The ISA Global Cybersecurity Alliance begins the new year with several priority projects underway and an expanded group of companies and organizations as members.
ISAGCA is organized into four general focus areas for cybersecurity including: Awareness & Outreach; Compliance & Prevention; Education & Training; and Advocacy & Adoption. These focus areas or working groups are comprised of subject matter experts from member companies, ISA staff, and outside experts who are collectively working on the following projects in 2020:
- An easy-to-follow, condensed guide to implementing the ISA/IEC 62443 series of standards
- A consolidated matrix that cross-references all cybersecurity-related standards to ISA/IEC 62443 principles
- A roadmap for expanded cooperation with worldwide governments that are currently referencing the standards in their regulatory requirements or recommended practices
- A multi-dimensional reference guide mapping system lifecycle phases and stakeholder roles to specific automation cybersecurity knowledge, skills, and abilities needed to manage each phase
- Publishing industry vertical overlays to the ISA/IEC 62443 standards for building automation, medical devices, and other sectors
- A database of speakers with expertise and experience in automation cybersecurity and associated commitments for speaking opportunities at industry events
In addition to identifying and starting work on these priority projects, the ISA Global Cybersecurity Alliance has more than tripled its founding members with the addition of 23 new companies and organizations to its membership. At the end of July, ISAGCA announced Schneider Electric, Rockwell Automation, Honeywell, Johnson Controls, Claroty, and Nozomi Networks as its initial founding members. Subsequently, as of the end of 2019, the following additional companies joined the ISAGCA as founding members:
- aeSolutions
- Bayshore Networks
- Beijing Winicssec Technologies Co. Ltd.
- Digital Immunity
- Dragos
- exida
- ISA Security Compliance Institute
- ISA99 Committee
- Idaho National Laboratory
- LOGIIC (Linking the Oil and Gas Industry to Improve Cybersecurity)
- Mission Secure, Inc.
- Mocana Corporation
- Munio Security
- PAS Global
- Radiflow
- Senhasegura (supporting member)
- Tenable
- TiSafe
- Tripwire
- WisePlant
- Wallix Group
- Xage Security
End users, asset owners, government agencies and other cybersecurity-focused organizations are welcomed to join the ISA Global Cybersecurity Alliance. The current membership roster includes:
- Idaho National Laboratory, the United States’ leading center for nuclear energy research and development;
- the ISA Security Compliance Institute, which has been certifying automation products under the ISASecure® brand since 2010 via a global network of accredited certification bodies;
- LOGIIC, an ongoing collaboration of oil and natural gas companies and the U.S. Department of Homeland Security that undertakes collaborative research and development projects to investigate and improve upon the level of cybersecurity in critical systems of interest to the oil and natural gas sector;
- and the ISA99 Committee, responsible for the expansion and advocacy of the ISA/IEC 62443 series of standards.
“Unifying and intensifying the work of experts around the world, regardless of affiliation, is a key part of ISAGCA’s mission. We believe that automation providers, cybersecurity vendors, asset owners, government agencies, research groups, and others involved in cybersecurity efforts are stronger together, collaborating to deliver solutions that meet the needs of industry today and tomorrow,” said ISA Executive Director Mary Ramsey. “We are proud to bring together a diverse group of thought leaders to advance the state of cybersecurity.”
As members of the ISA Global Cybersecurity Alliance, industry groups such as the ISA Security Compliance Institute, LOGIIC, and the ISA99 Committee will bring the interests of its members to the work of the ISAGCA.
Notable members of the ISA Security Compliance Institute include Chevron, ExxonMobil, Honeywell, Schneider Electric, Yokogawa, exida, Control System Security Center, YPF, Japan Information Technology Promotion Agency, Royal Dutch Shell plc, TUV Rheinland, DNV GL, and TUV SUD. Current members of LOGIIC include BP, Chevron, ExxonMobil, Shell, Total, ConocoPhillips, and other large oil and gas companies that operate significant global energy infrastructure.
|