Cyber Security / Security

ISA Report Helps SMBs Recognize Risks Of Industrial Attack

By Chemical Processing Staff

Aug 01, 2017

The International Society of Automation (ISA), at the request of the U.S. Department of Homeland Security, develops a white paper designed to help small- and medium-sized businesses (SMBs) recognize their vulnerability to industrial cyberattack and forge an effective cybersecurity plan based on established standards and practices.

“Effective cybersecurity management is essential for all organizations, regardless of size,” emphasizes Bill Joss, ISA’s senior business development manager. “However, most medium- and smaller-sized companies that manage industrial processes and employ some level of automation are unaware of the cyber-risks they face, and are not adequately prepared to implement the proven cybersecurity standards and practices that are available to them.”

“Industrial Cybersecurity for Small and Medium Sized Businesses” leverages ISA’s in-depth knowledge of industrial automation and control systems (IACS) and subject matter expertise in industrial cybersecurity.

“SMBs need to fully understand their cybersecurity risk and take action to reduce this risk, just as they do with other business risks,” Joss says. “The absence of previous incidents, or the belief that the organization is not a likely target, is not sufficient justification for ignoring this issue.”

SMBs—just like large manufacturing operations—are at risk from a wide variety of threats, including amateur and professional hackers, environmental activists, disgruntled employees or contractors and even nation states or terrorists. In addition, many cybersecurity incidents are a result of accidents or unintentional actions. A company does not have to be a specific target to be affected.

The white paper provides a thorough overview of industrial cybersecurity, covering:

  • Risk assessment
  • Essential cybersecurity initiatives, including: Identification, Protection, Detection, Response and Recovery
  • Awareness and training
  • Continuous improvement

For more information, visit: