ICEweb cyber compilation
The now-legendary ICEweb site takes on cybersecurity, and has compiled a treasure trove of articles and links at its "Control System Security" sub-website. The collection covers SCADA security, malware, expenses of attacks, Stuxnet, oil and gas facility security, standards, videos and links to U.S. government and many other resources.
ICEweb / www.iceweb.com.au
NIST cyber blog and docs
The official site of the "NIST Cybersecurity Framework" consists of basic documents and a blog with the latest updates on what's going on with cybersecurity from the unique perspective of the National Institute of Standards and Technology. The site also includes FAQs, news, events, workshops and even a couple of short and informative videos.
NIST / www.nist.gov
Exida video introduction
This 44-minute video, "Introduction to Process Control Cyber Security," is derived from a webinar by cybersecurity consultant exida. It reports that it provides an introduction to control system cybersecurity and the security lifecycle. While the course follows the security level lifecycle from ANSI/ISA-99.01.01 and ANSI/ISA-99.02.01, it also references other industry standards and best practices.
exida / www.exida.com
'Unfettered ' is 10 years old
The great "Unfettered" blog written by Joe Weiss and hosted by Controlglobal.com just celebrated its 10th birthday a few weeks ago, which means it's achieved more than a decade of thorough and unrelenting coverage of cybersecurity issues and threats—and what's too often not being done about them. As his bio says, "Weiss is an international authority on cybersecurity, control systems and system security, and he weighs in on cybersecurity, science and technology, security emerging threats and more."
Control / www.controlglobal.com
ICS-CERT site delivers
The U.S. Dept. of Homeland Security's Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) site has been improving with more timely threat updates and recommendations for users about protecting themselves, their applications and their organizations from probes, intrusions and cyber attacks. In fact, notices and alerts are now delivered right to those who sign up.
ICS-CERT / https://ics-cert.us-cert.gov
Security for North America and Europe
The ISA99 standards development committee brings together industrial cybersecurity experts from across the globe to develop the ISA-62443 (IEC 62443) security standards These two 90-minute webinar videos, "Cybersecurity for Control Systems in Process Automation—North American Session" and "Cybersecurity for Control Systems in Process Automation—European Session," are offered by the ISA and Siemens. ISA99 Committee Co-Chair Eric Cosman and Siemens Plant Security Services PSSO Robert Thompson present the current threat landscape and key steps you can take to protect your critical assets in the production environment.
ISA / www.isa.org
Protection and prevention white paper
The 17-page whitepaper, "Cybersecurity for Industrial Automation & Control Environments," is authored by Schneider Electic and Frost & Sullivan, and covers all the basic scenarios and stragies for minimizing risk, improving postures and partnering with the right helpers.
Frost & Sullivan / https://ww2.frost.com
ISA99 security models
This 50-minute video, "Industrial Cyber System Security, the ISA 99 Security Models," is presented by Dennis Brandl of BR&L Consulting Inc., who addresses control system security, and how the ISA 99 Security Models can be a solution. He originally delivered this presentation at the 2015 NovaTech Users Conference in New Orleans, La.
NovaTech / www.novatechweb.com
