Login
logo
Compare

Mastering IEC 62443: In-Depth OT Cybersecurity training

HMS
Classroom On-site
Technology
25 Mar 2026 - 27 Mar 2026

Date

25/03/2026 - 26/03/2026

Location

HMS Networks Benelux, Architronlaan 1 a, 5321 JJ Hedel

 

 

Participation Fee

600 Euro per participant

 

Accommodation

Each participant must book their own accommodation

 

Why you should join

IEC 62443 In-depth training: The protection of operating facilities against cyberthreats requires the cooperation of all involved actors: asset owners and operators, service providers for integration or maintenance, and product suppliers.

You experience how the concepts and contents of ISA/IEC 62443 can be used for the protection of operating facilities. The instructor will help you step by step through the elements of holistic Security Protection Schemes. You will learn about the contributions of product suppliers, service providers and asset owners in each phase of the life cycle of an operating facility.

 

 

Agenda


 Day 1 (25/03/2026) Day 2 (26/03/2026)

 08:45

Registration / Coffee 08:30

Wrap-up

Summary of day 1
Analysis of a threat scenario

 09:00

Introduction

Overview of ISA-99 and IEC 62443
Exercise on a hacking demo		 09:15

IEC 62443-3-3, IEC 62443-4-2

System security requirements to products and automation solutions and IACS
Technical security requirements to IACS components

 10:00

Basic concepts of IEC 62443

What constitutes an IACS
Roles and responsibilities
Defense-in-depth
Elements of a security program
IACS lifecycles and product lifecycles
Risk-based approach
Security Levels and Maturity Levels
Security Protection Ratings (SPR)

 10:15Break
 11:30Lunch 10:30

Deep dive in IEC 62443-3-2

Risk-based approach for system partitioning in zones and conduits

 12:15Basic concepts of IEC 62443 (continued) 11:30Lunch
 13:45Break 12:15

IEC 62443-2-4

Duties of system integrators and maintenance service providers

 14:00Basic concepts of IEC 62443 (continued) 13:00

Activities in the lifecycle of Security Protection Schemes

Cybersecurity Requirement Specification
Design and implementation of technical security measures
Use of SPR during design and implementation
Initial validation of technical and organizational security measures
Operation of a Security Protection Scheme
Periodic revalidation of a Security Protection Scheme
Update and maintenance of a Security Protection Scheme
Use of SPR during operation and maintenance
 14:30

IEC 62443-2-1

Duties of asset owners
Security Program (SP) and Security Protection Schemes (SPS)
Security Program Elements

 13:45 Break
 15:30 Break 14:00Activities in the lifecycle of Security Protection Schemes (continued)
 15:45

Combining ISO/ IEC 27001 and IEC 62443

Combining IT and OT security requirements for the protection of operating facilities
Grouping of security requirements

 15:00

Simplified use of Security Protection Ratings

Use of views in specification phase
Use of views in integration / commissioning phase
Use of views in operation / maintenance phase

 16:30

IEC 62443-4-1

Secure product development lifecycle requirements
Duties of products suppliers for the protection of operating facilities

 15:20 Final discussion
 17:15 Final discussion 15:30 End of Day 2
 17:30 End of Day 1  

 

 

Information

Date:
25 Mar 2026 - 27 Mar 2026