Hi,
I'm working for an OEM in factory automation. As the only Industrial Network specialist in the organisation I'm taking a lead in establishing our PSIRT in Europe. I have some practical and some theoretical experience in cybersecurity but I have not had to start from scratch on my own before.
I can try to follow what our headquarters are doing in Japan but we get little information from them so I'd like to take the initiative and maybe set an example of good practice.
I'd like to read IEC 62443 but is probably too in-depth.
NIS2 is probably forcing our hand in this topic and I'd like to get as much ahead of the legislation as possible.
What are some good resources you'd recommend?
If you would work with a group or consultant or similar, who do you suggest?
I'm in Germany and VDMA are discussing the topic and I know Tuev are available to help. I was wondering what resources The IET had, if any.
Thanks,
Chris