FIND OUT MORE

ISAGCA Updates

7 September 2021
New York Lawmakers Reference ISA/IEC 62443 in New Proposed Bill

RESEARCH TRIANGLE PARK, N.C. (7 September 2021)—New York state legislature is hoping to add additional protections to the state’s critical infrastructure via a newly proposed cybersecurity bill. The bill leverages the industry-adopted ISA/IEC 62443 series of standards to shape metrics and benchmarks for operational technology cybersecurity. If passed, the bill’s measures would be applied to the state’s critical infrastructure facilities, including: public transportation; water and wastewater treatment facilities; public utilities and buildings; hospitals, public health facilities, financial service organizations; and automation and control system components.

“There have been an increased amount of cyberattacks where hackers are just holding people hostage,” Senator Kevin Thomas, the bill’s sponsor, said. “The bill looks to address this by updating systems to match international standards so that the state’s critical infrastructure is protected as much as possible. There needs to be more vigilance. We need to know whether these critical infrastructure systems can be compromised and how to upgrade them to prevent them from being compromised.”

The ISA/IEC 62443 series of standards, developed by the ISA99 committee and adopted by the International Electrotechnical Commission (IEC), provides a flexible framework to address and mitigate current and future security vulnerabilities in industrial automation and control systems (IACSs). The committee draws on the input and knowledge of IACS security experts from across the globe to develop consensus standards that are applicable to all industry sectors and critical infrastructure.

 “The technologies that control and automate the world’s most critical operations, including the facilities where we work and live, are under constant threat and attack,” said ISA Global Cybersecurity Alliance Managing Director Andre Ristaino. “Consistent, global adoption of the ISA/IEC 62443 series of standards will help vendors, third parties, and end users—indeed, the entire digital supply chain—effectively and proactively manage risks to their people, assets, and operations.”

The ISA Global Cybersecurity Alliance (ISAGCA), made up of 50+ companies, continues to actively work to confront cybersecurity challenges in multiple ways. In general, a strong cybersecurity posture relies on people, process, and technology:

  • People: Individuals and companies using automation and control systems must be well-trained, and companies must make better cybersecurity hygiene and best practices the fabric of their corporate and facility-level cultures.
  • Process: The ISA/IEC 62443 series of standards, endorsed by the United Nations and backed by hundreds of asset owners in every world region, specifies how to assess and manage cybersecurity risk in OT environments. At the state and federal level, in the United States and around the world, the ISAGCA and its member companies are advocating policies that designate the use of the ISA/IEC 62443 series of standards as foundational, outcome-focused, technology-neutral documentation. The series of standards articulates roles, responsibilities, and expectations of suppliers, service providers, and asset owners, which can be easily translated to enforceable policy elements.
  • Technology: The ISA Security Compliance Institute offers conformance programs to certify components, devices, systems, and processes that are compliant with the latest ISA/IEC 62443 requirements. ISA advocates common-sense approaches to protecting legacy and next-gen equipment, leveraging the vast knowledge and expertise of our supplier and integrator member companies.

Many critical infrastructure and industrial manufacturing companies already have or are working diligently to integrate cybersecurity into their risk-management and business continuity plans and strategies. Using the ISA/IEC 62443 series of standards as their foundation, they focus on adopting security as part of the operations lifecycle, ensuring compliance with various aspects of the standards across their supply chains, and including cybersecurity in operational risk-management profiles.

About ISAGCA
The ISA Global Cybersecurity Alliance (ISAGCA) is a collaborative forum of member companies that aim to advance cybersecurity awareness, education, readiness, and knowledge sharing industry-wide, on a global scale. The alliance’s objectives include expanding the development and use of the ISA/IEC 62443 series of standards, knowledge-sharing in an open environment, providing best practice tools to help companies secure their infrastructure, creating education and certification programs, and advocating for cybersecurity awareness and sensible approaches with world governments and regulatory bodies.

About ISAGCA Members
The ISA Global Cybersecurity Alliance is made up of 50+ member companies, representing more than $1.5 trillion in aggregate revenue across more than 2,400 combined worldwide locations. Automation and cybersecurity provider members serve 31 different industries, underscoring the broad applicability of the ISA/IEC 62443 series of standards. Current members of ISAGCA include 1898 & Co. (Burns McDonnell), ACET Solutions, aeSolutions, Baserock IT Solutions, Bayshore, Carrier Global, Claroty, ConsoleWorks, Coontec, CyberOwl, CyPhy Defense, Deloitte, Digital Immunity, Dragos, Eaton, exida, Ford Motor Company, Fortinet, Honeywell, Idaho National Laboratory, Idaho State University, ISASecure, Johns Manville, Johnson Controls, KPMG, LOGIIC, Mission Secure, MT4 senhasegura, Munio Security, Nova Systems, Nozomi Networks, PAS, PETRONAS, Pfizer, Radiflow, Redacted, Red Trident, Rockwell Automation, Schneider Electric, Surge Engineering, TDI Technologies, Tenable, TI Safe, Tripwire, TXOne Networks, UL, Wallix, WisePlant, Xage Security, and Xylem. For more information about ISAGCA, visit www.isa.org/isagca.

10 August 2021
ISAGCA Releases Position Paper on Automation Cybersecurity Requirements in Public Policy

20 July 2021
New White Paper: Applying ISO/IEC 27001/2 and the ISA/IEC 62443 Series for Operational Technology Environments

13 July 2021
ISAGCA and ICS4ICS Announce Cybersecurity First Responder Credentialing Program

22 June 2021
New White Paper: Leveraging ISA 62443-3-2 For Automation and Control Systems Cybersecurity Risk Assessment and Risk Related Strategies

15 June 2021
ISA Global Cybersecurity Alliance and admeritia Announce Top 20 Secure PLC Coding Practices Document

1 June 2021
ISA and MBI Join Forces to Answer High Demand for Industrial Cybersecurity Training in Germany

20 May 2021
ISA Global Cybersecurity Alliance Members Selected to Serve on Expert Panel Appointed by the Cyber Security Agency of Singapore

27 January 2021
ISA Global Cybersecurity Alliance Sets Priorities for 2021

18 November 2020
ISA Global Cybersecurity Alliance Appoints Advisory Board Leadership

12 November 2020
ISA Global Cybersecurity Alliance Welcomes Eight New Founding Members

27 October 2020
New Cybersecurity Guide: ISAGCA Introduces an Overview of Security Lifecycles in the ISA/IEC 62443 Series of Standards

15 September 2020
New ISA/IEC Standard Provides Auditable Approach to Assessing Cybersecurity Risk

18 March 2020
New Guide to Cybersecurity Standards: ISAGCA Introduces an Overview of the ISA/IEC 62443 Series

14 January 2020
ISA Global Cybersecurity Alliance Kicks Off 2020 with Priority Projects and Expanded Membership

25 July 2019
ISA Announces First Founding Members of ISA Global Cybersecurity Alliance  

10 July 2019 New ISA Global Cybersecurity Alliance Accelerates Education, Readiness, and Knowledge Sharing  


ISAGCA in the News

The ISA Global Cybersecurity Alliance is garnering attention from every corner of the world. Featured in more than 2,200 publications in 30 countries, the ISAGCA and the ISA/IEC 62443 series of standards continue to make an impact in the media. Here are a few examples: 

12 March 2021
Strengthening the IT security posture in corporates and industrials
McKinsey & Company

March 2021
After Oldsmar: How vulnerable is US critical infrastructure?
TechTarget

3 February 2021
ISA Global Cybersecurity Alliance lists 2021 agenda, to focus on ISA/IEC 62443 standards
Industrial Cyber

November/December 2020
Cybersecurity standards hit their stride
InTech Magazine

24 August 2020
CISO Conversations: Understanding ISA/IEC 62443
Dark Reading

4 March 2020
The Cyber Threats Are Real – We’ve Got to Be Ready
Arabian Industry

16 January 2020 ISA Global Cybersecurity Alliance Triples Membership Info Security, United States

20 November 2019 New ISA Global Cybersecurity Alliance reduces threats through collaboration Enterprise Channels MEA, United Arab Emirates  

20 November 2019 Effective cybersecurity is a team sport Control Global, United States  

18 November 2019 ISA Cybersecurity Standards in Smart Cities: ARC Smart City Podcast ARC Viewpoints Blog Sites, United States  

14 November 2019 Is cybersecurity embedded in your organisation? Engineering News, South Africa  

31 October 2019 Triconex and Foxboro user group meetings in Austin for Schneider Electric’s Processes The Statesman Examiner - FinancialContent, United States  

28 October 2019 Certification Emphasizes Cybersecurity of Schneider Electric’s Processes Press Releases - Digital Journal, Canada  

23 October 2019 Cybersecurity experts offer best practices Control Global, United States  

17 October 2019 Schneider Eectric inAugusturates digital transformation of smart distribution centre in Brazil MEP Middle East, United Arab Emirates  

15 October 2019 Creating a More Secure Digital Ecosystem By Connecting The Dots Industrial Automation Asia, Singapore  

9 October 2019 Cybersecurity Alliance Helps Reduce Threats Through Collaboration Nutesla - The Informant, Italy  

19 September 2019 Interview: What will ISA's Global Cybersecurity Alliance actually do? Tech Wire Asia, United Kingdom  

18 September 2019 ISA Forms ISAGCA to Promote ISA 62443 Cybersecurity Standard ARC Viewpoints Blog Sites, United States  

12 September 2019 Rockwell announced as founding member of ISA Global Cybersecurity Alliance Controls, Drives & Automation, United Kingdom 

3 September 2019
ISA Global Cybersecurity Alliance: Schneider Electric membro fondatore Information Technology

Intelligent Software, Italy  

22 August 2019 Honeywell Advances Cybersecurity Efforts as Founding Member of New ISA Alliance BISInfotech, India

20 August 2019 Advancing cybersecurity efforts to enhance the development and adoption of cybersecurity standards ELE Times, India  

16 August 2019 ISA Global Cybersecurity Alliance Welcomes Schneider Electric As a Founding Member Digital Journal, Canada  

16 August 2019 ISA Global Cybersecurity Alliance Welcomes Schneider Electric As a Founding Member Boston Herald - FinancialContent, United States  

14 August 2019 Cybersecurity Concerns Could be Cause for IoT Pause – RTInsights RT Insights, United States

14 August 2019 ISA Global Cybersecurity Alliance Welcomes Schneider Electric as founding member Data Economy, United Kingdom

6 August 2019 Schneider Electric joins ISA Global Cybersecurity Alliance Trade Arabia, Bahrain  

5 August 2019
Honeywell joins ISA Global Cybersecurity Alliance
Homeland Preparedness News, United States  


The Cybersecurity Advocate Archives

Review past issues of The Cybersecurity Advocate, the official newsletter of the ISA Global Cybersecurity Alliance.

March 2021

December 2020

August 2020

April 2020


Updates from Affiliated Organizations


Members

PAS
xage security
Wallix
Bayshore
Supporting Member - senhasegura
radiflow
exida
Munio Security
Digital Immunity
tripwire
INL - Idaho National Laboratory
TDI ConsoleWorks
Eaton
KPMG
Surge Engineering
Petronas
UL logo
Idaho State University logo
Johns Manville
Red Trident logo
Xylem logo
Coontec Logo
Cyphy Defense Logo

Join the Movement: Contact ISA to Learn More

Let’s talk about how your company or organization can join us—contact Rick Zabel at rzabel@isa.org or +1 919 990 9233. Press and media should contact ISA’s Director of Marketing and Communications, Jennifer Halsey, at jhalsey@isa.org or +1 919 990 9287.  

LEARN MORE!