GSO IEC 62443-2-1:2013

IEC 62443-2-1:2010
Gulf Standard   Current Edition · Approved on 31 December 2013

Industrial communication networks - Network and system security - Part 2-1: Establishing an industrial automation and control system security program

GSO IEC 62443-2-1:2013 Files

GSO IEC 62443-2-1:2013 Scope

This part of IEC 62443 defines the elements necessary to establish a cyber security management system (CSMS) for industrial automation and control systems (IACS) and provides guidance on how to develop those elements. This standard uses the broad definition and scope of what constitutes an IACS described in IEC/TS 62443‑1‑1. The elements of a CSMS described in this standard are mostly policy, procedure, practice and personnel related, describing what shall or should be included in the final CSMS for the organization. NOTE 1 Other documents in the IEC 62443 series and in the Bibliography discuss specific technologies and/or solutions for cyber security in more detail. The guidance provided on how to develop a CSMS is an example. It represents the author’s opinion on how an organization could go about developing the elements and may not work in all situations. The users of this standard will have to read the requirements carefully and apply the guidance appropriately in order to develop a fully functioning CSMS for an organization. The policies and procedures discussed in this standard should be tailored to fit within the organization. NOTE 2 There may be cases where a pre-existing CSMS is in place and the IACS portion is being added or there may be some organizations that have never formally created a CSMS at all. The authors of this standard cannot anticipate all cases where an organization will be establishing a CSMS for the IACS environment, so this standard does not attempt to create a solution for all cases.

Best Sellers From Information Sector

GSO ISO/TR 18492:2017
ISO/TR 18492:2005 
Gulf Standard
Long-term preservation of electronic document-based information
GSO ISO/IEC 15773:2013
ISO/IEC 15773:1998 
Gulf Standard
Information technology -- Telecommunications and information exchange between systems -- Broadband Private Integrated Services Network -- Inter-exchange signalling protocol -- Transit counter additional network feature
GSO ISO/TR 13028:2013
ISO/TR 13028:2010 
Gulf Standard
Information and documentation - Implementation guidelines for digitization of records
GSO ISO 16175-2:2013
ISO 16175-2:2011 
Gulf Standard
Information and documentation -- Principles and functional requirements for records in electronic office environments -- Part 2: Guidelines and functional requirements for digital records management systems

Recently Published from Information Sector

GSO ISO/IEC 23859:2024
ISO/IEC 23859:2023 
Gulf Standard
Information technology — User interfaces — Requirements and recommendations on making written text easy to read and understand
GSO ISO 29585:2024
ISO 29585:2023 
Gulf Standard
Health informatics — Framework for healthcare and related data reporting
GSO ISO 16245:2024
ISO 16245:2023 
Gulf Standard
Information and documentation — Boxes, file covers and other enclosures, made from cellulosic materials, for storage of paper and parchment documents
GSO ISO/IEC 9075-15:2024
ISO/IEC 9075-15:2023 
Gulf Standard
Information technology — Database languages SQL — Part 15: Multidimensional arrays (SQL/MDA)