Effective loss prevention requires identifying risks in both process safety and cybersecurity. OT cybersecurity risk assessments follow standards/guidance like IEC 62443-3-2, and UK HSE’s OG-0086 with Process Safety handled by mostly by IEC 61511. For organizations adhering to IEC 61511, it is a requirement under Clause 8.2.4 to perform a security risk assessment, while in parallel, OG-0086 requires evaluating cyber resilience in Major Accident Hazard scenarios and Loss of Essential Services. Methodologies vary, but all must address worst-case consequences, threat likelihood, and control effectiveness. A sound assessment ensures regulatory compliance, aligns with best practices, and supports informed risk management decisions.
Join Dwane Shelton in this Webinar as he goes through the specific parts of IEC 62443 involved in Risk Assessments as well and interconnectivity with the HSE’s UK OG-0086
Key Takeaways:
- What are the standards and guidelines telling us?
- What is actually happening in industry?
- The Security Risk Equation and the likelihood of a successful attack
- Practical example of a High and Detailed level Risk Assessment inline with IEC 62443-3-2 and UK OG-0086
Dwane Shelton, CFSP, CACS, ILP, is a Senior Safety, Cybersecurity & Alarm Engineer at exida IRL Ltd with over 15 years of operational experience across the medical device, life sciences, power, oil and gas, and automotive industries. He specializes in functional safety, OT cybersecurity, and alarm management, delivering gap assessments, risk assessments, SIL/PL analysis, and compliance with key international standards including IEC 62061, ISO 13849, IEC 61511, IEC 62443, and ISA 18.2/IEC 62682.