OT Compliance Guidance
IT standards are not appropriate for IACS and other OT (operational technology) environments. They have different performance and availability requirements, and equipment lifetime. Cyber attacks on IT systems usually have an economic impact, while cyber attacks on OT systems can have an economic, environmental, public health and employee safety impact.
Therefore, you are wise to implement the industry best practices to mitigate the impact of a successful cyber attack.
ISA/IEC 62443 addresses not only the technology that comprises a control system, but also the work processes, countermeasures, and employees.
ISA/IEC 62443 takes a risk-based approach to cyber security, which is based on the concept that it is neither efficient nor sustainable to try to protect all assets in equal measure.
Instead, you must identify what is most valuable and requires the greatest protection and identify vulnerabilities accordingly.
Spinae helps you set up a defense-in-depth architecture and guides you on your journey to become ISA/IEC 62443 compliant.