Over four days the course covers IACS fundamentals and networks, system security requirements and maturity models, establishing the industrial security programme, and incident response. Each block is anchored in a continuous case study.
Day 1 establishes the foundations: terminology, scope, key concepts, and IACS network architecture. Day 2 addresses system security requirements, maturity models, security levels, the threat landscape, access control, the supply chain, audits, and patch management.
Day 3 focuses on establishing and managing the security programme: risk assessment, policy development, and the IACS organisation. Day 4 works through internal training, incident response, security testing, monitoring, and other relevant sector standards. Each block combines structured explanation with hands-on exercises built on a continuous case study.
The sequence follows the real life cycle of an IACS security programme rather than the structure of the normative document, so participants leave able to plan and run a programme end to end rather than simply cite the parts of the standard.
Day 2 is usually where the biggest shift in perspective happens: once participants see how security levels and maturity models interact with operational reality, control decisions start to make sense.
“The four days follow the real life cycle of an IACS programme, not the structure of the standard document.”
This course develops the competence to plan, implement, manage, monitor, and maintain network security using ISO/IEC 27033:2015 guidance, including secure network design and communications protection.
View courseThis Lead Cybersecurity Manager training prepares professionals to design, implement, and manage a cybersecurity program that stands up to real threats, regulatory scrutiny, and executive oversight.
View courseThis four-day training develops the capability to assess risk in SCADA and broader Industrial Control Systems (ICS) environments and translate that risk into a practical protection program.
View courseThe ISA/IEC 62443 Lead Implementer training is designed for professionals responsible for implementing or managing industrial cybersecurity programs in OT and IACS environments.
The ISA/IEC 62443 Lead Implementer certification validates the ability to design, implement, and manage an industrial cybersecurity program aligned with the ISA/IEC 62443 standards. It focuses on securing industrial automation and control systems while maintaining safety and operational availability.
ISA/IEC 62443 Lead Implementer training is specifically designed for industrial environments, addressing OT constraints such as safety, legacy systems, and limited downtime, unlike general IT cybersecurity courses.
The exam is multiple choice, lasts three hours, and requires 70% to pass. It covers two domains: the fundamental principles and concepts of industrial automation and control systems, and applying the ISA/IEC 62443 standards for availability, resilience, and critical infrastructure protection.
Browse all FAQs →
Full knowledge base
Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.