Resource guide: Deep thoughts on cybersecurity

This month's slate of white papers, videos, tutorials and other resources come from ICEweb, exida, ISA, Frost & Sullivan, and others.

ICEweb cyber compilation 

The now-legendary ICEweb site takes on cybersecurity, and has compiled a treasure trove of articles and links at its "Control System Security" sub-website. The collection covers SCADA security, malware, expenses of attacks, Stuxnet, oil and gas facility security, standards, videos and links to U.S. government and many other resources. 

Watch the videos 

ICEweb /


NIST cyber blog and docs

The official site of the "NIST Cybersecurity Framework" consists of basic documents and a blog with the latest updates on what's going on with cybersecurity from the unique perspective of the National Institute of Standards and Technology. The site also includes FAQs, news, events, workshops and even a couple of short and informative videos. 

Visit the site



Exida video introduction 

This 44-minute video, "Introduction to Process Control Cyber Security," is derived from a webinar by cybersecurity consultant exida. It reports that it provides an introduction to control system cybersecurity and the security lifecycle. While the course follows the security level lifecycle from ANSI/ISA-99.01.01 and ANSI/ISA-99.02.01, it also references other industry standards and best practices. 

Watch the video

exida /

 Download: Béla Lipták on safety: Cybersecurity and nuclear power

'Unfettered ' is 10 years old

The great "Unfettered" blog written by Joe Weiss and hosted by just celebrated its 10th birthday a few weeks ago, which means it's achieved more than a decade of thorough and unrelenting coverage of cybersecurity issues and threats—and what's too often not being done about them. As his bio says, "Weiss is an international authority on cybersecurity, control systems and system security, and he weighs in on cybersecurity, science and technology, security emerging threats and more."

Read the blog



ICS-CERT site delivers

The U.S. Dept. of Homeland Security's Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) site has been improving with more timely threat updates and recommendations for users about protecting themselves, their applications and their organizations from probes, intrusions and cyber attacks. In fact, notices and alerts are now delivered right to those who sign up. 

Visit the site



Security for North America and Europe

The ISA99 standards development committee brings together industrial cybersecurity experts from across the globe to develop the ISA-62443 (IEC 62443) security standards These two 90-minute webinar videos, "Cybersecurity for Control Systems in Process Automation—North American Session" and "Cybersecurity for Control Systems in Process Automation—European Session," are offered by the ISA and Siemens. ISA99 Committee Co-Chair Eric Cosman and Siemens Plant Security Services PSSO Robert Thompson present the current threat landscape and key steps you can take to protect your critical assets in the production environment. 

Watch the videos



Protection and prevention white paper

The 17-page whitepaper, "Cybersecurity for Industrial Automation & Control Environments," is authored by Schneider Electic and Frost & Sullivan, and covers all the basic scenarios and stragies for minimizing risk, improving postures and partnering with the right helpers. 

Read the paper

Frost & Sullivan /


ISA99 security models

This 50-minute video, "Industrial Cyber System Security, the ISA 99 Security Models," is presented by Dennis Brandl of BR&L Consulting Inc., who addresses  control system security, and how the ISA 99 Security Models can be a solution. He originally delivered this presentation at the 2015 NovaTech Users Conference in New Orleans, La. 

Watch the video

NovaTech /