Markus Müller

TÜV Süd (Germany)

Understanding the Value of IEC 62443 Certifications: Regulatory Compliance and Beyond

In today’s digital age, security threats are becoming more sophisticated, and the need for securing operational technology (OT) is paramount. The IEC 62443 standard provides a comprehensive framework for OT security, outlining a systematic approach to managing cyber security risks and threats across the entire life cycle of industrial automation and control systems (IACS).

This presentation will discuss the value of IEC 62443 certifications for product manufacturers and software development companies, providing an overview of the standard and certification process. We will explore the benefits of IEC 62443 certifications, including compliance with existing and upcoming regulations such as the Radio Equipment Directive, Cyber Resilience Act, and Machinery Regulation.

In addition to regulatory compliance, we will discuss the additional benefits that IEC 62443 certifications can bring, such as improved product quality and increased customer trust. We will also provide examples of how companies have gained a competitive advantage through IEC 62443 certifications.

Finally, we will address the challenges and considerations of obtaining IEC 62443 certifications, including the effort and time required. We will provide best practices for companies considering obtaining IEC 62443 certifications, and conclude with a Q&A session.

Miguel Sanchez

Markus Müller is an experienced manager in the fields of operational technology (OT) security and governance, risk & compliance (GRC). Currently serving as Manager of OT Security at TÜV SÜD, Markus is responsible for designing and delivering trainings, assessments, and certifications of industrial components, machinery, and solutions, as well as technical due diligence and penetration testing of software products and industrial components. Previously, he worked as an IT security auditor at Siemens, where he provided assurance to the managing board and audit committee over the company’s IT and OT environments. Markus holds multiple certifications, including CISSP, CISA, OSCP, and Functional Safety Engineer, and has Master’s degrees in Informatics from Technische Universität München and Tomsk Polytechnic University.