Skip to content
NEW: ISASecure Site Assessment Program for OT Cybersecurity Learn More
About Press Documents & Forms Contact Join

Why Security Capability Level 2 for Industrial Control System Components? (March 28th, 2024 - 1 PM Eastern Time)

This webinar will provide a review of the additional security functionality that industrial automation and control system components designed and certified to meet IEC/ISA-62443-4-2 Security Level 2 (SL2) capabilities must exhibit, and how those additional capabilities increase the security resiliency of the component, as well as of any system into which the component is integrated, beyond baseline Security Level 1 (SL1) capabilities. 


IEC/ISA-62443-4-2 SL1 capabilities have been instrumental in raising the bar from a lack of embedded security capabilities to the standardized minimum expected embedded security capabilities in industrial automation and control system components today. However, SL1 capabilities are generic to a good extent and are not intended to protect against intended violations but just casual violations. 

SL2 capabilities not only raise the protection level by providing additional security functionality but also enhance SL1 capabilities, narrowing down disparities and increasing security resiliency. More importantly, SL2 introduces security capabilities common in today’s IT environments but not that common in OT environments. Enabling those capabilities requires developing and maturing the right competencies for Asset Owners, System Integrator Service Providers, and Product Supplier organizations. 

Webinar Details
 
Date: Thursday, 28 March 2024
Time: 1 p.m.–1:45 p.m. EDT U.S.
(10:00 a.m.–10:45 a.m. PDT U.S.)
Price: Free!
Format: 30-minute presentation followed by a 15-minute Q&A session
Kevin Staggs

Panelists

Kevin Staggs, Independent Consultant

Kevin Staggs has more than 45 years of experience in industrial control systems.  He worked for over 44 years for one of the major control system companies beginning his career as a technician and achieving the position of Senior Fellow at the time of his retirement from that company.  During his career he was a hardware design engineer, software engineer, systems engineer, system architect and cyber security expert.  He spent the last 25 years of his career improving the cyber security of products designed and manufactured with the company.  While with the company, Kevin encouraged the company to become one of the founding members of the ISA Security Compliance Institute (ISCI).  He served on the board of directors of ISCI until the time of his retirement primarily as the Technical Director of ISCI.  Kevin became of voting member of the ISA99 Committee in 2009.  He currently serves as co-chair of working group 4 of ISA99 which is responsible for the technical cyber security requirements in the IEC/ISA-62443 series of standards.  He also leads the task group responsible for the IEC/ISA-62443-4-2 standard.  Since his retirement Kevin is an active consultant in the field of cyber security of control system products and deployment of those products.