Why Choose this Training Course

To learn about the implementation of holistic OT Security Protection Schemes for operating facilities. The protection of operating facilities against cyberthreats requires the cooperation of all involved actors: asset owners and operators, service providers for integration or maintenance, and product suppliers.

You experience how the concepts and contents of IEC 62443 can be used for the protection of operating facilities. You will be conducted step by step through the elements of holistic OT Security Protection Schemes. You will learn about the contributions of product suppliers, service providers and asst owners in each phase of the life cycle of an industrial facility. Asset owners and operators get to know, which support they can request from service providers and product suppliers for the protection of their operating facilities, and which is their own contribution.

Service providers experience, which capabilities regarding processes and technologies are necessary for developing risk-based protection concepts as well as learn about their activities and the scope of their responsibilities in the development of a Security Protection Scheme.

The contributions of product suppliers to support he development and operation of Security Protection Schemes will be described.

Following questions will be answered:

• As an asset owner: “what should I do to implement and operate OT Security Protection Schemes in my operating facility?”
• As an integration service provider: “what should I do to develop and maintain OT Security Protection Schemes in cooperation with the asset owner?”
• As a product supplier or service provider: “which security should I offer in my products and solutions?”

We are also a proud member of the Energy Institute of UK.

Who Should Attend

• Seismic interpreters
• Seismic processors
• Stratigraphers
• Sstructure geologists
• Reservoir engineers

Key Learning Objectives

• Apply the Defense-in-Depth strategy and risk-based methodologies to Industrial Automation and Control Systems (IACS), ensuring that security measures are proportionate to the identified operational risks.
• Evaluate facility-wide security through the systematic use of Security Levels and Maturity Levels, providing a quantifiable metric to assess the robustness of your security posture across the entire lifecycle.
• Integrate cybersecurity protection schemes directly into the facility lifecycle, ensuring that security is not an afterthought but is planned, developed, and maintained from initial design through decommissioning.
• Develop comprehensive Cybersecurity Requirement Specifications that clearly define the roles, responsibilities, and technical security measures required for the automation solution.
• Validate security effectiveness through rigorous initial assessments and continuous re-validation processes, ensuring the protection scheme adapts to changes in the operational environment or threat landscape.
• Align organizational programs with core standards such as IEC 62443-2-1 and 62443-2-4, effectively bridging the gap between general IT security practices (like ISO/IEC 27001) and specific IACS requirements for asset owners and service providers.
• Implement technical security requirements at the component and system levels by adhering to the specifications outlined in IEC 62443-3-3, 62443-4-2, and 62443-4-1, focusing on secure product development and lifecycle management.

Enquiry Form