Center for Safety Integrity and Security
CeSIS develops protection concepts against cyber attacks to technical plants. According to the new Seveso III directive, cyber attacks are hazards for human and environment. Suitable safety measures have to be explained in the safety report and a suitable security management system has to be installed.
The operator’s obligations for the protection of technical plants are described in numerous policies, which are, however, rather basic in character. CeSIS transformes these requirements into concrete measures.
CeSIS supports plant operators to establish the required systems in their companies, to provide the necessary documents and to create awareness among the employees.
The following list contains a selection of rules and regulations:
- IT Security Act
- EU 2106 / 1148
- IEC 61511/ 61508 / 62443
- IEC 62443-2
- ISO/IEC 27005
- KAS 44 / 45
- BSI ICS Security Compendium
- NAMUR NA163