IEC 62443

What is IEC 62443?

The ISA/IEC 62443 standards were purpose-built to address security issues unique to industrial automation and control systems (IACS) and operational technology (OT). As such, they can be an extremely valuable resource for organizations looking to strengthen defenses and corral risk in specialized industrial systems.

Unlike the more general NIST Cybersecurity Framework (CSF) or ISO 2700x guidelines, ISA/IEC 62443 (IEC 62443 for short) provides a series of requirements and methods to manage security challenges in IACS and industrial environments.  Such challenges include:

  • The relative criticality of data confidentiality in facilities operations or functions.
  • Potential dangers to personnel, the environment, and society in the event of cyber-physical failures.
  • The increased need for compensating controls to protect legacy IACS/OT systems.
  • The relative difficulty of applying common IT security techniques without severe systems modifications.
  • Prospects for financial loss due to an incident-related drop in productivity.
  • Unique approaches to ensuring systems reliability and integrity in industrial environments.

Protect OT Systems with IEC 62443

The ISA/IEC 62443 collection of standards is laser-focused on industrial controls.  Read the Ultimate Guide to Protecting OT Systems with IEC 62443 to make the most of them.

This guide will cover:

  • Zones, conduits and security levels
  • Guiding risk assessment
  • Use cases for leveraging IEC 62443
  • Limitations
  • Getting started
  • and more!

Our Customer Success

“I have worked with Verve for 15 years and am continually amazed by their excellent customer oriented support. They are very innovative and capable and provide exceptional service and value.”

Jon Shadduck, Ameren

Our Customer Success

“Verve was awarded this work after a bidding process that also included Emerson, Ovation, ABB and Honeywell because of their platform agnostic solution.”

Manager, Real-time Systems @ Large Generation Utility

Our Customer Success

“Once Verve detailed their configuration and plan I had full confidence that we wouldn’t cause any control system issues. We are even connected to the proprietary Emerson DeltaV switches.”

Manager, Real-time Systems @ Large Generation Utility

Build an ICS Cyber Security Program with IEC 62443

This article aims to help asset owners, integrators and customers understand how to begin a cybersecurity program to improve overall maturity against the elements of the IEC 62443 standard.

In the IT cybersecurity world, there is a plethora of frameworks and education. But in OT cybersecurity, it is paralyzing to understand and properly implement meaningful security. The good news is that it can be done safely in a way that considers both enterprise/IT and OT/ICS audiences via a phased and pragmatic approach.

On-Demand Webinar: Leveraging IEC 62443

The IEC/ISA 62443 standard is becoming more widespread in usage and application for industrial control systems cybersecurity. In this webinar, we will walk through an introduction to the overall standards and try to help make sense out of different terminology in a practical manner. We will also share practical experiences on how to address these standards and make meaningful progress in your overall ICS security maturity efforts. The specific topics covered include: • Practical description of the various components of IEC 62443 and how they apply • A deeper introduction relative to both network & endpoints (sometimes endpoints get forgotten in all the talk about zones and conduits) • An example of an HMI blueprint of how you might achieve a target Security Level (SL-T) • How you can measure and assess on an ongoing basis the current Achieved Security Level (SL-A) • Case examples of how others have managed to achieve maturity improvement given the complexities of the ICS environments.

Watch it now

Alternative Cyber Security Standards

Verve Iconography Protect 4

NIST CSF

Achieve NIST CSF maturity with Verve’s end-to-end risk management platform

Learn More
Verve Iconography Protect 4

CIS Top 20

Learn how Verve scaled the CSC 20 across industrial control systems for a U.S.-based energy company

Learn More
Verve Iconography Protect 4

NERC CIP

See how Verve detects, prevents and responds to cyber threats in compliance with the NERC CIP standard

Learn More

Request a Demo

See how the Verve Security Center is a turnkey platform for IEC 62443 cyber security standards.

Request a Demo