Security for industrial automation and control systems — Part 2-4: Security program requirements for IACS service providers
(IEC 62443-2-4:2023, IDT)
This part of IEC 62443 specifies a comprehensive set of requirements for security-related processes that IACS service providers can offer to the asset owner during integration and maintenance activities of an Automation Solution. Because not all requirements apply to all
industry groups and organizations, Subclause 4.1.4 provides for the development of "profiles" that allow for the subsetting of these requirements. Profiles are used to adapt this document to
specific environments, including environments not based on an IACS.
