From April 25-26, the Cyber Security 2018 conference is held in Oslo, organized by NFEA (Norsk Forening for Elektro og Automatisering). The conference focuses on cyber security in critical infrastructure internationally as well as the status for cyber security in the oil and gas industry. Leading standards that apply today will be presented along with how the standards are being applied within different corporations’ governance frameworks and procedures
During the conference, Hudson Cybertec explained the principal goal of the IACS Cyber security Certification Framework (ICCF) report and the status of the framework. The report, produced under authority of the European Reference Network for Critical Infrastructure Protection (ERNCIP), proposes an initial set of common European requirements and broad guidelines that will help fostering IACS cybersecurity certification in Europe in a manner fully compatible with practices adopted beyond. The ICCF is built around the IEC 62443-4-2.
The report describes the IACS component Cybersecurity Certification Framework (ICCF) and its components and makes suggestions for its governance, adoption and implementation. Hudson Cybertec was involved in the first paper based exercises during the last stages of development of the ICCF and has been in the lead of the Dutch National Exercise Team.
More information on the ICCF can be found at: https://erncip-project.jrc.ec.europa.eu/documents/introduction-european-iacs-components-cybersecurity-certification-framework-iccf