In ISA/IEC 62443-2-1, the Cyber Security Management System (CSMS) includes multiple categories. One of these is “Addressing Risk”, which is composed of 4 element groups, as outlined in Figure 3 – CSMS Elements of the standard.
The 4 element groups under "Addressing Risk" are:
Risk analysis and management
Security policy, organization, and awareness
Selected security countermeasures
Personnel security
“The Addressing Risk category of the CSMS consists of four element groups: risk analysis and management, security policy and awareness, selected countermeasures, and personnel security.”
— ISA/IEC 62443-2-1:2010, Figure 3 and Clause 4.2.2
[References:, ISA/IEC 62443-2-1:2010 – Clause 4.2.2 and Figure 3, ISA/IEC 62443-1-1 – Supporting definitions, ===========, , , , ]
Submit