Evolution of cyber security within tank terminals

European legislation

The European Union introduced legislation (the NIS directive) that became active on November 9, 2018. The goal of the Network and Information Security (NIS) directive 2016/1148 is to boost the overall security in the EU, with a focus on increasing the security level of organisations involved in critical infrastructure.

Local legislation

Based on the NIS directive 2016/1148, each EU member state has introduced local legislation that implements the directive into local law. This implies that organisations that must adhere to the legislation, must implement cyber security measures within their organisation. The international cyber security standard IEC 62443 can provide the framework to implement cyber security within the Industrial Automation and Control Systems (IACS) domain.

Framework for development and implementation

Within the IEC 62443, the standard IEC 62443 2-1 provides the framework for the development and implementation of a Cyber Security Management System (CSMS) in order to integrate cyber security within a tank terminal organisation. Hudson Cybertec has thorough experience supporting organisations with the development and implementation of a CSMS. The management system is tailored to each organisation’s specific requirements.

Zero-measurement

In order to implement a CSMS it is important to know where the organisation stands at this moment regarding cyber security. Therefore, we advise to start with a zero-measurement security assessment. This gives the organisation a clear view of what its weaknesses are and allows it to define and focus on those aspects of cyber security that need to be remediated first. In addition, it allows the organisation to identify so called ‘quick wins’ that can be easily implemented without too much effort.

IEC

Structured approach

The development and implementation of a CSMS can take several years depending on different factors. Such an implementation requires a structured approach. To ensure the success of the development and implementation of the CSMS, organisations often ask Hudson Cybertec for help. We provide everything from ad-hoc support to an organization on one end to a full-service package where we provide a COSO who will manage the development and implementation of a CSMS. Once a CSMS is established, it needs to be maintained in order to be effective.

The implementation of a CSMS helps tank terminal organisations to manage, integrate and maintain cyber security and as such comply with current and future regulations and the organisation’s vision.

In the spotlight

Monitoring your OT environment is essential. You know what is happening on your network and see to what extent you are compliant with various cyber security standards and laws and regulations.

IEC 62443 Standard

The IEC 62443 standard offers your organization tools to improve the digital security and safety of your IACS environment. Implementation of the standard improves the cybersecurity level of your organization's OT / ICS / SCADA environment.

The IEC 62443 is the international cybersecurity standards framework for operational technology (OT). The framework consists of a collection of standards, technical reports and related information for securing Industrial Automation and Control Systems (IACS).

read more

Hudson Cybertec’s IEC 62443 Competence Center has extensive experience with this standard. We play an active role in the development of the standard, actively promote it internationally and have developed a training program around the IEC 62443.

read more

It is becoming increasingly important for organizations to be able to demonstrate that the digital security of the OT environment is in accordance with standards frameworks. It is therefore possible to certify (parts of) your IACS environment according to IEC 62443.

read more

If you want to know more about this standard and need training on how to apply it within your own organization or at your clients, Hudson Cybertec has a number of very interesting training courses for you.

read more

The IEC 62443 standard provides organizations with tools to improve the digital security and safety of OT / ICS / SCADA environments.

read more

How digitally safe is your organization?

Curious about the possibilities? Please contact us!

Contact us

Newsletter

Sign up for our newsletter. We will keep you posted on the latest developments in our cybersecurity services.

  • This field is for validation purposes and should be left unchanged.