecure.

About ISA

Founded in 1945, the International Society of Automation (www.isa.org) is a leading, global, nonprofit organization that is setting the standard for automation by helping over 30,000 worldwide members and other professionals solve difficult technical problems, while enhancing their leadership and personal career capabilities. Based in Research Triangle Park, North Carolina, ISA develops standards; certifies industry professionals; provides education and training; publishes books and technical articles; and hosts the largest conference and exhibition for automation professionals in North America. ISA is the founding sponsor of The Automation Federation (www.automationfederation.org).

All Topics