I. Overview:

Cybersecurity threats targeting IACS are increasing in sophistication, scale, and impact. The most effective defense against these risks is the systematic implementation and management of industrial cybersecurity controls and best practices. In today's environment, strong IACS security is also a core expectation of regulators, customers, and other stakeholders.

This training course is designed to prepare participants to implement and manage an IACS security program based on the ISA/IEC 62443 series of standards. It provides a comprehensive understanding of the best practices, processes, and life cycle management principles required to establish, maintain, and continually improve an organization's industrial cybersecurity posture.

After attending the training course, you can take the exam. If you successfully pass it, you can apply for the "PECB Certified ISA/IEC 62443 Lead Implementer" credential, which demonstrates your ability and practical knowledge to implement and manage an IACS security program based on the requirements of the ISA/IEC 62443 standards.

II. Duration: 05 days (40 hours)

III. Objectives:

By the end of this training course, participants will be able to:

• Explain the fundamental concepts and principles of an industrial automation and control systems (IACS) security program based on the ISA/IEC 62443 series of standards
• Interpret the ISA/IEC 62443 requirements, recommendations, and technical reports from the perspective of an implementer
• Manage threats by implementing security controls, assessing maturity, securing assets and supply chains, and plan patching
• Design and maintain an IACS security program aligned with ISA/IEC 62443, assess and manage risks, and define clear security roles and responsibilities
• Provide ongoing security awareness and training, monitor IACS environments for threats, conduct regular security testing, and respond swiftly to incidents

IV. Intended Audience:

This training course is intended for:

• Managers, engineers, and consultants seeking to develop or enhance their competence in implementing IACS security programs
• Professionals responsible for or involved in IACS security activities who wish to deepen their understanding of the ISA/IEC 62443 series of standards
• Security practitioners and risk managers looking to strengthen their skills in applying industrial cybersecurity controls, assessing maturity, and managing IACS security
• Individuals pursuing a career in IACS cybersecurity who want to learn a comprehensive methodology for designing, implementing, and maintaining security programs aligned with ISA/IEC 62443

V. Prerequisites:

• The main requirement for participating in this training course is having a general knowledge of the IACS concepts and ISA/IEC 62443.

VI. Course outlines:

• Day 1: Foundations of ISA/IEC 62443 and IACS security
• Day 2: Security requirements, maturity models, and threat landscape
• Day 3: Establishing and managing an IACS security program
• Day 4: Training, incident response, and sector-specific standards
• Day 5: Certification exam