Safety and security integration for the production industry under the resilience matrix

Abstract

Plant Owners must protect a legal requirement that specifies the occupational health and system safety of people in the workplace. Furthermore, it is essential to continue to maintain a safer production site together. Industrial control systems (ICS) are connected to the internet for purposes such as information exchange and data analysis for business-oriented operations and labour saving remote maintenance. ICS is also subject to cyber-attacks as a result of using commercial IT equipment, PC, OS to connect to the internet. In this situation, each manufacturer is charged to identify hazards related to the cyber-security as well as the employee’s safety. The term “Cyber-Security” in the production field refers to the risk created by cyber-attacks to the ICS. There is a practical need to adopt global standards for safety and security systematically as a baseline for protecting production environment. Before integrating safety and security standards simultaneously, it is necessary to analyze both specified processes shown, in the clauses of the standard documents. In this paper, the authors would like to discuss a method for implementing IEC 62443 (internationally applied standard for the Owner and operation industrial management security) systematically to integrate into the corporate’s safety protection profile specified by OHSAS: 18001.