Back

EVS-EN IEC 62443-2-4:2019

Security for industrial automation and control systems - Part 2-4: Security program requirements for IACS service providers

General information
Valid from 02.05.2019
Base Documents
IEC 62443-2-4:2015; EN IEC 62443-2-4:2019
Directives or regulations
None
Standard history
Status
Date
Type
Name
02.05.2019
Main
02.05.2019
Amendment
This part of IEC 62443 specifies a comprehensive set of requirements for security capabilities for IACS service providers that they can offer to the asset owner during integration and maintenance activities of an Automation Solution. Because not all requirements apply to all industry groups and organizations, Subclause 4.1.4 provides for the development of Profiles that allow for the subsetting of these requirements. Profiles are used to adapt this document to specific environments, including environments not based on an IACS. NOTE 1 The term “Automation Solution” is used as a proper noun (and therefore capitalized) in this part of IEC 62443 to prevent confusion with other uses of this term. Collectively, the security capabilities offered by an IACS service provider are referred to as its Security Program. In a related specification, IEC 62443-2-1 describes requirements for the Security Management System of the asset owner. NOTE 2 In general, these security capabilities are policy, procedure, practice and personnel related. Figure 2 illustrates how the integration and maintenance capabilities relate to the IACS and the control system product that is integrated into the Automation Solution. Some of these capabilities reference security measures defined in IEC 62443-3-3 that the service provider must ensure are supported in the Automation Solution (either included in the control system product or separately added to the Automation Solution).
*
*
*
PDF
26.58 € incl tax
Paper
26.58 € incl tax
Standard monitoring
Customers who bought this item also bought
Amendment

EVS-EN IEC 62443-2-4:2019/A1:2019

Security for industrial automation and control systems - Part 2-4: Security program requirements for IACS service providers
Newest version Valid from 02.05.2019
Main

EVS-EN IEC 62443-4-2:2019

Security for industrial automation and control systems - Part 4-2: Technical security requirements for IACS components
Newest version Valid from 02.05.2019
Main

EVS-EN IEC 62443-3-3:2019

Industrial communication networks - Network and system security - Part 3-3: System security requirements and security levels
Newest version Valid from 02.05.2019
Main

EVS-EN IEC 62443-4-1:2018

Security for industrial automation and control systems - Part 4-1: Secure Product Development Lifecycle Requirements
Newest version Valid from 02.04.2018