Siemens and ISA Form Cybersecurity Partnership

Sept. 5, 2017
A global partnership between Siemens and ISA will address the changing industrial security landscape through joint security expertise and stronger global standards awareness.

The rise of new cybersecurity technology providers, along with the growing alliances between those companies and established automation suppliers, are not the only sources of heightened activity around industrial cybersecurity these days. Well-known industry organizations and technology suppliers are joining forces too.

A high-profile example of this can be seen in the recently formed global partnership between Siemens and the International Society of Automation (ISA). According to the press release announcing the partnership, Siemens and ISA “will share expertise in protecting the automation environment based on the IEC 62443 standard and appropriate security measures in the form of events, webinars and further educational material. Together, ISA and Siemens intend to raise awareness and share best practices for industrial security with owner-operators of industrial equipment.”

Explaining the development of this Siemens/ISA partnership, Henning Rudolf, global head of Siemens Plant Security Services, said, “The work of the ISA laid the foundation for the multi-standard IEC 62443 series as we know it today. Siemens industrial security offerings, including automation and network products as well as services, are structured around IEC 62443. In addition, Siemens has created an Industrial Holistic Security Concept built on the security levels as defined in the IEC 62443 and the maturity model based on ISO 27001. Siemens has been certified, according to IEC 62443, for its critical processes and systems by the German TÜV. Due to this close collaboration, Siemens and ISA have decided to join forces to raise the awareness around cybersecurity in the automation world.”

The first projects planned as part of this partnership are two live webinars, the first of which is titled "Cybersecurity for Control Systems in Process Automation" with Siemens Plant Security Services Product & Solution Security Officer (PSSO) Robert Thompson and ISA 99/IEC 62443 Committee Co-Chair Eric Cosman taking place on the 28th of September. The second webinar, focusing on discrete manufacturing, will be announced soon.

Commenting on the current state of activity in the industrial cybersecurity market, Rudolf said, “Cybersecurity is a general challenge for the automation industry; therefore, we welcome cooperation between security technology providers and automation vendors.”

Rudolf noted that Siemens follows a risk-based defense-in-depth approach as defined in the IEC 62443. “A defense-in-depth approach consists of a multi-layered approach of protection, where only the combination of different security measures leads to the fulfillment of the needed security level,” he said.

In addition to such protection measures, Rudolf said industrial companies should implement detection and remediation measures depending on the automation operator’s risk profile. “Implementing security measures is of vital importance for owners and operators of automation environments to ensure that their production is not negatively impacted,” he said. “In the light of a maturing industry, we believe that different technologies need to be integrated on a common platform to ensure consistency and modular usage based on customer needs.”

About the Author

David Greenfield, editor in chief | Editor in Chief

David Greenfield joined Automation World in June 2011. Bringing a wealth of industry knowledge and media experience to his position, David’s contributions can be found in AW’s print and online editions and custom projects. Earlier in his career, David was Editorial Director of Design News at UBM Electronics, and prior to joining UBM, he was Editorial Director of Control Engineering at Reed Business Information, where he also worked on Manufacturing Business Technology as Publisher. 

Companies in this Article

Sponsored Recommendations

Why Go Beyond Traditional HMI/SCADA

Traditional HMI/SCADAs are being reinvented with today's growing dependence on mobile technology. Discover how AVEVA is implementing this software into your everyday devices to...

4 Reasons to move to a subscription model for your HMI/SCADA

Software-as-a-service (SaaS) gives you the technical and financial ability to respond to the changing market and provides efficient control across your entire enterprise—not just...

Is your HMI stuck in the stone age?

What happens when you adopt modern HMI solutions? Learn more about the future of operations control with these six modern HMI must-haves to help you turbocharge operator efficiency...

AVEVA™ System Platform: Smarter, Faster Operations for Enhanced Industrial Performance

AVEVA System Platform (formerly Wonderware) delivers a responsive, modern operations visualization framework designed to enhance performance across all devices with context-aware...