Hooray! We are proud Yokogawa’s Cybersecurity Consultant Mark Hellinghuizer passed all ISA/IEC 62443 exams this summer. With this, he has reached the desired Cybersecurity Expert status. An excellent reason to ask Mark a few questions about this!
Yokogawa stimulates cybersecurity training programs
As part of Yokogawa’s ongoing efforts to meet its customers’ growing need to secure industrial control systems, Yokogawa encourages the cybersecurity team to continue its development. For example, by following the ISA99 Industrial Automation and Control Systems Security certification program of the ISA standardisation organisation. The program is specially designed for professionals involved in IT and control system security roles. ISA/IEC 62443 cybersecurity certificates are awarded to those who successfully complete the training program and pass the exams.
Interview with Cybersecurity Expert Mark Hellinghuizer
Mark, how did you achieve this cybersecurity expert status?
‘I followed all 4 training courses online last summer, which I found more practical than the classroom training courses. That meant that I watched 3 days of videos per certificate and took in knowledge. Then I learned 2 extra days after which I took the exams that I passed all four at once. So it took me roughly 22 days’.
Tell us, how special is this?
‘A lot of cybersecurity specialists work for Yokogawa, so I don’t know exactly, but I do know that the combination I have with CISSP and GISCP is quite unique! I have to say that I found CISSP to be the hottest of all the cybersecurity courses I’ve taken. There you really have to acquire knowledge of many different parts, from legislation, security management to fire protection’.
How do you maintain this cybersecurity expert status?
‘As a cybersecurity expert, you never stand still, of course, just like the hackers who keep coming up with new ways to start a cyber attack. The advantage of a training program is that if you want to retain your certificates, your knowledge must be up to date. I collect points for this throughout the year. By attending training courses, reading books, and attending webinars or events’.
What are the advantages for Yokogawa’s customers having this knowledge?
‘As a security- or plant manager, you naturally want a safe plant that is protected against cyber attacks by hackers. After all, not only in IT but also in the OT, cybercrime is an increasing threat. The ISA/IEC 62443 has become an important standard in the industry to counter this threat. With the knowledge that I have now gathered together with our years of experience, we know even better what you need to do to properly secure a plant and raise your cybersecurity level so that your plant is protected against new security threats’.
Why are you a ‘fan’ of this ISA/IEC 62443 standard?
‘It provides clarity that our profession has a solid standard because that’s how we all speak the same language. That’s better for everyone. With the big advantage that you, as a client, are offered the best possible solution. This is reflected, for example, in the Yokogawa Cybersecurity Risk Assessment that the cybersecurity team co-developed on the basis of the ISA standard. We can carry out such an assessment much more efficiently for a client, after which you, as a plant or security manager, receive practical recommendations in a report about how your plant should ideally look and, of course, how you can keep your security up to date’.
About ISA, the standard for industrial automation
The International Society of Automation, is a leading global non-profit organization. The ISA sets standards for automation by helping 30,000 members solve complex technical problems and improve their leadership and career opportunities. Based in the United States, ISA develops standards, certifies industry professionals, provides education and training, publishes books and technical articles for automation professionals.