IEC 62443 工控資安認證工程師訓練課程– IEC 62443 IACS Cybersecurity Certified Engineer Training Course

近年來高科技產業資安事件頻傳,在工業務聯網(IIoT )發展下,潛在的網路攻擊的危險越來越多。因此企業除了資訊安全(IT Security – Information Technology Security ),為了降低工業通訊網路存在風險,企業也需要OT Security ( Operational Technology)納入考量,而IEC 62443標準是可以提供結構性方法,讓工控產品專案開發有明確且安全開發過程,以符合各行業最佳安全安求。
0.0
(0)
18 hours

About Course

Dates Price Early Bird
平日班 2025/3/25~28 NT 60,000 NT 45,000
平日班 2025/6/24~27 NT 60,000 NT 45,000

Course Info

天數:4 天  (前三天上課,最後一天考試)
費用:$60,000
早鳥優惠價:$45,000
點數:15
講師:陳德欽老師TUV NORD Taiwan 北德工業服務部 : 資深技術經理 林正偉先生

Features

講師背景:

台灣唯一同時具有全方位工控安全與車用資安多項國際資格,也是唯一擁有軟體、硬體研發技術與產品開發能力之評鑑師,多次參與經濟部/科技部資訊安全法規專案與國營事業稽核,協助海內外多家上市公司達成工業國際與車廠法規要求。

擁有合格:

  • IEC 62443 稽核員
  • TISAX  稽核員
  • ISO 27001  稽核員
  • ISO 21434  稽核師/評鑑師
  • Competent Assessor for Automotive SPICE (台灣第一位獨立簽核評鑑師)
  • Functional Safety Certified Automotive Engineer (FSCAE)

Course

時間

Course

『第一天』

TOPIC-1

Basic
introduction of IEC 62443 Standards
(including Cyber Security Certifications in a National / European /
International Environment)

TOPIC-2

Basic
introduction of IEC 62443 Conformity Assessment Schemes
(including IECEE Scheme)

TOPIC-3

Basic
introduction of IEC System of Conformity Assessment Schemes for
Electrotechnical Equipment and Components (IECEE System)
Part I: Industrial Cyber Security Program
Part II: CB Scheme Test Certificates

TOPIC-4

General
assessment process for IEC 62443
– For IEC 62443-2-4
– For IEC 62443-4-1
– For IEC 62443-3-3 and IEC 62443-4-2

TOPIC-5

IEC
62443 in the future
– Concept of protection level
– Concept of profile
– Standard release in the future

『第二天』

TOPIC-1

Standard
introduction of IEC 62443-2-1
– Initiate CSMS Program
– High-level Risk Assessment
– Detailed Risk Assessment
– Establish policy, organization and awareness
– Select and implement countermeasures
– Maintain the CSMS
(including relationship between IEC 62443-2-1 and ISO/IEC 27001)
(including relationship between IEC 62443-2-1 and IEC 62443-3-2)

TOPIC-2

Standard
introduction of IEC 62443-2-4
– Functional Area: Solution staffing
– Functional Area: Assurance
– Functional Area: Architecture
– Functional Area: Wireless
– Functional Area: SIS
– Functional Area: Configuration management
– Functional Area: Remote access
– Functional Area: Event management
– Functional Area: Account management
– Functional Area: Malware protection
– Functional Area: Patch Management
– Functional Area: Backup/Restore
(including relationship between IEC 62443-2-4 and IEC 62443-3-2)

『第三天』

TOPIC-1

Standard
introduction of IEC 62443-4-1
– Security Management
– Specification of security Requirements
– Secure by Design
– Secure Implementation
– Security Verification and Validation testing
– Management of security-related issues
– Security Update Management
– Security Guidelines
(including relationship between IEC 62443-4-1, IEC 62443-3-3 and IEC
62443-4-2)
(including relationship between IEC 62443-4-1 and IEC 62443-3-2)
(including relationship between IEC 62443-4-1 and ISO/SAE 21434)

TOPIC-2

Standard
introduction of IEC 62443-3-3:2013 and IEC 62443-4-2
– Common constraints (for system/Component)
– FR1: Identification and authentication control (IAC)
– FR2: Use Control
– FR3: System integrity
– FR4: Data confidentiality
– FR5: Restricted data flow
– FR6: Timely response to events
– FR7: Resource availability

『第四天』

 

Exam
Duration: 9:30 – 12:30 (3 hours)

Exam Information

Ø 考卷為中英文對照 (Open Book)
Ø 題型分類有是非題、選擇與簡答

TUV 國際驗證公司核發的結業證書樣本

Show More

Material Includes

  • TUV NORD 教材

Audience

  • 公司工業控制與工業務聯網物事業部及專案主管
  • 採購主管
  • 品保主管
  • 品管主管
  • 供應商管理過程管理者
  • 供應商審核員與各部門相關作業人員
  • 希望取得IEC 62443的業者

Course Content

Instructors

陳 德欽 TC

陳 德欽 TC

資訊安全課程講師及專業顧問
0.0
0 Student
7 Courses

TC老師通過了一系列國際認可的資訊安全和管理課程,包括ISO/IEC 27001資訊安全管理系統和ISO/IEC 27701隱私資訊管理系統的主任審核員(LA)課程,CISM國際資訊安全經理人和CISA國際電腦稽核師認證,以及IEC 62443工控資安認證工程師訓練等。此外,TC老師還獲得了CGEIT國際企業資訊治理師、CRISC國際資訊風險控制師等重要資格認證。

目前,作為資訊安全課程講師及專業顧問,TC老師致力於分享知識和經驗,幫助企業和個人提升他們的資訊安全能力。教學方法不僅涵蓋理論知識,更強調實務操作和案例分析,以確保學員能夠在真實環境中應用所學,有效提升解決問題的能力。

AIN 全智網

AIN Lecturer

Cybersecurity and Network Course Expert
4.4
0 Student
109 Courses

Cybersecurity and Network Course Expert, an international training consultancy specializing in networking, cybersecurity, and artificial intelligence.

No Review Yet
No Review Yet