IEC 62443

IEC 62443 is a series of standards that address cybersecurity for operational technology in automation and control systems. The series is divided into different sections and describes both technical and process-related aspects of automation and control systems cybersecurity. The series is also known as ISA/IEC 62443 in recognition of the fact that much of the initial development was done by the ISA99 committee of the International Society for Automation.

It divides the cybersecurity topics by principal role including:

  • the Asset Owner,
  • the Product Supplier, and
  • the Service Providers (integration and for maintenance)

The different roles each follow a risk-based approach to prevent and manage security risks in their activities.