On February 23, 2017 the IEEE Houston Section is honored to have Mr. Edward Marszal, President and CEO of Kenexis. He will be presenting on “Leveraging PHA to Develop Requirements for Cyber-Security“. The seminar discussion is open from novice to advance audiences and is intended for education purposes.
Process plants need to be protected against physical consequences generated from cyber-attack. The starting point for developing a program for cyber-security is the assessment of the risk posed by cyber-attacks. This seminar will explain how existing methods for Process Hazards Analysis (PHA) of process industry plants can be expanded with an additional “cyber review”. The same way that definition of safety integrity levels (SIL) flow from HAZOP through LOPA to a safety instrumented system specifications, the definition of “security levels” as defined in ISA 99 (IEC 62443) can flow from the PHA through a “cyber review” to industrial control network specifications.
The seminar discussion includes analysis of the causes of safety incidents, the safeguards that prevent the causes from resulting in consequences, and the magnitude of the consequences that might result from the realization of these hazards. The discussion will include an example of a batch chemical reactor where a Hazards and Operability (HAZOP) study was assessed using a PHA cyber review in order to determine whether or not the facility was inherently cyber-safe, and if not, make cyber-safe recommendations and define IEC 62443 Security Level specifications.