New Security Certificate Program

Wednesday, January 15, 2014 @ 11:01 AM gHale

Demand for cyber security expertise continues its rapid growth trajectory, but just how knowledgeable the professional is should be one of the first questions coming from an end user.

One new knowledge-based industrial cyber security certificate program is available and it works off the ISA99/IEC 62443 standard from the International Society of Automation (ISA).

RELATED STORIES
HUG: Understanding Security and Standards
3 Join Cyber Security Alliance
Job Security with Cyber Security
ICS Security Certification in Development

Through the work of the ISA Committee on Security for Industrial Automation & Control Systems (ISA99), ISA developed the ANSI/ISA99, Industrial Automation and Control Systems Security standards (known internationally as ISA99/IEC 62443).

The certificate program, the ISA99/IEC 62443 Cybersecurity Fundamentals Specialist Certificate, helps professionals involved in IT and control systems security increase their understanding of ISA99/IEC 62443 principles and acquire a command of industrial cyber security terminology.

Developed by international cyber security experts, the series of ISA99/IEC 62443 standards apply to all key industry sectors and critical infrastructure.

The ISA99/IEC 62443 Cybersecurity Fundamentals Specialist Certificate will go to those who successfully complete a designated, two-day ISA classroom training course, using the ANSI/ISA99 (IEC 62443) Standards to Secure Your Industrial Control System (IC32), and pass a 75-question, multiple-choice exam.

A student does not need any prerequisites to register for the certificate program and he or she does not need an application to take the exam. It would help if the student has at least three to five years of experience in the IT cyber security field, with at least two of those years in a process control engineering environment in an industrial setting.

The paper/pencil-formatted version of the ISA99/IEC 62443 Cybersecurity Fundamentals Certificate Program exam is available now. The electronic version will be available through the Prometric global network of testing centers during the first quarter this year.

In order to sit for the exam, applicants must register for the ISA course (IC32) and exam, and successfully complete the course.
The exam will cover:
• Understanding the current industrial security environment
• How cyber attacks happen
• Creating a security program
• Risk analysis
• Addressing risk with security policy, organization, and awareness
• Addressing risk with selected security counter measures
• Addressing risk with implementation measures
• Monitoring and improving the Cyber Security Management System (CSMS)
• Designing/validating secure systems

Because the ISA99/IEC 62443 Cybersecurity Fundamentals Certificate Program is a certificate and not a certification, certificate holders do not have to renew the ISA99/IEC 62443 Certificate.

However, once obtained, the certificate will remain current for three years. After the three-year expiration date, a certificate holder will no longer be able to claim that he or she holds a current/active ISA99/IEC 62443 certificate.

In order to extend the current status of an expired certificate, a certificate holder must register for and take the related ISA99/IEC 62443 Certificate Knowledge Review. A score of 70 percent higher will extend the current status of a certificate.



Leave a Reply

You must be logged in to post a comment.