IEC 62443 工控資安認證工程師訓練課程 IEC 62443 IACS Cybersecurity Certified Engineer Training Course.
2024/07/05
課程系列 地區 課程時數 開課日期 上課時間 會員費用 非會員費用
其他 台北 18 hr 2024.08.27 - 2024.08.30 10:00~17:00 45,000 50,000
課程介紹:

近年來高科技產業資安事件頻傳,在工業務聯網(IIoT )發展下, 潛在的網路攻擊的危險越來越多。因此企業除了資訊安全(IT Security - Information Technology Security ), 為了降低工業通訊網路存在風險, 企業也需要OT Security ( Operational Technology)納入考量, 而IEC 62443標準是可以提供結構性方法,讓工控產品專案開發有明確且安全開發過程,以符合各行業最佳安全安求。

課程特色:

本課程的目的是為學員提供IEC 62443品質管理系統知識和執行審核所需的技能。具體而言,訓練課程會為學生提供了基礎,成為一個稱職的系統維護及流程應用與開發的角色。

課程大綱:

時間

課程內容

 

第一天

 

 

TOPIC-1

Basic introduction of IEC 62443 Standards
(including Cyber Security Certifications in a National / European / International Environment)

 

TOPIC-2

Basic introduction of IEC 62443 Conformity Assessment Schemes
(including ISASecure and IECEE Scheme)

 

TOPIC-3

Basic introduction of IEC System of Conformity Assessment Schemes for Electrotechnical Equipment and Components (IECEE System)
Part I: Industrial Cyber Security Program
Part II: CB Scheme Test Certificates

 

TOPIC-4

General assessment process for IEC 62443
- For IEC 62443-2-4
- For IEC 62443-4-1
- For IEC 62443-3-3 and IEC 62443-4-2

 

TOPIC-5

IEC 62443 in the future
- Concept of protection level
- Concept of profile
- Standard release in the future

 

第二天

 

 

TOPIC-1

Standard introduction of IEC 62443-2-1:2010
- Initiate CSMS Program
- High-level Risk Assessment
- Detailed Risk Assessment
- Establish policy, organization and awareness
- Select and implement countermeasures
- Maintain the CSMS
(including relationship between IEC 62443-2-1 and ISO/IEC 27001)
(including relationship between IEC 62443-2-1 and IEC 62443-3-2)

 

TOPIC-2

Further discussion of IEC 62443-2-1:2019 (Draft)
(including relationship between IEC 62443-2-1 to IEC 62443-2-4, IEC 62443-3-3, IEC 62443-4-2)

 

TOPIC-3

Standard introduction of IEC 62443-2-4:2015
- Functional Area: Solution staffing
- Functional Area: Assurance
- Functional Area: Architecture
- Functional Area: Wireless
- Functional Area: SIS
- Functional Area: Configuration management
- Functional Area: Remote access
- Functional Area: Event management
- Functional Area: Account management
- Functional Area: Malware protection
- Functional Area: Patch Management
- Functional Area: Backup/Restore
(including relationship between IEC 62443-2-4 and IEC 62443-3-2)

 

第三天

 

 

TOPIC-1

Standard introduction of IEC 62443-4-1:2018
- Security Management
- Specification of security Requirements
- Secure by Design
- Secure Implementation
- Security Verification and Validation testing
- Management of security-related issues
- Security Update Management
- Security Guidelines
(including relationship between IEC 62443-4-1, IEC 62443-3-3 and IEC 62443-4-2)
(including relationship between IEC 62443-4-1 and IEC 62443-3-2)
(including relationship between IEC 62443-4-1 and ISO/SAE 21434)

 

TOPIC-2

Standard introduction of IEC 62443-3-3:2013 and IEC 62443-4-2:2019
- Common constraints (for system/Component)
- FR1: Identification and authentication control (IAC)
- FR2: Use Control
- FR3: System integrity
- FR4: Data confidentiality 
- FR5: Restricted data flow
- FR6: Timely response to events
- FR7: Resource availability

 

 

第四天

Exam
Duration: 13:30 - 16:30 (3 hours)

招生對象:

公司工業控制與工業務聯網物事業部及專案主管、採購主管、品保主管,品管主管,供應商管理過程管理者、供應商審核員與各部門相關作業人員,以及希望取得IEC 62443的業者。

開課資訊:

上課時間:10:00~17:00 ,午休1小時

上課地點:台北市松山區復興北路57號 1 樓
(
主辦單位保留變更之權益)

講師:

陳德欽 TC 老師

 

TC老師通過了一系列國際認可的資訊安全和管理課程,包括ISO/IEC 27001資訊安全管理系統和ISO/IEC 27701隱私資訊管理系統的主任審核員(LA)課程,CISM國際資訊安全經理人和CISA國際電腦稽核師認證,以及IEC 62443工控資安認證工程師訓練等。此外,TC老師還獲得了CGEIT國際企業資訊治理師、CRISC國際資訊風險控制師等重要資格認證。

 

目前,作為資訊安全課程講師及專業顧問,TC老師致力於分享知識和經驗,幫助企業和個人提升他們的資訊安全能力。教學方法不僅涵蓋理論知識,更強調實務操作和案例分析,以確保學員能夠在真實環境中應用所學,有效提升解決問題的能力。

證書:

本課程測驗合格者, 將核發TUV NORD人員認證合格證書

報名方式:

此課程為TUV NORD與AIN全智網聯合開課,

→ 請點選此連結進行報名: 報名連結

 

聯繫窗口:

AI Network Training Ltd. 全智網科技股份有限公司

02-2771-5523

service@ainetwork-training.com

備註:

主辦單位保有最終修改、變更、活動解釋及取消本活動之權利。