- View security from a holistic perspective covering security management processes and technical security
- Security will be addressed from a combined IT and Manufacturing Control system perspective
- Design and develop multiple layers of application, system and IT network security in IA products and for customer installations
- Ensure industry, regulatory and international standards are adopted and enforced
- Prevention is critical in plant control systems, supported by vulnerability assessment and detection
Security Framework
A good security framework needs to cover both security management and technical aspects. The management side relates to the creation of overall security objectives, policies, procedures and governance.
Supporting management security services are a number of technical services and products. The headings and coverage of these technical services are based on the Meta Group security framework and the initial guidelines provided by the ISA SP99.The ISA SP99committee isworking on developing plant and control security standards
Integrated Security
Invensys Process Systems approach to Cyber Security is to align and integrate two critical areas:
- IT and Control system expertise and knowledge
- IT technical security approaches, technologies and concepts to Plant & Control Systems
Multi layered Security
Invensys Process Systems view security as a series of defenses that can be created to meet customer security vulnerabilities and threats. Depending on the perceived or real threat to the customers’ infrastructure, the following security architecture is recommended:
