Security Compass Partners with International Society of Automation

August 31, 2021 Security Compass

Security Compass partners with ISA to Further the Adoption of Security Standards for Industrial Automation and Control Systems

Leader in Balanced Development Automation will incorporate ISASecure standards within SD Elements and contribute expertise to ISA Security Compliance Institute as a voting technical member

Toronto -- August 31, 2021 -- Security Compass, developer of the industry’s first Balanced Development Automation (BDA) platform, today announced a partnership with the International Society of Automation (ISA). In collaboration with ISA, Security Compass is incorporating ISASecure® standards and guidelines into the SD Elements platform used by software development and engineering teams to automate and streamline achieving and verifying compliance with security standards and requirements. Security Compass has also joined the ISA Security Compliance Institute as a voting technical member, the first cybersecurity software company to join and contribute expertise on the development of security standards for industrial automation and control systems.

Security Compass is incorporating ISASecure specifications for the ISA/IEC 62443 standards, particularly the Component Security Assurance and System Security Assurance guidelines, into SD Elements to expand adoption of these standards in manufacturing and critical infrastructure operations. The ISASecure Certification Program was the first standards-based program for control systems and the first to offer certifications for ISA/IEC 62443, the world’s only consensus-based series of industrial cybersecurity standards. An ISASecure certification means devices and systems conform to the ISA/IEC 62443 consensus standards and will maintain and improve their cybersecurity capabilities throughout their lifecycle. 

“Security Compass is pleased to collaborate with ISCI to support manufacturers in improving cybersecurity as they look to invest in digital initiatives across production facilities and the supply network,” said Trevor Young, Chief Product Officer, Security Compass. “Our flagship product, SD Elements, uses automation to keep organizations agile and proactive in meeting security and compliance requirements by integrating compliance testing and verification early in the product development life cycle.”

The partnership with ISA means Security Compass SD Elements will soon enable industrial control systems developers and engineers to leverage automation to:  
Achieve ISASecure certification quickly and efficiently
Simplify the process of identifying, translating, tracking, disseminating, and managing security and privacy requirements
Embed security, privacy, and compliance with standards and regulations into applications, firmware, drivers, devices, and embedded systems from the early stages of software development

To better understand how SD Elements enables organizations to improve product security and achieve the coveted ISASecure Secure Development Lifecycle Assurance Certification, see the Johnson Controls case study.

Andre Ristaino, Managing Director at ISA in charge of the Automation Standards Compliance Institute and Director of the ISA Global Cybersecurity Alliance, adds, “We are excited to welcome Security Compass, a leading provider of cybersecurity automation solutions, as the first cybersecurity development platform company to become a Technical Member of the ISA Security Compliance Institute. We applaud their commitment to protecting manufacturers, critical infrastructure providers, and their customers from security vulnerabilities. This is a key step towards institutionalizing the ISA/IEC 62443 standards into suppliers’ security development lifecycle; and an example of elevating cybersecurity from a ‘black art’ into an engineering discipline.”

Previous Article
Security Compass Releases Research Report: The State of Cloud Adoption in 2021
Security Compass Releases Research Report: The State of Cloud Adoption in 2021

Next Article
IoT legislation device manufacturers need to know about
IoT legislation device manufacturers need to know about

To avoid penalties and meet government agency requirements, IoT device manufacturers must adhere to new sta...