June
2016
HYDROCARBON
ENGINEERING
54
standards such as IEC 62443, management, administration
and policy, and communications.
Complimentary to cyber security, securing assets and
people via physical safety and security solutions, the
inclusion of CCTV/video surveillance, access control
and analytics is essential. A foundation for security must
include both cyber and physical elements to best
protect the process control environment. Adopting an
appropriate risk framework (which includes technology,
process and people) allows plant owners to better:
n
n
Implement and maintain security controls.
n
n
Manage cyber security risk.
n
n
Manage secure remote access to the process control
network.
n
n
Support security compliance.
n
n
Integrate third party support, contractors and
remote engineers.
n
n
Manage physical safety and security.
End operators are not only looking for technology
vendors to provide technical solutions to help with the
security challenge, but to work with them in partnership
to help provide a cohesive security lifecycle
management service. Cisco’s Secure Ops
3
is a managed
service where the company actively monitors, manages
and responds to security incidents for operational
domains in conjunction with the customer. Working
with an oil and gas major, starting in the refining
environments, the company delivered against the
customer goals of industrial control system (ICS)
equipment procured, designed, deployed, standardised
and maintained against one set of requirements, with all
projects/assets reporting compliance centrally within a
year. Essential to this process was zero unplanned
disruptions to operations, zero impact to product or
brand due to cyber incidents, and zero health, safety,
security and environment (HSSE) incidents. The outcome
was increased business agility and risk awareness, a
lower cost of operations and reduced downtime, and,
importantly, the ICS operational and security
compliance goals were achieved.
Security must be embedded into the architecture for
the plant environment – it cannot be bolted on. The
company’s designs and lifecycle approach are built
around ISA99/IEC 62443 and the NIST cyber security
framework to ensure technology, people, process and
partners are brought together in an integrated way to
deliver compliance for customers.
Replicable and reliable solutions
In an industry focused on safety and reliability,
customers look to deploy proven technologies, or new
technologies, into a proven infrastructure, then leverage
these blueprint deployments across multiple facilities in
a consistent way. A key component of Cisco’s partnering
strategy is to build, test and validate technology as
solutions, not just a series of devices, and provide best
practice guidelines for deployment through the
company's validated designs and reference documents.
These programs have effectively integrated workflow,
optical sensing, multiple wireless instrumentation and
sensing devices, remote expert, collaboration, video and
security into a set of actionable use cases for the plant.
In addition, joint development of unified industrial
wireless solutions with Honeywell and Emerson has seen
the creation of access points that provide both
operational and multi-service use cases in a single
ruggedised device.
Conclusion
Through the deployment of new technologies in a
securely architected way that directly aligned to
business processes and goals, plant operators realised a
number of benefits:
n
n
Real time access to new data sources in a consistent
and easily consumable way provides powerful
visibility into every aspect of the refinery operation,
leading to faster decision making based on real time
information and key performance indicator (KPI)
dashboards for rich data visualisation.
n
n
Predictive diagnostics and analytics for proactive
maintenance delivers better asset utilisation, less
non-productive time (NPT) or downtime and higher
staff wrench time.
n
n
Worker mobility and wireless data access improves
turnaround time and lowers costs through greater
efficiency and access to expertise irrespective of
location.
n
n
Pervasive, accurate location-based services and
tracking increases safety for personnel and property,
and decreases NPT by providing easier access to
correct machinery and assets.
n
n
Standardised blueprint and open standard
architectures for wired and wireless infrastructure
enables the flexible implementation of advanced
applications and reduces the time needed to deploy
devices. This leads to better management of
resources and assets, enabling application mobility
over the wireless network and simplified
administration.
n
n
Both cyber and physical security deliver greater
regulatory and security compliance, enhancing the
physical safety of personnel.
Now that the technology that can deliver on
operational and process efficiencies exists, it is time to
deliver the next generation of digital plants. However,
to take advantage of technology opportunities and
realise these improvements, key business processes
must be automated and backed by a foundation that
connects people, processes, data and things, turning big
data into actionable data the plant can truly benefit
from.
References
1. BOOZ, et al., (2009) –
&
q=&esrc=s&source=web&cd=4&cad=rja&uact=8&ved=0ahUK
EwiGq5iUpOjLAhWBkSwKHYvnAFkQFggxMAM&url=http%3A%
2F%2Fwww.strategyand.pwc.com%2Fmedia%2Ffile%2FBeat_
the_Clock.pdf&usg=AFQjCNE2obwPTQqPzqilBR6FHj2PhO3oqw
&sig2=zxdT3KNDeEwkeWlNg9aU3g.
2.
/
energy/docs/OilGasDigitalTransformationWhitePaper.pdf.
3. Cisco Secure Ops –
/
collateral/enterprise-networks/secure-ops-solution/case-
study-c36-732859.html.
