How our cybersecurity services fit in the project life cycle
The life cycle of a new ICS starts with a project specification created by the owner or operator. Naturally, this specification describes the main functions of the new installation, but usually also contains some cyber security requirements.
These can either be based on compliance with company security policies, industrial standards (IEC 62443) or applicable laws and regulations.
Next is the design & engineering phase. Here, cybersecurity again plays a vital role. To ensure security requirements are embedded in the project, and are not an afterthought, you can perform risk assessments, threat modeling and design reviews.
Alongside standard assessments
After this stage, the system is ready to be implemented. This is where the FAT and SAT come into play. Secura’s ICS Cyber FAT/SAT service can be implemented alongside the more standard assessments. It focuses specifically on the verification steps common during the regular FAT/SAT phase of each project.