UL talks about cybersecurity in UL827
When I asked UL’s engineering manager, Steve Schmit, how the ISC West show was going, he said he spent a fair bit of the show discussing the recent updates to UL827, now including requirements for cybersecurity.
“Now with [cybersecurity] in the standard, we’re going to have conversations about [central station’s] network security, how they keep their customers safe,” Schmit told Security Systems News. Cybersecurity is something previous standards hadn’t formally required, he said.
These cybersecurity measures include firewalls, intrusion detection systems, “risk assessment, developing a mitigation plan, to deal with those risks, and putting that all into practical application,” Schmit said.
UL spent five years developing the latest standard, released in October, Schmit said. It currently has a future effective date of late 2016.
Cybersecurity is a topic that is coming up more in the physical security industry. SSN readers earlier this year pointed toward this trend. CSAA’s annual meeting will even start with a keynote on the subject.
Is now the time cybersecurity will start concerning central stations? Has it always been a priority?
I’ve heard from some in the industry that this could really impact monitoring centers looking to get—or—keep UL certification. If you have any insight or opinion on the changes, reach out to me and let me know. My direct line is 207-846-0600 ext. 254, email: firstname.lastname@example.org.