ISA/IEC 62443 Cybersecurity Maintenance Specialist (IC37) - Image 1

ISA/IEC 62443 Cybersecurity Maintenance Specialist (IC37)

3 Days
Flexible Learning

IACS Cybersecurity Operations & Maintenance (IC37) focuses on the activities associated with the ongoing operations and maintenance of IACS cybersecurity implemented in the Design & Implementation phase. This involves network diagnostics and troubleshooting, security monitoring and incident response, and maintenance of the implemented cybersecurity countermeasures. This phase also includes security management of change, backup and recovery procedures, and periodic cybersecurity audits. IC37 will provide students with the information and skills to detect and troubleshoot potential cybersecurity events as well as the skills to maintain the security level of an operating system throughout its lifecycle despite the challenges of an ever-changing threat environment.

This course is the fourth course in the ISA/IEC 62443 Cybersecurity Certificate Program. Successful completion of Using the ISA/IEC 62443 Standards to Secure Your Control Systems (IC32) and passing the ISA/IEC 62443 Cybersecurity Fundamentals Specialist certificate exam are mandatory prerequisites for this course.

Course registration includes exam fee. Pass the exams and earn the ISA/IEC 62443 Cybersecurity Maintenance Specialist designation. Individuals who successfully achieve Certificates 1, 2, 3 and 4 are automatically designated as an ISA/IEC 62443 Cybersecurity Expert.

Training Modes Available:
In-Person Classroom Face-to-face learning in a physical location for hands-on, direct interaction.
Virtual Classroom Live, scheduled sessions conducted via video call with a real-time instructor.
Instructor Guided Online A multi-week program for a group cohort. Includes self-paced modules plus scheduled weekly live group consultations and reviews. Structured like a online group tuition.
Self-Paced Modular 100% On-demand videos and study materials that you complete entirely on your own schedule
Training Schedule:
Standard Sessions 09:00 – 18:00
Evening Sessions (E) 18:00 – 21:00
Instructor Guided Online (G) Weekly 2-hour live online sessions (Times as listed in session date)
Special Dates (*) Classes held on Weekends, Public Holidays, or Eve of Public Holidays.

Price range: $0.00 through $5,536.00pax

Add to Cart
ISA/IEC 62443 Cybersecurity Maintenance Specialist (IC37)
ISA/IEC 62443 Cybersecurity Maintenance Specialist (IC37)
$0.00 $5,536.00Price range: $0.00 through $5,536.00pax
Overview

IACS Cybersecurity Operations & Maintenance (IC37) focuses on the activities associated with the ongoing operations and maintenance of IACS cybersecurity implemented in the Design & Implementation phase. This involves network diagnostics and troubleshooting, security monitoring and incident response, and maintenance of the implemented cybersecurity countermeasures. This phase also includes security management of change, backup and recovery procedures, and periodic cybersecurity audits. IC37 will provide students with the information and skills to detect and troubleshoot potential cybersecurity events as well as the skills to maintain the security level of an operating system throughout its lifecycle despite the challenges of an ever-changing threat environment.

This course is the fourth course in the ISA/IEC 62443 Cybersecurity Certificate Program. Successful completion of Using the ISA/IEC 62443 Standards to Secure Your Control Systems (IC32) and passing the ISA/IEC 62443 Cybersecurity Fundamentals Specialist certificate exam are mandatory prerequisites for this course.

Course registration includes exam fee. Pass the exams and earn the ISA/IEC 62443 Cybersecurity Maintenance Specialist designation. Individuals who successfully achieve Certificates 1, 2, 3 and 4 are automatically designated as an ISA/IEC 62443 Cybersecurity Expert.

Who Should Attend
  • Control systems engineers and managers
  • System integrators
  • IT Engineers and managers at industrial facilities
  • Plant managers
  • Plant safety and risk management
Curriculum
What you'll learn
  • Perform basic network diagnostics and troubleshooting
  • Interpret the results of IACS device diagnostic alarms and event logs
  • Implement IACS backup and restoration procedures
  • Describe the IACS patch management life cycle and procedure
  • Apply an antivirus management procedure
  • Define the basics of application control and white listing tools
  • Define the basics of network and host intrusion detection
  • Define the basics of security incident and event monitoring tools
  • Implement an incident response plan
  • Implement an IACS management of change procedure
  • Conduct a basic IACS cyber security audit
Topics Covered
  • Introduction to the ICS Cybersecurity Lifecycle
    • Identification & Assessment phase
    • Design & Implementation phase
    • Operations & Maintenance phase
  • Network Diagnostics and Troubleshooting
    • Interpreting device alarms and event logs
    • Early indicators
    • Network intrusion detection systems
    • Network management tools
  • Application Diagnostics and Troubleshooting
    • Interpreting OS and application alarms and event logs
    • Early indicators
    • Application management and whitelisting tools
    • Antivirus and endpoint protection tools
    • Security incident and event monitoring (SIEM) tools
  • IACS Cybersecurity Operating Procedures & Tools
    • Developing and following an IACS management of change procedure
    • Developing and following an IACS backup procedure
    • IACS configuration management tools
    • Developing and following an IACS patch management procedure
    • Patch management tools
    • Developing and following an IACS antivirus management procedure
    • Antivirus and whitelisting tools
    • Developing and following an IACS cybersecurity audit procedure
    • Auditing tools
  • IACS incident response
    • Developing and following an IACS incident response plan
    • Incident investigation
    • System recovery
What you’ll learn
  • Identify and document the scope of the IACS under assessment
  • Specify, gather or generate the cybersecurity information required to perform the assessment
  • Identify or discover cybersecurity vulnerabilities inherent in the IACS products or system design
  • Organize and facilitate a cybersecurity risk assessment for an IACS
  • Identify and evaluate realistic threat scenarios
  • Identify gaps in existing policies, procedures and standards
  • Establish and document security zones and conduits
  • Prepare documentation of assessment results
  • Interpret the results of an industrial control systems (ICS) cybersecurity risk assessment
  • Develop a cybersecurity requirements specification (CRS)
  • Develop a conceptual design based on information in a well-crafted CRS
  • Explain the security development lifecycle process and deliverables
  • Perform a basic firewall configuration and commissioning
  • Design a secure remote access solution
  • Develop system hardening specification
  • Implement a basic network intrusion detection system
  • Develop a cybersecurity acceptance test plan (CFAT/CSAT)
  • Perform a basic CFAT or CSAT
  • Perform basic network diagnostics and troubleshooting
  • Interpret the results of IACS device diagnostic alarms and event logs
  • Implement IACS backup and restoration procedures
  • Describe the IACS patch management lifecycle and procedure
  • Apply an antivirus management procedure
  • Define the basics of application control and whitelisting tools
  • Define the basics of network and host intrusion detection
  • Define the basics of security incident and event monitoring tools
  • Implement an incident response plan
  • Implement an IACS management of change procedure
  • Conduct a basic IACS cybersecurity audit
Topics Covered
  • Introduction to the ICS Cybersecurity Lifecycle
    • Identification and assessment phase
    • Design and implementation phase
    • Operations and maintenance phase
  • Preparing for an Assessment
    • Cybersecurity vulnerability assessment
    • Conducting vulnerability assessments
  • Cyber Risk Assessment
    • Conducting cyber risk assessments
    • Documentation and reporting
  • Conceptual Design Process
    • Interpreting risk assessment results
    • Cybersecurity requirements specifications
    • Developing a conceptual design
    • Conceptual design specification
  • Detailed Design Process
    • Security development lifecycle (SDL)
    • Types of technology
    • Selecting appropriate technology
    • Developing a detailed design
    • Documenting the design/specification
  • Design & Implementation Examples
    • Firewall design
    • Remote access design
    • System hardening design
    • Intrusion detection design
  • Testing
    • Developing test plans
    • Cybersecurity factory acceptance testing
    • Cybersecurity site acceptance testing
  • Network Diagnostics and Troubleshooting
    • Interpreting device alarms and event logs
    • Early indicators
    • Network intrusion detection systems
    • Network management tools
  • Application Diagnostics and Troubleshooting
    • Interpreting OS and application alarms and event logs
    • Early indicators
    • Application management and whitelisting tools
    • Antivirus and endpoint protection tools
    • Security incident and event monitoring (SIEM) tools
  • IACS Cybersecurity Operating Procedures and Tools
    • Developing and following an IACS management of change procedure
    • Developing and following an IACS backup procedure
    • IACS configuration management tools
    • Developing and following an IACS patch management procedure
    • Patch management tools
    • Developing and following an IACS antivirus management procedure
    • Antivirus and whitelisting tools
    • Developing and following an IACS cybersecurity audit procedure
    • Auditing tools
  • IACS Incident Response
    • Developing and following an IACS incident response plan
    • Incident investigation
    • System recovery 
Meet Your trainer
Tony Stark

Tony is a trainer and consultant in Industry 5.0, helping organisations embrace human–machine collaboration, sustainability, and workforce transformation. He delivers practical insights that make innovation accessible and actionable.

FAQ
Are the any pre-requisites for this course (IC37)?

Participants must have ISA/IEC 62443 Cybersecurity Fundamentals Specialist certificate (IC32).

How do I obtain the ISA/IEC 62443 Cybersecurity Fundamentals Specialist certificate (IC32)?

Please refer to here for more details.

I want to know more about the exams, trainer, location etc.
  • You will have a six-month window following the training to complete your online MCQ exam, which is administered by an external third party.
  • All sessions are led by ISA-authorized trainers, bringing world-class International Society of Automation standards directly to your learning experience.
  • Training location is at a Paya Lebar area, with easy access to MRT and a wide range of food options. Tea break and lunch are not provided.
  • A comprehensive Welcome Kit will be sent to you via email prior to the course start date. This includes the venue location, travel directions, safety guidelines, and trainer profiles. Any further questions can be addressed directly with the trainer during the sessions.
I do not meet the job experience nor the technical knowledge. What can I do?

We recommend you to take one of out introduction courses here. Do reach out to us if you need a course consultation.

What do I need to bring along for this course?

Please bring an official photo ID for exam verification, and a personal laptop (avoid company-issued devices due to potential security restrictions).

What certification will I receive upon completion?

You will receive two levels of recognition:

  1. Alvernex Certificate of Completion: Awarded immediately to recognize your training hours and participation.

  2. ISA/IEC 62443 Cybersecurity Certificates: Upon passing the third-party exams, you will earn this prestigious, globally recognized credential. It is the definitive proof of your competency and is publicly searchable on the official ISA registry here.

What support is available for Alvernex Alumni?

We are committed to your long-term success. As an Alumnus, you gain access to:

  • Complimentary Coaching: A one-hour session for career strategy or to experience professional coaching firsthand.

  • Exclusive Community: Access to our private Telegram group for the latest technical news, job leads, and industry networking opportunities.

Is there any funding available?

There is no funding available at the moment, however, we are working towards being a SSG recognised RTP. Register your interest and we will notify you should this course be eligible for funding.

Are there Instalment plans available?

Some credit card offers interest-free instalment plans. Please check with your credit card company if there are additional fees.

What happens when the minimum class size is not met?

Should the class be unable to meet the minimum class size of 8 pax, we will place you in the rescheduled class. We will inform you latest two weeks before the scheduled date.

I have paid, but is unable to make it for the class.

For refunds, please see our Cancellation Policy here.

Alternatively, replacement attendees are permitted, provided they meet the specific prerequisites for the course. Replacement requests must be submitted at least 5 business days before the class commence.

A administrative fee of 10% of course fee applies.

Where can I find all your policies?

Please refer to our policy page here.