Managing Cybersecurity in the Process Industries

Managing Cybersecurity in the Process Industries

Author: CCPS (Center for Chemical Process Safety)

Publisher: John Wiley & Sons

ISBN: 9781119861805

Category: Technology & Engineering

Page: 480

View: 758

The chemical process industry is a rich target for cyber attackers who are intent on causing harm. Current risk management techniques are based on the premise that events are initiated by a single failure and the succeeding sequence of events is predictable. A cyberattack on the Safety, Controls, Alarms, and Interlocks (SCAI) undermines this basic assumption. Each facility should have a Cybersecurity Policy, Implementation Plan and Threat Response Plan in place. The response plan should address how to bring the process to a safe state when controls and safety systems are compromised. The emergency response plan should be updated to reflect different actions that may be appropriate in a sabotage situation. IT professionals, even those working at chemical facilities are primarily focused on the risk to business systems. This book contains guidelines for companies on how to improve their process safety performance by applying Risk Based Process Safety (RBPS) concepts and techniques to the problem of cybersecurity.

Managing Cybersecurity in the Process Industries

Managing Cybersecurity in the Process Industries

Author: CCPS (Center for Chemical Process Safety)

Publisher: John Wiley & Sons

ISBN: 9781119861782

Category: Technology & Engineering

Page: 484

View: 218

The chemical process industry is a rich target for cyber attackers who are intent on causing harm. Current risk management techniques are based on the premise that events are initiated by a single failure and the succeeding sequence of events is predictable. A cyberattack on the Safety, Controls, Alarms, and Interlocks (SCAI) undermines this basic assumption. Each facility should have a Cybersecurity Policy, Implementation Plan and Threat Response Plan in place. The response plan should address how to bring the process to a safe state when controls and safety systems are compromised. The emergency response plan should be updated to reflect different actions that may be appropriate in a sabotage situation. IT professionals, even those working at chemical facilities are primarily focused on the risk to business systems. This book contains guidelines for companies on how to improve their process safety performance by applying Risk Based Process Safety (RBPS) concepts and techniques to the problem of cybersecurity.

Process / Industrial Instruments and Controls Handbook, Sixth Edition

Process / Industrial Instruments and Controls Handbook, Sixth Edition

Author: Gregory K. McMillan

Publisher: McGraw Hill Professional

ISBN: 9781260117981

Category: Technology & Engineering

Page: 752

View: 977

Extensive practical plant based knowledge to achieve the best automation system BACK COVER DESCRIPTION: This fully updated on-the-job reference contains all the automation and control information you need to make timely decisions, and maximize process capacity and efficiency. Featuring contributions from 50 top technical experts, Process/Industrial Instruments and Controls Handbook, Sixth Edition covers the latest technologies and advances. More importantly, the book helps you select the right instrumentation, install and maintain it correctly, and leverage it to maximize plant performance and profitability. You will get all you need to know to execute a successful automation project including time-saving tables, lists of essential best practices, and hundreds of topic-defining illustrations. Coverage includes: •Process variable measurements•Analytical measurements•Control Network communications•Safety instrumented systems•Control systems fundamentals•PID control strategies•Continuous and batch control•Improving operator performance•Improving process performance•Project management•And more

Practical Industrial Cybersecurity

Practical Industrial Cybersecurity

Author: Philip A. Craig, Jr.

Publisher: John Wiley & Sons

ISBN: 9781119883043

Category: Computers

Page: 624

View: 954

A practical roadmap to protecting against cyberattacks in industrial environments In Practical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT, veteran electronics and computer security author Charles J. Brooks and electrical grid cybersecurity expert Philip Craig deliver an authoritative and robust discussion of how to meet modern industrial cybersecurity challenges. The book outlines the tools and techniques used by practitioners in the industry today, as well as the foundations of the professional cybersecurity skillset required to succeed on the SANS Global Industrial Cyber Security Professional (GICSP) exam. Full of hands-on explanations and practical guidance, this book also includes: Comprehensive coverage consistent with the National Institute of Standards and Technology guidelines for establishing secure industrial control systems (ICS) Rigorous explorations of ICS architecture, module and element hardening, security assessment, security governance, risk management, and more Practical Industrial Cybersecurity is an indispensable read for anyone preparing for the Global Industrial Cyber Security Professional (GICSP) exam offered by the Global Information Assurance Certification (GIAC). It also belongs on the bookshelves of cybersecurity personnel at industrial process control and utility companies. Practical Industrial Cybersecurity provides key insights to the Purdue ANSI/ISA 95 Industrial Network Security reference model and how it is implemented from the production floor level to the Internet connection of the corporate network. It is a valuable tool for professionals already working in the ICS/Utility network environment, IT cybersecurity personnel transitioning to the OT network environment, and those looking for a rewarding entry point into the cybersecurity field.

Cybersecurity for Industrial Control Systems

Cybersecurity for Industrial Control Systems

Author: Tyson Macaulay

Publisher: CRC Press

ISBN: 9781466516113

Category: Business & Economics

Page: 203

View: 189

As industrial control systems (ICS), including SCADA, DCS, and other process control networks, become Internet-facing, they expose crucial services to attack. Threats like Duqu, a sophisticated worm found in the wild that appeared to share portions of its code with the Stuxnet worm, emerge with increasing frequency. Explaining how to develop and implement an effective cybersecurity program for ICS, Cybersecurity for Industrial Control Systems: SCADA, DCS, PLC, HMI, and SIS provides you with the tools to ensure network security without sacrificing the efficiency and functionality of ICS. Highlighting the key issues that need to be addressed, the book begins with a thorough introduction to ICS. It discusses business, cost, competitive, and regulatory drivers and the conflicting priorities of convergence. Next, it explains why security requirements differ from IT to ICS. It differentiates when standard IT security solutions can be used and where SCADA-specific practices are required. The book examines the plethora of potential threats to ICS, including hi-jacking malware, botnets, spam engines, and porn dialers. It outlines the range of vulnerabilities inherent in the ICS quest for efficiency and functionality that necessitates risk behavior such as remote access and control of critical equipment. Reviewing risk assessment techniques and the evolving risk assessment process, the text concludes by examining what is on the horizon for ICS security, including IPv6, ICSv6 test lab designs, and IPv6 and ICS sensors.

Management Information Systems

Management Information Systems

Author: James O'Brien

Publisher: McGraw-Hill/Irwin

ISBN: UCSC:32106018076429

Category: Computers

Page: 634

View: 967

This new Seventh Edition is designed for business students who are or who will soon become business professionals in the fast changing business world of today. The goal of this text is to help business students learn how to use and manage information technologies to revitalize business processes, improve business decision making, and gain competitive advantage. Thus it places a major emphasis on up-to-date coverage of the essential role of Internet technologies in providing a platform for business, commerce, and collaboration processes among all business stakeholders in today’s networked enterprises and global markets. The benchmark text for the syllabus organized by technology, this text appraoches the material from a managerial perspective. O’Brien defines technology and then explains how companies use the technology to improve performance. Real world cases finalize and enhance the explanation.

Digital Transformation, Cyber Security and Resilience of Modern Societies

Digital Transformation, Cyber Security and Resilience of Modern Societies

Author: Todor Tagarev

Publisher: Springer Nature

ISBN: 9783030657222

Category: Computers

Page: 495

View: 189

This book presents the implementation of novel concepts and solutions, which allows to enhance the cyber security of administrative and industrial systems and the resilience of economies and societies to cyber and hybrid threats. This goal can be achieved by rigorous information sharing, enhanced situational awareness, advanced protection of industrial processes and critical infrastructures, and proper account of the human factor, as well as by adequate methods and tools for analysis of big data, including data from social networks, to find best ways to counter hybrid influence. The implementation of these methods and tools is examined here as part of the process of digital transformation through incorporation of advanced information technologies, knowledge management, training and testing environments, and organizational networking. The book is of benefit to practitioners and researchers in the field of cyber security and protection against hybrid threats, as well as to policymakers and senior managers with responsibilities in information and knowledge management, security policies, and human resource management and training.

Cybersecurity in the Digital Age

Cybersecurity in the Digital Age

Author: Gregory A. Garrett

Publisher: Aspen Publishers

ISBN: 9781543808803

Category: Computer security

Page: 554

View: 979

Produced by a team of 14 cybersecurity experts from five countries, Cybersecurity in the Digital Age is ideally structured to help everyone—from the novice to the experienced professional—understand and apply both the strategic concepts as well as the tools, tactics, and techniques of cybersecurity. Among the vital areas covered by this team of highly regarded experts are: Cybersecurity for the C-suite and Board of Directors Cybersecurity risk management framework comparisons Cybersecurity identity and access management – tools & techniques Vulnerability assessment and penetration testing – tools & best practices Monitoring, detection, and response (MDR) – tools & best practices Cybersecurity in the financial services industry Cybersecurity in the healthcare services industry Cybersecurity for public sector and government contractors ISO 27001 certification – lessons learned and best practices With Cybersecurity in the Digital Age, you immediately access the tools and best practices you need to manage: Threat intelligence Cyber vulnerability Penetration testing Risk management Monitoring defense Response strategies And more! Are you prepared to defend against a cyber attack? Based entirely on real-world experience, and intended to empower you with the practical resources you need today, Cybersecurity in the Digital Age delivers: Process diagrams Charts Time-saving tables Relevant figures Lists of key actions and best practices And more! The expert authors of Cybersecurity in the Digital Age have held positions as Chief Information Officer, Chief Information Technology Risk Officer, Chief Information Security Officer, Data Privacy Officer, Chief Compliance Officer, and Chief Operating Officer. Together, they deliver proven practical guidance you can immediately implement at the highest levels.

CISA Certified Information Systems Auditor All-in-One Exam Guide, Fourth Edition

CISA Certified Information Systems Auditor All-in-One Exam Guide, Fourth Edition

Author: Peter H. Gregory

Publisher: McGraw Hill Professional

ISBN: 9781260458817

Category: Computers

Page: 752

View: 422

Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product. This up-to-date self-study system delivers complete coverage of every topic on the 2019 version of the CISA exam The latest edition of this trusted resource offers complete,up-to-date coverage of all the material included on the latest release of the Certified Information Systems Auditor exam. Written by an IT security and audit expert, CISA Certified Information Systems Auditor All-in-One Exam Guide, Fourth Edition covers all five exam domains developed by ISACA®. You’ll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. Designed to help you pass the CISA exam with ease, this comprehensive guide also serves as an essential on-the-job reference for new and established IS auditors. COVERS ALL EXAM TOPICS, INCLUDING: • IT governance and management • Information systems audit process • IT service delivery and infrastructure • Information asset protection Online content includes: • 300 practice exam questions • Test engine that provides full-length practice exams and customizable quizzes by exam topic