Services

/Services

Comparison of Voting Arrangements in SIS

By |2018-11-07T16:31:42+00:00November 7th, 2018|Edward M. Marszal, Safety Instrumented System|

While I'm certain that all of you have all of the strengths and limitations of the different voting arrangements tatooed in your memory, I know that you also have to explain these strengths and limitations to others.  For instance, a manager might be insisting that 2oo2 voting is superior to 2oo3 voting, because it has [...]

Comments Off on Comparison of Voting Arrangements in SIS

Security PHA Review Video – Kaspersky ICS Conference

By |2018-10-18T08:18:37+00:00October 18th, 2018|Edward M. Marszal, ICS Cybersecurity, Process Hazards Analysis|

On 20 Sep 2018, Kenexis CEO Ed Marszal presented at the 2018 Kaspersky Industrial Cyber-Security conference in Sochi, Russia. The topic of the presentation was Security PHA Review (SPR).  The presentation provides a brief overview of the topic while highlighting a specific application - a oil pipeline pumping station.  This example was chosen because an [...]

Comments Off on Security PHA Review Video – Kaspersky ICS Conference

What’s Your Backup and Recovery Strategy?

By |2018-08-22T17:28:36+00:00August 22nd, 2018|ICS Cybersecurity, ICS Design and Implementation, Jim Gilsinn|

While reading the Wired article, titled The Untold Story of NotPetya, the Most Devastating Cyberattack in History, I thought a lot about backups. Backing up your data and systems in order to maintain critical services is a cornerstone of any disaster recovery program (DRP). I hadn’t realized how fast NotPetya spread through some organizations. From [...]

Comments Off on What’s Your Backup and Recovery Strategy?

Systematic Safety Integrity; what you need to know.

By |2018-07-06T12:24:59+00:00July 6th, 2018|Kevin Mitchell, News, Safety Instrumented System, Services, Vertigo|

There's a lot of confusion about Systematic Safety Integrity in new IEC61511.  We are starting to see devices certified for SIS applications to have a rated Systematic Capability (SC) of 2.  What does this mean?  Is this yet another hurdle I need to jump over to meet a SIL target?  Let's shine some light on Systematic [...]

Comments Off on Systematic Safety Integrity; what you need to know.

Top 10 SIEM Solution Providers

By |2018-06-20T09:50:38+00:00June 20th, 2018|Author, ICS Cybersecurity, Jim McGlone|

We are please to announce that Kenexis was chosen by Enterprise Security as one of the top 10 SIEM solution providers recently. This was based on our work over the last few years implementing SIEM solutions in highly regulated industries on legacy control system environments with mediocre network architectures. Enterprise Security saw us filling a [...]

Comments Off on Top 10 SIEM Solution Providers

Consequence and Cybersecurity

By |2018-06-19T15:48:23+00:00June 19th, 2018|ICS Cybersecurity, Jim McGlone, News|

Industrial Control Systems or Operational Technology cybersecurity risk calculations are typically based on  threat, vulnerability, and consequence in an equation similar to the one below: risk = threat x vulnerability x consequence If we assign numbers, like 1 to 5, and define each number in the range for each variable, we can probably solve the [...]

Comments Off on Consequence and Cybersecurity

Setting up Security PHA Review (SPR) in Open PHA

By |2018-04-27T12:00:04+00:00April 27th, 2018|Edward M. Marszal, ICS Cybersecurity, OpenPHA, Process Hazards Analysis|

Kenexis Open PHA integrated software for performing process hazards analysis (PHA) such as HAZOP and LOPA includes features that allow a Security PHA Review (SPR) to be performed.  Open PHA utilizes an open and standardized data structure that includes all of the fields that end users in the process industries determined should be included in [...]

Comments Off on Setting up Security PHA Review (SPR) in Open PHA

Reducing Attack Surfaces

By |2018-04-18T16:36:26+00:00April 18th, 2018|ICS Cybersecurity, Jeremy Smith|

Reducing the Attack Surface with Group Policy You should be constantly working to reduce your attack surface using reasonable low cost methods and your existing equipment. Reducing your attack surface, often referred to as hardening, is the most cost-effective way to increase your security. In this brief article, we will examine using Microsoft Active Directory [...]

Comments Off on Reducing Attack Surfaces

Security PHA Review (SPR) in Open PHA

By |2018-02-05T17:06:43+00:00February 5th, 2018|Edward M. Marszal, ICS Cybersecurity, OpenPHA|

Open PHA has been upgraded to include the ability to perform a Security PHA Review (SPR - pronounced 'spur') directly in the PHA study.  The advantages of this approach is that it allows for cyber security concerns to be addressed during a PHA study without expending excessive team time and the documentation of the SPR [...]

Comments Off on Security PHA Review (SPR) in Open PHA

When all your eggs are in the BPCS and SIS protection layers

By |2018-01-26T12:22:25+00:00January 26th, 2018|Arbor, Kevin Mitchell, News, Safety Instrumented System, Vertigo|

During Layer of Protection Analysis (LOPA) of high hazard scenarios, we often rely on a diversity of protections including instrumented and non-instrumented safeguards.  Invariably, we run into situations where instrumented safeguards must bear the full weight of risk reduction.  Of course, we never want to design a Safety Instrumented Function to a SIL 4 or [...]

Comments Off on When all your eggs are in the BPCS and SIS protection layers

Open PHA Premium Custom Report Generator Available

By |2018-02-05T10:23:40+00:00December 20th, 2017|OpenPHA, Process Hazards Analysis, Product Update, Sean Cunningham|

The Open PHA Development team is proud to announce the release of a new feature available to Open PHA users with a premium subscription, the Open PHA Premium Report Generator. If you have used Open PHA you're probably familiar with the quick print options to generate Microsoft Excel files from tables or grids created by [...]

Comments Off on Open PHA Premium Custom Report Generator Available

Derivation of PFD Equations for SIL Verification

By |2018-01-26T11:42:41+00:00October 12th, 2017|Arbor, Author, Edward M. Marszal, News, Products, Safety Instrumented System, Services, Vertigo|

Have you ever wondered where the equations that are used to calculate probability of failure on demand for SIL verification came from?  In this video, Kenexis CEO Ed Marszal goes the white board to show you.  This video will demonstrate how all of the equations are based on the fundamental definitions of availability and reliability.  [...]

Comments Off on Derivation of PFD Equations for SIL Verification

Control System SIEM Implementation

By |2018-01-26T11:43:26+00:00August 30th, 2017|ICS Cybersecurity, ICS Design and Implementation, Jim Gilsinn, Jim McGlone|

Network appliances like firewalls and switches, have software (commonly referred to as firmware) on them that monitor and log security events. Unfortunately, the logs are rarely read by anyone. In fact, most people have never logged into their home router to look at the logs or change the administrator password. If the firmware was compromised, [...]

Comments Off on Control System SIEM Implementation

SIS Testing Optimization

By |2018-01-26T11:43:35+00:00August 29th, 2017|Process Hazards Analysis, Reducing Turnaround Cost, Safety Instrumented System, Todd Longendelpher|

Testing of the safety instrumented system (SIS) is a critical lifecycle task that ensures the proper operation of functional safety devices, identifies component failures that can be repaired and tracked, allows tolerable risk goals of the organization to be achieved, and maintains compliance with functional safety standards and safety regulations.  While testing of functional devices [...]

Comments Off on SIS Testing Optimization

How do I decide on the need for toxic gas detection?

By |2018-01-26T11:43:48+00:00August 10th, 2017|Effigy, Fire and Gas Systems, Kevin Mitchell, Safety Instrumented System|

We were recently asked about placing Hydrogen Sulfide (H2S) gas detectors in an area of the process where no H2S gas is normally present. Does the possibility for process upset conditions to abnormally result in the presence of toxic gas give rise to a requirement for detection? There was no way to simply answer the [...]

Comments Off on How do I decide on the need for toxic gas detection?

Do you really know the worst case for atmospheric dispersion of a gas release?

By |2018-01-26T11:43:59+00:00July 27th, 2017|Fire and Gas Systems, Kevin Mitchell, News|

Dispersion of an elevated release Often atmospheric dispersion models are needed to determine the potential for a gas release to impact workers or the public.  This is typically encountered during Fire & Gas Mapping.  There are quite a few decisions that go into a well-designed dispersion model, not the least of which are [...]

Comments Off on Do you really know the worst case for atmospheric dispersion of a gas release?

Reducing Turnaround Time and Cost

By |2018-01-26T11:44:12+00:00July 26th, 2017|Jim McGlone, Process Hazards Analysis, Reducing Turnaround Cost, Safety Instrumented System, Vertigo|

In todays oil and chemicals market, time and budgets are strained to remain operational with a slight profit. Many facilities are making difficult operational and turnaround decisions to survive while possibly putting their operation at risk at the same time. There might be a significant way to reduce time and cost during operations and [...]

Comments Off on Reducing Turnaround Time and Cost

1947 Texas City industrial accident

By |2017-08-29T14:56:36+00:00April 17th, 2017|Jim McGlone, News, Process Hazards Analysis, Safety Instrumented System|

Today, we remember the 1947 Texas City industrial accident. The picture in our office, reminds us daily that Kenexis exist to prevent these. ‬ Learn more at https://en.wikipedia.org/wiki/Texas_City_disaster  

Comments Off on 1947 Texas City industrial accident

Design of SIS Bypasses

By |2017-06-25T19:58:08+00:00December 6th, 2016|Author, Edward M. Marszal, Safety Instrumented System, Services|

The mechanism for the bypass needs to meet the requirements of the IEC 61511 (ISA 84) standard.  The relevant sections from the 2016 version of IEC 61511 are as follows: 11.7.2.1  Where the SIS operator interface is via the BPCS operator interface, account shall be taken of credible failures that may occur in the BPCS [...]

Comments Off on Design of SIS Bypasses

Security PHA Review (SPR) and Security Levels

By |2017-08-29T14:57:37+00:00December 6th, 2016|Author, Edward M. Marszal, ICS Cybersecurity, Process Hazards Analysis, Services|

After reading an ISA article related to the application of Security PHA Review (SPR) for the determination of required security levels for Industrial Control Systems (ICS), as required in IEC 62443 [ISA 99], a Kenexis customer had some questions related to whether or not some cyber safeguarding measures make a scenario "non-hackable", and if not, what [...]

Comments Off on Security PHA Review (SPR) and Security Levels

Achilles JQS Registered

By |2017-06-25T19:58:08+00:00November 15th, 2016|Fire and Gas Systems, ICS Cybersecurity, Jim McGlone, News, Process Hazards Analysis, Safety Instrumented System|

Achilles JQS Registered Supplier Kenexis Consulting Corporation is pleased to announce that it is a registered, verified, and compliant supplier on Achilles Joint Qualification System (JQS) for the Oil and Gas Industry in Norway and Denmark. Achilles creates and manages a global network of collaborative industry communities, allowing trading partners to share high quality, structured, [...]

Comments Off on Achilles JQS Registered

BSides DC 2016 Cybersecurity ICS Work

By |2017-08-29T14:58:03+00:00November 15th, 2016|ICS Cybersecurity, Jim Gilsinn, News|

Recently, Jim Gilsinn presented at BSides DC 2016 about cybersecurity work on Industrial Control Systems (ICS) and SCADA (Supervisory Control And Data Acquisition). His presentation was titled: "What's the Big Deal with Assessing ICS/SCADA?" If you are considering a career in ICS Cybersecurity, this might persuade you to go back to law school. YouTube Link

Comments Off on BSides DC 2016 Cybersecurity ICS Work

Determining Shutoff Valve Leak Tightness Requirements

By |2017-08-30T14:22:23+00:00October 5th, 2016|Author, Edward M. Marszal, News, Reducing Turnaround Cost, Safety Instrumented System, Services|

A prior blog on the Kenexis web site related to the requirements for tight-shutoff (TSO) for valves that are part of a safety instrumented function generated a lot of interest in the engineering community.  A link to that blog is shown below. Tight Shutoff Requirements in SRS Blog After writing that blog, Kenexis routinely received [...]

Comments Off on Determining Shutoff Valve Leak Tightness Requirements

Benefit of Plume Fire Modeling over Point Models/Ray Tracing

By |2017-06-25T19:58:08+00:00October 5th, 2016|Author, Edward M. Marszal, Effigy, Fire and Gas Systems|

Most process plant engineering includes the development of 3D models that define the facility and help engineers to visualize the plant while it is still on the "drawing board", allowing for optimization of design.  These models are also a key part of determining the number of fire detectors that are required and where they should [...]

Comments Off on Benefit of Plume Fire Modeling over Point Models/Ray Tracing