Author

/Author

Comparison of Voting Arrangements in SIS

By |2018-11-07T16:31:42+00:00November 7th, 2018|Edward M. Marszal, Safety Instrumented System|

While I'm certain that all of you have all of the strengths and limitations of the different voting arrangements tatooed in your memory, I know that you also have to explain these strengths and limitations to others.  For instance, a manager might be insisting that 2oo2 voting is superior to 2oo3 voting, because it has [...]

Comments Off on Comparison of Voting Arrangements in SIS

Security PHA Review Video – Kaspersky ICS Conference

By |2018-10-18T08:18:37+00:00October 18th, 2018|Edward M. Marszal, ICS Cybersecurity, Process Hazards Analysis|

On 20 Sep 2018, Kenexis CEO Ed Marszal presented at the 2018 Kaspersky Industrial Cyber-Security conference in Sochi, Russia. The topic of the presentation was Security PHA Review (SPR).  The presentation provides a brief overview of the topic while highlighting a specific application - a oil pipeline pumping station.  This example was chosen because an [...]

Comments Off on Security PHA Review Video – Kaspersky ICS Conference

What’s Your Backup and Recovery Strategy?

By |2018-08-22T17:28:36+00:00August 22nd, 2018|ICS Cybersecurity, ICS Design and Implementation, Jim Gilsinn|

While reading the Wired article, titled The Untold Story of NotPetya, the Most Devastating Cyberattack in History, I thought a lot about backups. Backing up your data and systems in order to maintain critical services is a cornerstone of any disaster recovery program (DRP). I hadn’t realized how fast NotPetya spread through some organizations. From [...]

Comments Off on What’s Your Backup and Recovery Strategy?

Systematic Safety Integrity; what you need to know.

By |2018-07-06T12:24:59+00:00July 6th, 2018|Kevin Mitchell, News, Safety Instrumented System, Services, Vertigo|

There's a lot of confusion about Systematic Safety Integrity in new IEC61511.  We are starting to see devices certified for SIS applications to have a rated Systematic Capability (SC) of 2.  What does this mean?  Is this yet another hurdle I need to jump over to meet a SIL target?  Let's shine some light on Systematic [...]

Comments Off on Systematic Safety Integrity; what you need to know.

Pipeline Cybersecurity Risks

By |2018-10-06T08:45:51+00:00June 21st, 2018|Jim McGlone|

Pipeline Cybersecurity Risks What happens if a hacker takes control remotely of a pump station and spoofs the pressure indicator, so the logic controller does not shut-down the booster pump, and then closes a discharge valve – blocking the pump in and over-pressuring the downstream piping? When you are focused on designing safety requirements for [...]

Comments Off on Pipeline Cybersecurity Risks

Top 10 SIEM Solution Providers

By |2018-06-20T09:50:38+00:00June 20th, 2018|Author, ICS Cybersecurity, Jim McGlone|

We are please to announce that Kenexis was chosen by Enterprise Security as one of the top 10 SIEM solution providers recently. This was based on our work over the last few years implementing SIEM solutions in highly regulated industries on legacy control system environments with mediocre network architectures. Enterprise Security saw us filling a [...]

Comments Off on Top 10 SIEM Solution Providers

Consequence and Cybersecurity

By |2018-06-19T15:48:23+00:00June 19th, 2018|ICS Cybersecurity, Jim McGlone, News|

Industrial Control Systems or Operational Technology cybersecurity risk calculations are typically based on  threat, vulnerability, and consequence in an equation similar to the one below: risk = threat x vulnerability x consequence If we assign numbers, like 1 to 5, and define each number in the range for each variable, we can probably solve the [...]

Comments Off on Consequence and Cybersecurity

Setting up Security PHA Review (SPR) in Open PHA

By |2018-04-27T12:00:04+00:00April 27th, 2018|Edward M. Marszal, ICS Cybersecurity, OpenPHA, Process Hazards Analysis|

Kenexis Open PHA integrated software for performing process hazards analysis (PHA) such as HAZOP and LOPA includes features that allow a Security PHA Review (SPR) to be performed.  Open PHA utilizes an open and standardized data structure that includes all of the fields that end users in the process industries determined should be included in [...]

Comments Off on Setting up Security PHA Review (SPR) in Open PHA

Reducing Attack Surfaces

By |2018-04-18T16:36:26+00:00April 18th, 2018|ICS Cybersecurity, Jeremy Smith|

Reducing the Attack Surface with Group Policy You should be constantly working to reduce your attack surface using reasonable low cost methods and your existing equipment. Reducing your attack surface, often referred to as hardening, is the most cost-effective way to increase your security. In this brief article, we will examine using Microsoft Active Directory [...]

Comments Off on Reducing Attack Surfaces

You Have Received a Confidential Document

By |2018-04-11T12:58:46+00:00April 11th, 2018|Jim McGlone|

A month ago I was on my way into Istanbul from the Middle East. I filled out the online form for a Visa to enter the country and received an email that had malware attached to the link for my Visa. That one got me and took down my email for a couple hours why [...]

Comments Off on You Have Received a Confidential Document

Top Five Reasons to Switch to Open PHA

By |2018-02-23T10:19:30+00:00February 22nd, 2018|News, OpenPHA, Sean Cunningham|

Making the decision to migrate from an existing software platform to a newer more powerful one isn’t always easy.  Organizations often have large bases of installed software and may have made large financial commitments based on the best available information at the time of the commitment.  However, if there is one [...]

Comments Off on Top Five Reasons to Switch to Open PHA

2-factor authentication

By |2018-02-08T12:35:41+00:00February 8th, 2018|Chris Raiter, News|

2-factor authentication Most of the people I work with know how I feel about password security.  I’m well aware of the password management burden we all face, so I’m always promoting the use of password managers and two-step authentication for any account that supports it.  I recently read an article posted on The Register in which a [...]

Comments Off on 2-factor authentication

Security PHA Review (SPR) in Open PHA

By |2018-02-05T17:06:43+00:00February 5th, 2018|Edward M. Marszal, ICS Cybersecurity, OpenPHA|

Open PHA has been upgraded to include the ability to perform a Security PHA Review (SPR - pronounced 'spur') directly in the PHA study.  The advantages of this approach is that it allows for cyber security concerns to be addressed during a PHA study without expending excessive team time and the documentation of the SPR [...]

Comments Off on Security PHA Review (SPR) in Open PHA

Translation in Open PHA™ Premium

By |2018-01-26T12:36:09+00:00January 26th, 2018|Jim McGlone, News, OpenPHA|

Earlier this week, we enabled a powerful function in Open PHA™ Premium that allows you to translate all of your work or a site's work into almost any language. This makes it easy for someone at headquarters to read a HAZOP from a site even though the site performed the work in their local language. Now [...]

Comments Off on Translation in Open PHA™ Premium

When all your eggs are in the BPCS and SIS protection layers

By |2018-01-26T12:22:25+00:00January 26th, 2018|Arbor, Kevin Mitchell, News, Safety Instrumented System, Vertigo|

During Layer of Protection Analysis (LOPA) of high hazard scenarios, we often rely on a diversity of protections including instrumented and non-instrumented safeguards.  Invariably, we run into situations where instrumented safeguards must bear the full weight of risk reduction.  Of course, we never want to design a Safety Instrumented Function to a SIL 4 or [...]

Comments Off on When all your eggs are in the BPCS and SIS protection layers

Open PHA Premium Custom Report Generator Available

By |2018-02-05T10:23:40+00:00December 20th, 2017|OpenPHA, Process Hazards Analysis, Product Update, Sean Cunningham|

The Open PHA Development team is proud to announce the release of a new feature available to Open PHA users with a premium subscription, the Open PHA Premium Report Generator. If you have used Open PHA you're probably familiar with the quick print options to generate Microsoft Excel files from tables or grids created by [...]

Comments Off on Open PHA Premium Custom Report Generator Available

Open PHA – Introduction

By |2018-01-26T11:42:28+00:00October 25th, 2017|Author, Edward M. Marszal, OpenPHA, Products|

FREE HAZOP/LOPA Software! Now that I've got your attention... Kenexis has developed a best-in-class software application for the facilitation and recording of process hazards analysis (PHA) studies.  This software, called Open PHA™, is a leap forward in a category that has been stagnating over the past decade.  Most traditional PHA software vendors have not really [...]

Comments Off on Open PHA – Introduction

Derivation of PFD Equations for SIL Verification

By |2018-01-26T11:42:41+00:00October 12th, 2017|Arbor, Author, Edward M. Marszal, News, Products, Safety Instrumented System, Services, Vertigo|

Have you ever wondered where the equations that are used to calculate probability of failure on demand for SIL verification came from?  In this video, Kenexis CEO Ed Marszal goes the white board to show you.  This video will demonstrate how all of the equations are based on the fundamental definitions of availability and reliability.  [...]

Comments Off on Derivation of PFD Equations for SIL Verification

SIS Overview and Awareness Online Course

By |2018-01-26T11:43:14+00:00September 8th, 2017|Jim McGlone, News, Training|

We are pleased to announce the addition of the Safety Instrumented Systems Overview and Awareness to the Kenexis Online Training Center. This course provides an online self-paced overview and awareness level of SIS design that is appropriate for all personnel that interact with SIS in any way. The course includes informative examples that highlight [...]

Comments Off on SIS Overview and Awareness Online Course

Control System SIEM Implementation

By |2018-01-26T11:43:26+00:00August 30th, 2017|ICS Cybersecurity, ICS Design and Implementation, Jim Gilsinn, Jim McGlone|

Network appliances like firewalls and switches, have software (commonly referred to as firmware) on them that monitor and log security events. Unfortunately, the logs are rarely read by anyone. In fact, most people have never logged into their home router to look at the logs or change the administrator password. If the firmware was compromised, [...]

Comments Off on Control System SIEM Implementation

SIS Testing Optimization

By |2018-01-26T11:43:35+00:00August 29th, 2017|Process Hazards Analysis, Reducing Turnaround Cost, Safety Instrumented System, Todd Longendelpher|

Testing of the safety instrumented system (SIS) is a critical lifecycle task that ensures the proper operation of functional safety devices, identifies component failures that can be repaired and tracked, allows tolerable risk goals of the organization to be achieved, and maintains compliance with functional safety standards and safety regulations.  While testing of functional devices [...]

Comments Off on SIS Testing Optimization

How do I decide on the need for toxic gas detection?

By |2018-01-26T11:43:48+00:00August 10th, 2017|Effigy, Fire and Gas Systems, Kevin Mitchell, Safety Instrumented System|

We were recently asked about placing Hydrogen Sulfide (H2S) gas detectors in an area of the process where no H2S gas is normally present. Does the possibility for process upset conditions to abnormally result in the presence of toxic gas give rise to a requirement for detection? There was no way to simply answer the [...]

Comments Off on How do I decide on the need for toxic gas detection?

Do you really know the worst case for atmospheric dispersion of a gas release?

By |2018-01-26T11:43:59+00:00July 27th, 2017|Fire and Gas Systems, Kevin Mitchell, News|

Dispersion of an elevated release Often atmospheric dispersion models are needed to determine the potential for a gas release to impact workers or the public.  This is typically encountered during Fire & Gas Mapping.  There are quite a few decisions that go into a well-designed dispersion model, not the least of which are [...]

Comments Off on Do you really know the worst case for atmospheric dispersion of a gas release?

Reducing Turnaround Time and Cost

By |2018-01-26T11:44:12+00:00July 26th, 2017|Jim McGlone, Process Hazards Analysis, Reducing Turnaround Cost, Safety Instrumented System, Vertigo|

In todays oil and chemicals market, time and budgets are strained to remain operational with a slight profit. Many facilities are making difficult operational and turnaround decisions to survive while possibly putting their operation at risk at the same time. There might be a significant way to reduce time and cost during operations and [...]

Comments Off on Reducing Turnaround Time and Cost

Kenexis joins Purdue Process Safety and Assurance Center

By |2018-01-26T11:44:24+00:00May 17th, 2017|Jim McGlone, News|

Kenexis is pleased to announce that is has joined the Purdue Process Safety and Assurance Center. The Purdue Process Safety and Assurance Center is deep in research and education for fire and gas detector placement, and process safety. The Purdue Process Safety and Assurance Center and Kenexis share common goals in preventing unnecessary loss of [...]

Comments Off on Kenexis joins Purdue Process Safety and Assurance Center