Attention members: billing update happening now. Learn more.

ISAGCA Releases Position Paper on Automation Cybersecurity Requirements in Public Policy

  • August 10, 2021
  • Research Triangle Park, North Carolina

The ISA Global Cybersecurity Alliance (ISAGCA) announced the release of a position paper detailing the automation cybersecurity public policy views of the organization and its 50 industry-leading companies.

Recent discussions have surfaced in the United States and other world governments about how to best secure automation and control systems that affect our everyday lives, especially in critical infrastructure. US President Biden issued Executive Order 14028 on 12 May 2021, addressing securing automation in critical infrastructure; and the ISA Global Cybersecurity Alliance submitted a formal response.

ISAGCA and its member companies hope the executive order and other measures will encourage those who support the nation’s critical infrastructure to develop and implement automation cybersecurity capabilities to protect and secure technologies that impact our daily lives.

ISAGCA member companies and thought leaders have a long history of adopting a standards-based approach for securing automation products and operating sites based on the ISA/IEC 62443 series of international cybersecurity standards. The ISA/IEC 62443 standards and technical reports have been successfully applied to a wide variety of industry sectors, including process industries such as chemicals and oil & gas, building automation, electric power generation and distribution, medical devices, and transportation.

“It is critically important for legislators and regulators to recognize the urgent need for a unified response to this threat,” said ISA Global Cybersecurity Alliance Managing Director Andre Ristaino. “Standard definitions and a common language for asset owners, product suppliers, and all other control system stakeholders is necessary to simplify procurement and enable companies to comply with any regulatory efforts. A fully developed ISA/IEC 62443 ecosystem enables facilities and operations across many different industries to achieve industrial control systems and automation cybersecurity.”

ISAGCA continues to work with state and federal legislators, regulators, and other standards bodies to ensure that the ISA/IEC 62443 standards are included as the reference standards for establishing IACS cybersecurity metrics in automation that affects our everyday lives. This position paper describes the public policies and associated reference standards supported by ISAGCA.

You can download the position paper here.

The ISA Global Cybersecurity Alliance (ISAGCA) is a collaborative forum of member companies that aim to advance cybersecurity awareness, education, readiness, and knowledge sharing industry-wide, on a global scale. The alliance’s objectives include expanding the development and use of the ISA/IEC 62443 series of standards, knowledge-sharing in an open environment, providing best practice tools to help companies secure their infrastructure, creating education and certification programs, and advocating for cybersecurity awareness and sensible approaches with world governments and regulatory bodies.

About ISAGCA Members
The ISA Global Cybersecurity Alliance is made up of 50+ member companies, representing more than $1.5 trillion in aggregate revenue across more than 2,400 combined worldwide locations. Automation and cybersecurity provider members serve 31 different industries, underscoring the broad applicability of the ISA/IEC 62443 series of standards. Current members of ISAGCA include 1898 & Co. (Burns McDonnell), ACET Solutions, aeSolutions, Baserock IT Solutions, Bayshore, Carrier Global, Claroty, ConsoleWorks, Coontec, CyberOwl, CyPhy Defense, Deloitte, Digital Immunity, Dragos, Eaton, exida, Ford Motor Company, Fortinet, Honeywell, Idaho National Laboratory, Idaho State University, ISASecure, Johns Manville, Johnson Controls, KPMG, LOGIIC, Mission Secure, MT4 senhasegura, Munio Security, Nova Systems, Nozomi Networks, PAS, PETRONAS, Pfizer, Radiflow, Redacted, Red Trident, Rockwell Automation, Schneider Electric, Surge Engineering, TDI Technologies, Tenable, TI Safe, Tripwire, TXOne Networks, UL, Wallix, WINICSSEC, WisePlant, Xage Security, and Xylem. For more information about ISAGCA, visit