HMS Networks Offers Guidance on NIS2 Compliance for Remote Access via IEC 62443

Halmstad, Sweden – HMS Networks has released a guide to help organizations achieve compliance with the European Union's NIS2 Directive, specifically concerning secure remote access for industrial automation and control systems (IACS). The guidance focuses on leveraging the IEC 62443 series of standards, which are designed to enhance cybersecurity in industrial environments.

The NIS2 Directive introduces stricter cybersecurity requirements across EU member states, mandating a risk-based approach, enhanced risk management, supply chain oversight, incident reporting, and business continuity planning. Failure to comply can result in significant penalties.

The IEC 62443 standard, developed by the International Electrotechnical Commission (IEC) in partnership with the International Society of Automation (ISA), provides a global framework for securing IACS. It covers various aspects of cybersecurity, including requirements for risk management programs (IEC 62443-2-1), security for service providers (IEC 62443-2-4), risk assessment and security levels (IEC 62443-3-2), technical security controls for systems and networks, including remote access (IEC 62443-3-3), and secure product development (IEC 62443-4-1 / 4-2).

According to HMS Networks, the IEC 62443 standard offers a practical alignment with NIS2 obligations related to risk management, supply chain security, incident response, and access control. The company plans to release a detailed guide on configuring its Ewon Remote Access Services to meet both IEC 62443 and NIS2 requirements in the near future.