In this module you will learn the difference between standards and regulations and which are the main ones industrial companies are due or advised to apply in each case.
LEARNING OUTCOMES:
- You will learn the difference between a directive, a standard and a regulation
- You will learn about the Cyber Resilience Act
- You will be able to understand why regulation is necessary and which is its impact
- You will learn the main standards and regulations applied on cybersecurity in OT environments
- You will learn what pentesting is and which are the most common vulnerabilities found when executed
TOPICS:
Standards and regulations, CRA, RED-DA, IEC 62443, cybersecurity evaluation, types of tests
Curriculum
- 7 Sections
- 21 Lessons
- Lifetime
Expand all sectionsCollapse all sections
- CHAPTER 1. WHAT IS THE DIFFERENCE BETWEEN DIRECTIVE, REGULATION AND STANDARD?(estimated time: 3 minutes)1
- CHAPTER 2. CYBER RESILIENCE ACT (CRA)(estimated time: 50-60 minutes)9
- 2.1Section 1. Regulatory background and framework10 Minutes
- 2.2Section 2. Why is regulation necessary?3 Minutes
- 2.3Section 3. Impact of regulation5 Minutes
- 2.4Section 4. Timeline for the implementation of the CRA2 Minutes
- 2.5Section 5. The CRA and CE marking2 Minutes
- 2.6Section 6. Violations to the CRA, sanctions and corrective measures10 Minutes
- 2.7Section 7. Compliance process. Manufacturer classification, obligations and approval process20 Minutes
- 2.8Section 8. WHAT ACTIONS DOES THE CRA REQUIRE?1 Minute
- 2.9Section 9. Radio Equipment Directive (RED) and Cyber Resilience Act (CRA)3 Minutes
- CHAPTER 3. IEC 62443(estimated reading time: 30-40 minutes)4
- CHAPTER 4. Pentest(estimated reading time: 60 minutes)4
- CHAPTER 5. Communication Robustness Test (CRT)(estimated reading time: 30 minutes)1
- CHAPTER 6. Comparison between CRA and IEC-62443(estimated reading time: 3 minutes)1
- PRACTICAL ACTIVITY1
