Automation Engineering Body of Knowledge

A structured reference library for automation engineers covering control systems, SCADA, networking, electrical, safety, cybersecurity, troubleshooting, standards, and engineering delivery.
Author: Daniel Stephen - MEng(Industrial Automation), BEng(Hons)(Mechatronics), RPEQ, NER

Knowledge Index

Legend

✓ Complete    ◐ In Progress    ○ Planned

Control Systems & Automation SCADA, HMI & Information Systems Electrical, Instrumentation & Motion
○ PLCs ○ SCADA ○ Voltage, Current, Resistance & Power
Functional Safety Networking & Industrial Communications Industrial Cybersecurity
IEC 61508
○ Layers of Protection
OSI Model
○ TCP/IP
Modbus
Modbus RTU
Profibus
Modbus TCP
DNP3
CIP
OPC
OPC UA
Introduction to IACS Security
○ Purdue Model
Industrial Cyber Attacks
○ Malware
NIST Cyber Security Framework
MITRE ATT&CK
Network Security Devices
Network Segmentation
Unified Threat Management (UTM)
Packet Capture Analysis (PCAP)
Network Attacks
Detection in Depth
Defence in Depth
Intrusion Detection Systems
Intrusion Prevention Systems
Virtual Private Networks (VPN)
ISA/IEC 62443 Security for Industrial Automation and Control Systems
IACS Cybersecurity Roles
ISO/IEC 27001, ISO/IEC 27002 and the ISA/IEC 62443 Series for Operational Technology Environments
ISA/IEC 62443-1 General
TS 62443-1-1 Concepts and Models
IEC 62443-1-1 Clause 5.7 – Policies, Procedures & Guidelines
IEC 62443-1-1 Clause 5.10 – Security Levels
IEC 62443-1-1 Clause 6 – Models
62443-1-2 Glossary, Terms & Abbreviations
62443-1-3 System Security Conformance Metrics
TR/TS 62443-1-4 IACS Security Lifecycle and Use Cases
TR/TS 62443-1-5 Security Profiles
IEC 62443 Security Profiles (TS 62443-1-5 / Part 5)
TR/TS 62443-1-6 Application in IIoT
ISA/IEC 62443-2 Policies & Procedures
62443-2-1 Security Program Requirements for IACS Asset Owners
IEC 62443-2-1 Cybersecurity Management System (CSMS) (2010)
IEC 62443-2-1 Security Program Requirements (2024)
IEC 62443-2-1 Clause 4.2 – Maturity Levels
IEC 62443-2-1 Clause 5 – Conformance and Assessment
IEC 62443-2-1 Clause 6 – Organizational Security Measures
IEC 62443-2-1 Clause 7 – Configuration Management
IEC 62443-2-1 Clause 8 – Network and Communications Security
IEC 62443-2-1 Clause 9 – Component Security
IEC 62443-2-1 Clause 10 – Protection of Data
IEC 62443-2-1 Clause 11 – User Access Control
IEC 62443-2-1 Clause 12 – Event and Incident Management
IEC 62443-2-1 Clause 13 – System Integrity and Availability
IEC 62443-2-1 Cybersecurity Awareness Training (SPE1-ORG1.4/1.5)
62443-2-2 IACS Security Protection Scheme
IEC 62443-2-2 Security Protection Scheme (SPS)
IEC 62443-2-2 Automation Solution Security Lifecycle
62443-2-3 Patch Management in the IACS Environment
IEC 62443-2-3 Patch Management in the IACS Environment
62443-2-4 Security Program Requirements for IACS Service Providers
IEC 62443-2-4 Security Program Requirements for IACS Service Providers
TR/TS 62443-2-5 Implementation Guidance for IACS Asset Owners (planned)
ISA/IEC 62443-3 System
TR/TS 62443-3-1 Security Technologies for IACS
62443-3-2 Security Risk Assessment for System Design
IEC 62443-3-2 Cyber Risk Concepts
IEC 62443-3-2 Clause 4 – Zone, Conduit and Risk Assessment Requirements
IEC 62443-3-2 Clause 4.2 – Identify the SUC
IEC 62443-3-2 Clause 4.3 – Initial Cybersecurity Risk Assessment
IEC 62443-3-2 Clause 4.4 – Partition into Zones and Conduits
IEC 62443-3-2 Clause 4.5 – Risk Comparison
IEC 62443-3-2 Clause 4.6 – Detailed Cybersecurity Risk Assessment
IEC 62443-3-2 Clause 4.7 – Document Requirements, Assumptions and Constraints
IEC 62443-3-2 Clause 4.8 – Asset Owner Approval
62443-3-3 System Security Requirements and Security Levels
IEC 62443-3-3 Foundational Requirements (FR1–FR7)
IEC 62443-3-3 Clause 5 – Identification and Authentication Control
IEC 62443-3-3 Clause 6 – Use Control
IEC 62443-3-3 Clause 7 – System Integrity
IEC 62443-3-3 Clause 8 – Data Confidentiality
IEC 62443-3-3 Clause 9 – Restricted Data Flow
IEC 62443-3-3 Clause 10 – Timely Response to Events
IEC 62443-3-3 Clause 11 – Resource Availability
IEC 62443-3-3 FR and SL Vector (Annex A)
IEC 62443-3-3 Annex B – SR/RE Mapping to Security Levels
IEC 62443-3-3 Security Levels (Annex A.3.2)
ISA/IEC 62443-4 Components
62443-4-1 Secure Product Development Lifecycle Requirements
IEC 62443-4-1 Secure Product Development Lifecycle
IEC 62443-4-1 Clause 5 – Security Management
IEC 62443-4-1 Clause 6 – Specification of Security Requirements
IEC 62443-4-1 Clause 7 – Secure by Design
IEC 62443-4-1 Clause 8 – Secure Implementation
IEC 62443-4-1 Clause 9 – Security Verification and Validation Testing
IEC 62443-4-1 Clause 10 – Management of Security-Related Issues
IEC 62443-4-1 Clause 11 – Security Update Management
IEC 62443-4-1 Clause 12 – Security Guidelines
62443-4-2 Technical Security Requirements for IACS Components
IEC 62443-4-2 Technical Security Requirements for IACS Components
IEC 62443-4-2 Clause 4 – Common Component Security Constraints
IEC 62443-4-2 Clause 5 – Identification and Authentication Control
IEC 62443-4-2 Clause 6 – Use Control
IEC 62443-4-2 Clause 7 – System Integrity
IEC 62443-4-2 Clause 8 – Data Confidentiality
IEC 62443-4-2 Clause 9 – Restricted Data Flow
IEC 62443-4-2 Clause 10 – Timely Response to Events
IEC 62443-4-2 Clause 11 – Resource Availability
IEC 62443-4-2 Clause 12 – Software Application Requirements
IEC 62443-4-2 Clause 13 – Embedded Device Requirements
IEC 62443-4-2 Clause 14 – Host Device Requirements
IEC 62443-4-2 Clause 15 – Network Device Requirements
IEC 62443-4-2 Annex A – Device Categories
IEC 62443-4-2 Annex B – CR/RE Mapping to Security Levels
ISA/IEC 62443-5 Profiles
62443-5-x Profile Documents
IEC 62443-5 Security Profiles
ISA/IEC 62443-6 Evaluation
TR/TS 62443-6-1 Security Evaluation Methodology for 62443-2-4
TR/TS 62443-6-2 Security Evaluation Methodology for 62443-4-2
Troubleshooting & Diagnostics Engineering Delivery & Lifecycle Standards & Governance
○ Structured Troubleshooting Methodology ○ Automation Project Lifecycle Standards, Frameworks & Regulations
ISA/IEC 62443 Security for Industrial Automation and Control Systems

Disclaimer

The summary infographics throughout AEBOK are generated using Artificial Intelligence (AI) from the accompanying training notes and are intended as visual learning aids. Most information is technically accurate and aligns with recognised industrial automation principles.

While the majority of the content is accurate and valuable for learning, AI-generated graphics may occasionally contain visual inconsistencies, formatting issues, misplaced elements, incorrect labels, or other graphical mistakes. The accompanying written content should always be considered the primary source of information.

Readers should apply critical thinking, verify important technical details against relevant standards, vendor documentation, and organisational procedures, and exercise professional judgement when applying this information in real-world environments.

AEBOK is provided as an educational resource to support continuous learning and should not replace official engineering standards, manufacturer documentation, site-specific procedures, or formal risk assessments.