Industrial Cybersecurity: Case Studies and Best Practices This book provides a practical overview of industrial control systems cybersecurity from governance through design and implementation to operational support. It is for anyone involved in industrial control systems cybersecurity, including asset owners, vendors, system integrators, and consultants, regardless of their level of technical expertise. The term industrial control systems is very broad and, in this context, includes any system that is used to monitor or control physical equipment such as building control systems (e.g., heating, ventilation, and air conditioning systems), water treatment plant supervisory control and data acquisition (SCADA) systems, oil and gas distributed control systems (DCSs), and safety instrumented systems (SISs). The author explains each phase of the process of designing, implementing, and maintaining a successful cybersecurity system, as well as the underlying issues that must be addressed. He emphasizes that the key to success is support and participation from everyone—just like successful safety programs. Topics include: The differences between IT cybersecurity and industrial cybersecurity Creating effective policy for cybersecurity management How to manage cybersecurity risk through measurement Standardized design and vendor certification The pitfalls in managing cybersecurity during project delivery What we can learn from the safety culture Safeguarding operational support