The National Institute of Standards and Technology is a US governmental institution (part of the US Department of Commerce). The NIST Cybersecurity Framework was initially published in 2014 (v1.0) and updated in 2018 (v1.1, current).
The first reported cyber-attack on a Safety Integrated System demonstrates that systems important to safety need cyber security measures to avoid their safety arguments being invalidated. But there is a broader justification: cyber security risks arise as a direct result of the nature of networked digital technology, which renders existing safety analysis inadequate to mitigate those risks.
Method is encouraging IT and OT Cyber Security teams to develop a common understanding of Cyber Security issues.
Mike StJohn-Green and Dil Wetherill are presenting a paper on Cyber Security at Hazards 29.
The effective management of Cyber Security for Industrial Control systems requires cooperation between an organisations IT and OT functions.
Organisations are connecting Operational Technology (ICS / IACS / Scada, PLCs, DCS) to corporate networks for good business reasons but this can expose legacy technologies to malicious attack from the internet.