0% found this document useful (0 votes)

5 views

ICSS Routine Standard

Uploaded by

jerome oramabo

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

5 views

ICSS Routine Standard

Uploaded by

jerome oramabo

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 285

Production Unit: UOG DW NG Maintenance Normal

Facility: Qua Iboe Terminal [QIT]

Approved By: NEEDHAM,
RICHARD S. QIT ICSR Sustainment
Approved Date: Mar-24-2020

Revalidation Date: Mar-23-2025 OIMS61-NGJV-QIT-2019-001 Rev 0

Purpose
This procedure describes the steps required to safely carry out Industrial Control
System Requirements [ICSR] sustainment tasks for Qua Iboe Terminal [QIT] process
control equipment.

As at the time of procedure development, QIT Power Distribution Upgrade Project

[QPDUP] PLC System also covered in this procedure was not handed over to QIT
operation/maintenance team. Therefore, this procedure must be verified in the field
when the QPDUP in-scope PLC System is fully handed over so as to capture any
salient site specific steps that may be necessary for safe, flawless and effective PM
execution.
! IMPORTANT: • Equipment is maintained on a scheduled frequency as defined by a
Facility Integrity Maintenance System (FIMS) / Equipment Strategy.
• Review the Safety Information section of this procedure before
proceeding. (Refer to the table of contents below). Any deviation
from this procedure must follow the established Management of
Change (MoC) process.
Procedure Deviation Request Form

Risk Links There are no Risk Links associated with this procedure.

Table of Contents
Purpose ................................................................................................................... 1
Risk Links ............................................................................................................... 1
Equipment ............................................................................................................... 4
Safety Information .................................................................................................. 7
Prerequisites .................................................................................................... 7
Qualifications and Training ............................................................................... 7
Requirements ................................................................................................... 7
Special Tools and Equipment ........................................................................... 7
Personal Protective Equipment ........................................................................ 7
Hazards and Precautions ................................................................................. 8
Tasks........................................................................................................................ 9
1.0 Preparation for Maintenance .................................................................... 9
2.0 3M Virus Definition Update & Drives Scan ............................................... 10

Effective Date:03/24/20 Page 1 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

3.0 3M Verify Personnel Movement with Terminal Superintendent ................ 29

4.0 3M Conduct Review of Media Logbook.................................................... 30
5.0 3M Verify/Update ICSR Documents ......................................................... 31
6.0 6M Inspection & Diagnostics: Siemens Simatic S7-400 PLC System...... 32
7.0 6M Inspection & Diagnostics: Rockwell Automation ControlLogix PLC
System ..................................................................................................... 46
8.0 6M Inspection & Diagnostics: Allen Bradley SLC 5/03 PLC System........ 56
9.0 6M Inspection & Diagnostics: GE BN 3500 Vibration Monitoring System 60
10.0 6M ICS Complete Inspection & Diagnostics: GE Fanuc 90-30 PLC
System ..................................................................................................... 72
11.0 6M Inspection & Diagnostics: GE PAC 8000 PLC System....................... 83
12.0 6M Inspection & Diagnostics: HIMA PLC System .................................... 87
13.0 6M Inspection & Diagnostics: Mitsubishi PLC System ............................. 87
14.0 12M ICSR Management Communication ................................................. 87
15.0 12M External Network Certification .......................................................... 90
16.0 12M Update UN ICS BCP/DR Plan Critical lists....................................... 93
17.0 24M ICS BCP/Disaster Recovery and Cybersecurity Emergency
Response Plan Test ................................................................................. 95
18.0 36M Control Panel Maintenance .............................................................. 99
19.0 36M Workstations & Laptops Hardware Maintenance ............................. 102
20.0 36M Workstations & Laptops Software Maintenance............................... 109
21.0 36M Workstations & Laptops Image Backups Using Acronis 11.7........... 140
22.0 36M Workstations & Laptops Image Backups Using Apricon EZ gig II .... 146
23.0 36M Verification & Backup of Siemens Simatic S7-400 PLC System ...... 156
24.0 36M Verification & Backup of Rockwell Automation ControlLogix PLC
System ..................................................................................................... 158
25.0 36M Verification & Backup of Allen Bradley SLC 5/03 PLC System ........ 164
26.0 36M Verification & Backup of GE Fanuc 90-30 PLC System ................... 166
27.0 36M Verification & Backup of GE BN 3500 Vibration Monitoring System 167
28.0 36M Verification & Backup of GE PAC 8000 PLC System ....................... 172
29.0 36M Verification & Backup of Mitsubishi PLC System ............................. 174
30.0 36M Verification & Backup of HIMA PLC System .................................... 174
31.0 36M Verification & Backup of Siprotec PLC System ................................ 174
32.0 36M Verification & Backup of MOOG Servo Controller ............................ 180
33.0 36M Verification & Backup of OMNI Flow Computer System................... 187
34.0 36M Backup of Jiskoot AutoSampler Controller ....................................... 191
35.0 PCS Backup of Intouch HMI Application .................................................. 193
36.0 36M Backup of WinCC HMI Application ................................................... 198
37.0 36M Backup of iFIX HMI Application ........................................................ 198

Effective Date:03/24/20 Page 2 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

38.0 36M Backup of Bently Nevada System1 Database.................................. 201

39.0 36M Backup of Rockwell Automation FactoryTalk (FT) View Site Edition
(SE) HMI Application ................................................................................ 207
40.0 36M Backup of Minimax F&G Operator Interface Terminal ...................... 208
41.0 36M Backup of Allen Bradley PanelView Plus Operator Interface
Application ................................................................................................ 208
42.0 36M Backup of Tank Gauging System Application................................... 209
44.0 36M Backup of Historian Application........................................................ 211
45.0 36M PCS Backups Synchronization......................................................... 212
46.0 36M Hardware & Software Inventory Review........................................... 214
47.0 36M Network diagrams & Inventory Review ............................................ 219
48.0 36M OS, App & Wireless License Review ............................................... 221
49.0 36M Access Authorization Review-OS/APP ............................................ 224
50.0 36M Security Policy & Log Config Review ............................................... 242
51.0 36M Switch/Firewall/Router Config Review ............................................. 254
52.0 36M Firecall inventory and Logs review ................................................... 261
53.0 36M Verification of ICSR & RA Controls .................................................. 264
54.0 48M/60M ICS Risk Assessment & Deviations Review ............................. 274
55.0 Closeout - Return to Service .................................................................... 279
Supporting Information.......................................................................................... 280
Associated Procedures .................................................................................... 280
Reference Documents...................................................................................... 281
Vendor Documents ........................................................................................... 281
Classification Matrix .............................................................................................. 284

Effective Date:03/24/20 Page 3 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

Equipment
Strategies
ICSR Strategies

The table below lists the equipment strategy and required frequency of preventive
maintenance for the Process Control systems. The procedures on the following pages
details the steps to satisfy the requirements outlined in this table.

Effective Date:03/24/20 Page 4 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Equipment (Continued)

Strategy Equipment Frequency PM Tasks/FIMS

08-005-010- Control Systems 3 Monthly Update virus definition on Industrial Control
NG000 Security/Integrity - System workstations for the site or work centre
Controllers, as applicable using the guide below from
Workstations, USBs and global sustainment template.
Operator Interface
Terminals - Criticality
A/B, ICSR Compliant.
08-005-010- 6 Monthly Surveillance Monitoring/Inspection
NG000
ICS Complete Inspection & Diagnostics.
12 monthly ICSR Management Communication Session

Update Upstream Nigeria ICS Business

Continuity Plan / Disaster Recovery Plan
critical lists

External network certification

24 monthly ICS BCP/Disaster Recovery and
Cybersecurity Emergency Response Plan Test
36 monthly Process Control System Inspection,
Verification and Backups (Image and
Application)

Process Control System Backups

synchronization at storage locations

Access Authorization Review (Operating

Systems and Applications)

Security Policy and Log Configuration Review

Hardware and Software inventory review

Operating System, Application & Wireless

license review.

Network diagrams and Inventory reviews

Verification of ICSR and Risk Assessment

controls

Switch / Firewall / Router configuration review

Firecall inventory and logs review

48/60 UN ICSR Risk Assessments and Deviation
Monthly review

Effective Date:03/24/20 Page 5 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Equipment (Continued)

Corrective When a malfunction or failure is discovered during a PM task, notify the

Maintenance Maintenance and site Supervisor and determine the corrective action required.

All corrective maintenance must be reported in a separate corrective maintenance

work order.

Effective Date:03/24/20 Page 6 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

Safety Information
Prerequisites

Qualifications This procedure is intended for use by trained technicians who have successfully
and Training completed the competency assessment(s) for use of this procedure, and all
associated safety / work management procedures, to a level consistent with the
requirements of the Competency Assurance Standards (CAS).

Requirements Complete the following activities before initiating this procedure:

• Last Minute Risk Assessment (LMRA) e.g.: Step back 5x5

• Job Safety Analysis (JSA).
• Supplementary Control Certificate (SCC), if applicable.
• Energy Isolation and obtain Isolation Control Certificate (ICC), if applicable.
• Work Permits, as appropriate.

The Instrument / ICS Technician is responsible for the following:

•Performs the planned maintenance tasks.

•Informs the Maintenance Supervisor of potential problems.
•Updates International Production Enterprise System (IPES) with Preventive
Maintenance (PM) information.

Special Tools Due to the nature or location of the work, the following equipment is required:
and Equipment
• Job-specific tools and equipment:
▪ Digital multimeter / Electronic test equipment
▪ Terminal screw drivers (insulated)
▪ Laptop computer / configuration station
▪ Static discharge strap
▪ Approved USB storage media

Personal List of personal protective equipment (PPE) required during the execution of this
Protective procedure includes:
Equipment • PPE as specified by the Upstream Nigeria Safety Manual

Effective Date:03/24/20 Page 7 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Safety Information (Continued)

Hazards and Precautions

Hazards Precautions

The following hazardous conditions are possible: The following precautions are necessary while
performing the tasks in this procedure:
There is a risk of electrical shock or electrocution Use extreme caution when working around the
when working around energized equipment. energized circuitry on Industrial Control Systems.
Exposure to static electrical discharges may occur. Use safe static discharge techniques / static band
when working with ICS hardware to avoid undesired
static discharge to cabinet equipment.
There is a possibility of grounding or short circuiting Prior to performing work, confirm that grounding /
a controller card, which could cause a process earthing straps and/or other grounding / earthing
emergency shutdown (ESD), with a resulting loss of devices are in place, and the terminations are tight
production and financial loss. and corrosion free.
There may be conflict with other activities in the Investigate any Simultaneous Operations (SIMOPS)
immediate vicinity. or other activities in the immediate area that could
affect the performance of the maintenance task.
Existence of virus or malware. Scan removable media for virus or malware.
The work area may be crowded with equipment Ensure that all access and egress routes are
and/or materials, and also may be subject to traffic unobstructed by materials and equipment.
by other workers.

There are no additional hazards foreseen and this procedure, together with existing controls within the Work
Management System, will be sufficient to perform this task.

Operations are conducted in accordance with company and governmental requirements for protection of the
environment.

Reference: Upstream Nigeria Environmental Management Manual

For applicable regulatory requirements, refer to the following manual.

Reference: Upstream Nigeria Regulatory Compliance Manual

For applicable safety requirements, refer to the safety manual, company safety bulletins, and the appropriate
Material Safety Data Sheet (MSDS).

Reference: Upstream Nigeria Safety Manual

Effective Date:03/24/20 Page 8 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

Tasks
1.0 Preparation for Maintenance

Reference: All work must be conducted in accordance with the Upstream Nigeria Work Management
system Manual.
CAUTION: • To avoid equipment contamination, cover exposed openings during the maintenance tasks.
• Do not use flammable solvents when cleaning parts and equipment.

Step Action / Remarks Who

1.1 Obtain the preventive maintenance (PM) work order. ICSS

1.2 Verify the equipment tag number. ICSS

1.3 Prepare a Job Safety Analysis (JSA) and conduct a Toolbox Talk with all personnel ICSS
involved in the job.

1.4 Where applicable, prepare the Permit to Work in accordance with the work scope ICSS
requested.

1.5 Complete the Supplemetary Control Certificate (SCC) if applicable. ICSS

1.6 Inform the Control Room Operator of the intended work and provide the tag number ICSS
of the affected equipment.

1.7 Where applicable, ensure that the area has been checked for flammable gases. ICSS

CAUTION: In explosive atmospheres, do not remove covers on energized

electrical equipment or enclosures without using appropriate work
permit.

1.8 Examine the job scope ICSS

IF... THEN...

Necessary to remove the source Isolate, and lock and tag the equipment according ICSS
of energy to LOTO guidelines.

IF... THEN...

Not necessary to remove the Proceed to the next step. ICSS

source of energy

1.9 Scan all removable media for virus / malware prior to use on Industrial Control ICSS
System.

1.10 Check out required firecall passwords, if applicable. ICSS

End of Task

Effective Date:03/24/20 Page 9 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

2.0 3M Virus Definition Update & Drives Scan

(Note - Internet access and flash drive write access on GME Computer is required):

Virus signature definition needs to be updated regularly for the protection to be effective against current
computer virus and worm risk. An IPES based programmed maintenance drives the frequency of anti-virus
definition update.

FOR

Networked Computers within a domain with/without Remote/External IP Connection

• Where computers are in a Windows Domain, an Anti-Virus Management Server deployment approach
may be used and the definition update should be done in the Anti-Virus Management Server, which will
then circulate the definition update to the client in that network automatically,
• In a situation where Client-based anti-virus software is installed then individual definition update should
be done .

Small Network of Computers with/without Remote/External IP Connection.

• Client-based anti-virus software will be installed and definition update should be carried out on
individual stations.

Frequency for Anti-virus definition update

Stand-alone systems and network systems with remote connections:

• Risk Level 1 (High) = Quarterly,

• Risk Level 2,3 (Med) = Semi-Annually
• Risk Level 4 (Low) = Annually (Optional)

Confirm risk level using the link: https://goto/ASSET

Complete the following steps to update Symantec Endpoint Protection definition on Workstations and
Laptops.

Step Action / Remarks Who

2.1 Sign out PCS HARD DISK/FLASH DRIVE from the facility custodian ICSS

2.2 Download the latest virus definition update from Symantec website using (EMIT) ICSS
GME Computer

Effective Date:03/24/20 Page 10 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
2.0 3M Virus Definition Update & Drives Scan (Continued)

Step Action / Remarks Who

a. From start menu, ICSS

Access internet using internet explorer

Effective Date:03/24/20 Page 11 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Navigate to 'Virus Definitions & Security Updates' page using either of the ICSS
following routes:

• Type 'https://www.symantec.com/security_response/definitions.jsp' on the

web address bar

• Type “Symantec endpoint definition update” on google search bar.

Then open the appropriate symantec web link . . . .

Effective Date:03/24/20 Page 12 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Select your Symantec Antivirus product version by clicking “select ICSS

Product” drop down button

(Confirm your product version via: control panel - programs - programs and
features. Then check product property)

d. Click “Download: Definitions” as shown in the image below to proceed ICSS

Effective Date:03/24/20 Page 13 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Click on the appropriate file name (confirm the BIT of the system you want to ICSS
apply the antivirus update on) to download the update file (in .exe) format.

Note: The file naming convention is YYYYMMDD-XXX-vXi32.exe for 32bit

systems and YYYYMMDD-XXX-vXi64.exe for 64bit systems

where yyyy = Year, mm = month, dd = day, X = number, The last two numbers
before the (.exe) signify the bit

! IMPORTANT: After clicking the indicated bar in the last step, on the pop-up on the
bottom bar, click "Save". Do not click "Run" on a GME computer.

Effective Date:03/24/20 Page 14 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. When download is complete; ICSS

• Locate the downloaded file as shown below

• Move the downloaded file to public location on GME computer
(C:\Users\Public\Public Documents)

g. Copy it to a scanned (virus free) PCS HARD DISK/FLASH DRIVE using ITPA ICSS
by qualified personnel

2.3 ITPA REGISTRATION/SETUP ICSS

Pre-requisite: ITPA End Users need to be a member of the LAN Group - ITPA.
PROD-AFRICA-NI-FLDUNM.UG.

Device enrolment (browser) is required from all users at least once or whenever
one of the conditions below exists: 

• User trying to access ITPA for the first time (all user profiles);
• Enrolment expired (no ITPA activities in the last 90 days);
• ITPA authentication using a different browser never enrolled (or using a different
EMIT computer)

a. Access ITPA portal using the link: http://goto/itpa in Web browser ICSS

Effective Date:03/24/20 Page 15 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Select the “Step-Up Auth” authentication method ICSS

c. Click submit to go to OTP page ICSS

Effective Date:03/24/20 Page 16 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. On the password page ICSS

Launch SecureAuth Passcode for MS software

Effective Date:03/24/20 Page 17 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Call Help desk for desktop configuration through the help desk ext 21333 and ICSS
follow the call prompt.

(Access request - to access ITPA is for ICSR activities)

After access configuration by the IT support analyst using OTP on the

SecureAuth Passcode software, the ITPA portal opens and is ready for use.

2.4 CHECK OUT ITPA ACCOUNT ICSS

( i.e. getting USB Drive access username & password )

Note:

• For ITPA Check out Procedure, see steps 2.4 a-e below.
• Remember we have only 2 ITPA accounts in UN, so avoid keeping a password
for a long time without checking the account back in

a. Log in to ITPA portal (after ITPA REGISTRATION/SETUP) ICSS

Leave Search field blank and click on Search button to view available ITPA
accounts

Effective Date:03/24/20 Page 18 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Select required account by double clicking to open Account details page ICSS

N.B. An account with a lock by its side is not available

c. Click on Show or Copy ICSS

Effective Date:03/24/20 Page 19 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. On the 'show Password' pop-up window, enter reason for checking out ITPA ICSS
account and Ticket ID (Work Order Number) from ITServices then click OK.

1) • Create a work-order by going to IT SERVICES. ICSS

• Type “ITServices” in the address bar and press “Enter” on your keyboard
or click the link below if you’re using soft copy of this document
http://itservices.na.xom.com/

2) Scroll down to the end of the web page and click “Get Assistance” ICSS

Effective Date:03/24/20 Page 20 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Click the “What can we help you with?” drop the box and select “other” as ICSS
seen below. Under availability input GMT +1

4) Fill every other data’s as found in the image below, then click submit ICSS

Note the ticket number as this will be entered in the "show password" page

e. Password is displayed on screen or copied to clipboard. If Copy option is used, ICSS

paste password to notepad or other document.

Effective Date:03/24/20 Page 21 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2.5 Log on to GME computer using ITPA account and password. If already ICSS
logged on with user XOM profile, sign out and login as other user.

2.6 WRITE TO EXTERNAL MEDIA DEVICE ICSS

Effective Date:03/24/20 Page 22 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

a. Open GME User Tools and select Enable Unencrypted Write access under ICSS
Encryption category

b. Insert external media device when Ready for Unencrypted Removable Media ICSS
prompts for insertion. And click OK

c. Copy data from public location on GME computer (C:\Users\Public\Public ICSS

Documents) or mapped H: Drive location to external device.

d. Eject external media device when read/write operation is completed. ICSS

e. Sign out from ITPA account profile on GME computer ICSS

2.7 CHECKING IN ITPA ACCOUNT ICSS

( i.e. releasing the account to make it available for another )

a. Access ITPA portal ICSS

Effective Date:03/24/20 Page 23 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Leave Search field blank and click on Search button to view available ITPA ICSS
accounts

c. Select the account you checked out (account with lock symbol) to open ICSS
Account details page by double clicking it.

d. Click on Change ICSS

e. Select Change the password immediately (by the CPM) and click OK ICSS

Effective Date:03/24/20 Page 24 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2.8 UPDATE ANTI-VIRUS SIGNATURES ON THE PCS SYSTEM ICSS

a. Insert the removable device into the system, whose antivirus you want to ICSS
update and Locate the file inside they disk

Note: For systems in a domain with a Symantec endpoint management server;

you should only apply the update in the management server and the station will
automatically update antivirus definition of other systems (clients) in that
domain.

b. Double click the file to install update, then Click yes and wait for few seconds ICSS
for the update to take effect

c. Click ”ok” in the updater dialogue box as shown below ICSS

Effective Date:03/24/20 Page 25 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Launch the antivirus software and confirm that the virus definition is up to date ICSS
and that your computer is secured

e. Fill in the “antivirus update” log book ICSS

2.9 Drives Scan

a. Sign out the removable drive from the facility custodian ICSS

b. Insert the removable drive in a system with up to date anti-virus definition ICSS

c. Go to Start menu ICSS

d. Click and open "my computer" or "this computer" ICSS

Effective Date:03/24/20 Page 26 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Right click on the removable drive and click “scan for viruses” to start ICSS
scanning

Then wait for the drive scan to complete.

Effective Date:03/24/20 Page 27 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Review the scan result for any risk/virus detected when the scan is ICSS
complete

g. Safely remove/eject the drive in the computer before physically ICSS

disconnecting/pulling out the drive

h. Tag the drive as shown below. ICSS

i. Fill in the “drive scan” log book ICSS

j. Sign in the drive with the facility custodian ICSS

End of Task

Effective Date:03/24/20 Page 28 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

3.0 3M Verify Personnel Movement with Terminal Superintendent

Step Action / Remarks Who

3.1 Contact terminal superintendent and discuss task requirement to verify personnel ICSS
movement.

3.2 Check with the terminal superintendent with the current/subsisting authorized ICSS
personnel list to confirm changes of personnel within the quarter under review.

Email current personnel list to location terminal superintendent for authentication

a. Typical list can be found in I:\MPN\ORG\AFSS & DCS\.I C S R\2019 UN PCS

SECURITY DOCUMENTS\2019 UN AUTHOURISED PCS USER'S LIST.

Additionally, check on Global Personnel Announcement Tool (GPAT), to confirm

authorized personnel movement.

Example

3.3 If there is/are personnel change(s), identify personnel who have left location. ICSS

Request for or raise notification for corrective workorder to effect necessary changes
- specify changes to be effected, including specific username(s)/account(s) to be
updated/deleted.

3.4 Document the required changes to be made and the corrective notification to be ICSS
used to effect such changes on the PM work order before closeout.

End of Task

Effective Date:03/24/20 Page 29 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

4.0 3M Conduct Review of Media Logbook

Step Action / Remarks Who

4.1 Obtain materials/removable media movement logbook from the location ICSS
Maintenance Supervisor or designate.

4.2 Check on site ICSR documentation for a listing of materials [e.g. processor keys, ICSS
removable media, etc. for the site].

Create one if the list is not available and obtain sign-off by the Maintenance
Supervisor.

4.3 Check logbook entries for materials/removable media usage covering the duration ICSS
under review. Ensure:

• Rows and columns are accurately completed.

• Materials and removable media are accounted for.

4.4 Obtain signature of Superintendent or Maintenance Supervisor for completed rows. ICSS

4.5 Document corrective work order for findings that could not be closed during this ICSS
review.

4.6 Return logbook and material list to safe storage with location Maintenance ICSS
Supervisor/designate.

End of Task

Effective Date:03/24/20 Page 30 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

5.0 3M Verify/Update ICSR Documents

Step Action / Remarks Who

5.1 ICSS
Open the approved and current removable media users list on I-Drive.
Example: I:\MPN\ORG\AFSS & DCS\.I C S R\2019 UN PCS SECURITY
DOCUMENTS\2019 REMOVABLE MEDIA USERS' & PHYSICAL KEY MGT REVIEW

5.2 ICSS
Open the approved and current firecall users list on I-Drive.
Example: I:\MPN\ORG\AFSS & DCS\.I C S R\2019 UN PCS SECURITY
DOCUMENTS\2019 FIRECALL USERS' LIST (PER LOCATION)

5.3 Review lists with site leadership ICSS

5.4 Update changes, if there is any. ICSS

5.5 Obtain approval via DocuSign or email from Terminal Superintendent. ICSS

5.6 Save the updated and approved lists in pdf format in I-Drive for the applicable ICSS
quarter.

End of Task

Effective Date:03/24/20 Page 31 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

6.0 6M Inspection & Diagnostics: Siemens Simatic S7-400 PLC System

Follow the steps in 1.0 to prepare for maintenance

Complete the following steps to perform routine surveillance of the PLC Control System to check the
complete system for active alarms and faults.
! IMPORTANT: If an abnormal condition is detected during any of the steps below, refer to the "Vendor documents"
section of this procedure for fault details and action.

! IMPORTANT: Record and report any unresolved fault recorded in the any module in the steps below to
maintenance supervisor and raise notification for correction.

Step Action / Remarks Who

6.1 Hardware Inspection & Diagnostics

a. Observe the condition of the CPU module on the PLC Processor Rack ICSS

Effective Date:03/24/20 Page 32 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
6.0 6M Inspection & Diagnostics: Siemens Simatic S7-400 PLC System (Continued)

Step Action / Remarks Who

b. Using the table below, confirm the status of the CPU. ICSS

LED Normal Abnormal

INTF Off Red
EXTF Off Red
BUS1F/2F Off Red*
IFM1F/2F Off Red**
FRCE Off Yellow***
REDF Off Red

MSTR is green for master and off for a slave CPU

*LED is steady when error is detected at the MPI/DP interface. LED flashes when
PROFIBUS DP interface is not replying (for master) or is not addressed by the DP
master (for slave).

**LED is steady when error is detected at module interface 1/2. LED flashes when
PROFIBUS DP interface module inserted in module slot 1/2 is not replying (for
master) or is not addressed by the DP master (for slave).

***FRCE LED that is ON due to approved signal bypass is not an abnormal

condition.

Effective Date:03/24/20 Page 33 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Observe the condition of the communication processor on the PLC Processor Rack ICSS
(slot 4, 5) and confirm the status indicators following the tables below.

Effective Date:03/24/20 Page 34 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Observe the condition of the Power Supply Module on the PLC Processor Rack slots ICSS
1 and 2, and record the status indicators following the tables below.

e. Replace batteries either every year or when the BAF light-emitting diode (LED) (Red) ICSS
on the Power Supply is ON.

Effective Date:03/24/20 Page 35 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

Reference: To replace batteries, follow the steps in Attachment 1: Replacing

Memory Backup Batteries

CAUTION: Replace the battery only with the type recommended by the
manufacturer.

There is a risk of injury, material damage, or release of hazardous

substances. Lithium batteries can explode if handled improperly. Their
improper disposal may result in the release of hazardous substances.
Strictly adhere to the following instructions:

• Do not throw a new or low battery into an open fire and do not
perform any soldering work on the cell casing (maximum
temperature 100°C).
• Do not recharge the battery due to the risk of explosion! Do not
open a battery. Replace a faulty battery only with the same type.
Replacement batteries can be ordered from Siemens (Check
Siemens documentation for ordering information). This ensures that
a short circuit-proof type battery is installed.
• Always try to return low batteries to the manufacturer or deliver
them to a registered recycling company.

Dispose of used batteries according to company and governmental

requirements. Refer to the Upstream Nigeria Environmental
Management Manual and Upstream Nigeria Safety Management
Manual.

f. Observe the condition of the Industrial Ethernet Switch, Scalance X 208 and record ICSS
the status indicators following the tables below.

Scalace X 200

g. Observe the condition of the ET 200M Modules on the distributed I/O system and ICSS
record the status indicators following the tables below:

ET200M

Effective Date:03/24/20 Page 36 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

h. Observe the condition of the Digital Input Modules on the distributed I/O system and ICSS
record the status indicators following the tables below:

Effective Date:03/24/20 Page 37 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

i. Observe the condition of the Digital Output Modules on the distributed I/O system ICSS
and record the status indicators following the tables below:

Effective Date:03/24/20 Page 38 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

j. Observe the condition of the Analog Input Modules on the distributed I/O system. ICSS

Diagnostic functions - programmable:

• Group error display: Red LED (SF), reported in its corresponding ET 200M
Module
• Reading diagnostic information: supported
• At the channel configured for current measurements, connect the shunt resistor
to the adjacent channel terminals in order to achieve the specified precision.

• Model: AI8x16Bit -Analog input-8Channel, 16 Bit Reference:

Effective Date:03/24/20 Page 39 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

k. Observe the condition of the Analog Output on the distributed I/O system. ICSS

Group error display: Red LED (SF), reported in its corresponding ET 200M Module
and in front of module.

Status Normal Abnormal

SF OFF RED

l. Record and report any unresolved fault in any of the modules to maintenance ICSS
supervisor and raise notification for correction.

6.2 Software Inspection & Diagnostics

a. Conduct the status monitoring using the SIMATIC MANAGER software installed on ICSS
the Engineering Workstation.

1) Log off operator and log on to the WinCC with authorized user account. ICSS

2) To exit the Process Mode and close WINCC, access the Control Functions in ICSS
Button Set 2. (If not already set, change to Button Set 2 with the "Change

button set" function )

3) Click the Exit Runtime button. ICSS

N/B:This stops the process mode.

Result: The Exit Runtime dialog box opens. ICSS

4) Click the Deactivate button. ICSS

5) Log off operator and log on to the OS with authorized user account. ICSS

Effective Date:03/24/20 Page 40 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Go to SIMATIC MANAGER: ICSS

1) Start the SIMATIC Manager by either double-clicking the icon below on the ICSS
desktop.

2) Or by using the command: Start > SIMATIC > SIMATIC Manager (as shown ICSS
below)

Path

c. When the 'SIMANTIC Manager' screen comes up, click Cancel on the 'PCS 7 ICSS
Wizard...' screen that displayes.

d. Select and click on one of the icons - View (in the upper bar), then click Component ICSS
view and Online. (See below)

e. Expand on the <QGFE> project. ICSS

Effective Date:03/24/20 Page 41 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Monitor the hardware diagnostics of the PLCs. ICSS

1) Expand each of the systems, AS11/12 to the PLCs' level. ICSS

2) Select and right click each of the PLCs, one at a time. ICSS

3) In the drop down, click on PLC > Hardware Diagnostics (See below) ICSS

Effective Date:03/24/20 Page 42 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) On the Hardware diagnostics window, select the CPU, click on Module ICSS
Information. Then choose Diagnostics Buffer.

5) Repeat steps 6.18a-d for AS21/22. ICSS

6) Report any abnormality noticed. Use OEM documents to rectify any ICSS
abnormality when there is approved corrective work order.

6.3 Identify Forced Signal

a. Identify Forced Signals in the Programs ICSS

Effective Date:03/24/20 Page 43 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Follow the steps on 6.2a-d, then choose PLC > Display Forced Values for ICSS
AS11/12/21/22, taking one at a time.

2) The 'Force Values' window opens to reveal any forced item(s) if it exist. ICSS

See example below.

N/B. FRCE LED lights up (yellow) if forced item exist.

3) If any forced item exist, note the description and confirm there is an approval. ICSS
Take necessary action to have one in place if there is none or have the forced
point removed.

Effective Date:03/24/20 Page 44 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Record and report any problem or discrepancy and generate a work order as ICSS
necessary.

c. Exit from the SIMATIC Manager and ensure that the workstation is available for ICSS
process control:

1) Log of from the OS and click 'OK' when the 'ICSR...' screen appears to log on ICSS
Operator.

Result - WinCC (process screen) lunches automatically.

2) When the WinCC screen is ready, enter the appropriate password for normal ICSS
operation monitoring.

d. Follow the steps in the [Closeout] of this procedure to close PM. ICSS

End of Task

Effective Date:03/24/20 Page 45 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

7.0 6M Inspection & Diagnostics: Rockwell Automation ControlLogix PLC System

Step Action / Remarks Who

7.1 Hardware Diagnostics

a. Observe the Power status indicator on the 1756-PA75 120/240 VAC System Power ICSS
Supply Module for normal indication. The power status indicator should be
"STEADY GREEN." Any other status is abnormal.
b. Observe the status indicators on the 1756-L73 ControlLogix ICSS
Controller Module for normal indications as follows:

• RUN = STEADY GREEN (The Controller is in Run mode).

• FORCE = OFF (No tags contain I/O force values).
• OK = STEADY GREEN (The Controller is operating normally).
• SCROLLING STATUS DISPLAY also indicates the PROJECT NAME
(The name of the project that is currently loaded on the controller).

c. Observe the module OK status indicator on the 1756-EN2T Ethernet Bridge Module ICSS
for normal indication. The module OK status indicator should be "STEADY GREEN."
Any other status is abnormal.
d. Observe the module OK status indicator on the 1756-DHRIO Data Highway ICSS
+/RIO Port Scanner Module for normal indication. The module OK status
indicator should be "STEADY GREEN." Any other status is abnormal.

Effective Date:03/24/20 Page 46 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
7.0 6M Inspection & Diagnostics: Rockwell Automation ControlLogix PLC System (Continued)

Step Action / Remarks Who

7.2 Software Diagnostics

a. Ensure that the communications cable is connected between the PLC and ICSS
diagnostics workstation.

1) For ethernet communication (using RJ45 cable connection), confirm the IP ICSS
address displayed on the scrolling screen of the EtherNet/IP module

2) Configure IP address and domain of the laptop to communicate with the ICSS
controller

3) Launch RSLinx classic from start>All programs > Rockwell ICSS

Software>RSLinx Classic

Effective Date:03/24/20 Page 47 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) On the RSLinx, click on Communications > Configure Drivers... ICSS

5) On the 'Configure Drivers' window, select EtherNet/IP Driver and click on Add ICSS
New...

6) Click Ok on the next screen. ICSS

7) Confirm the status of AB_ETHIP, Ethernet on the 'Configure Drivers' window ICSS
is Running

The window may be closed.

Effective Date:03/24/20 Page 48 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. On the RSLinx page, confirm that the PLC shows up in RSWho. ICSS

It is hereby assumed that the communication setup is done properly to establish

communication with PLC.

c. Launch RSLogix 5000 from Start>All programs>Rockwell Software>RSLogix ICSS

5000 enterprise series>RSLogix 5000.

Effective Date:03/24/20 Page 49 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Locate the previously backed up program of the controller. Click on File> open from ICSS
the Menu bar.

e. Open the applicable .ACD PLC project. ICSS

f. From the communications menu, select who active. ICSS

Effective Date:03/24/20 Page 50 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

g. Expand the communication driver to the level of the controller ICSS

h. Select the controller and click on Go Online with the PLC. ICSS

Effective Date:03/24/20 Page 51 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

i. If the controller goes online without showing “the open project has offline changes ICSS
that aren’t in the controller” message, the program is verified.

If the controller shows “the open project has offline changes that aren’t in the
controller” message, an upload must be performed.

Click on Upload (the uploaded program file may be named differently if the aim is
not to replace the previously backed up file) and wait to the uploading process to be
completed

j. Go to Edit | Controller Properties. ICSS

Effective Date:03/24/20 Page 52 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

k. Go to Major Faults and Minor Faults tabs respectively and note any faults logged. ICSS

l. Click on Clear Majors and Clear Minors on the respective Faults screens to ICSS
clear any fault log if any exist.

Effective Date:03/24/20 Page 53 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

m. Check modules status. If faulted, make necessary correction using appropriate ICSS
corrective work order.

If any of the modules is faulted, a yellow caution sign appears beside it and a
description is shown on the lower bar of the controller organizer.

n. Close the PLC project and application. ICSS

Effective Date:03/24/20 Page 54 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

7.3 Identification of bypasses/overrides and forced signals

a. Check for shutdown point or function bypasses/overrides and logic forces ICSS
installed on the systems/processors and match them with approved
temporary defeat certificates.
b. Remove any forced point that is not approved. ICSS

End of Task

Effective Date:03/24/20 Page 55 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

8.0 6M Inspection & Diagnostics: Allen Bradley SLC 5/03 PLC System

Step Action / Remarks Who

8.1 Hardware Diagnostics

a. Observe the power status indicator on the 1746-P2/P4 System Power Supply ICSS
Module for normal indication. The power status indicator on the power supply
should be "ON, STEADY." Any other status is abnormal.
b. Observe the status indicators on the 1747-L532 Processor Module for ICSS
normal indications as follows:

• RUN = ON, STEADY GREEN (The processor is in the Run mode).

• FLT = OFF (There are no errors).
• BATT = OFF (The battery is functional).
• FORCE = OFF (No forces are present or enabled).
• DH485 = ON, STEADY GREEN (If active), OFF (If not active)
• RS232 = ON, BLINKING GREEN (If active), OFF (If not active)

SLC 5 CPU

c. Observe and record the condition of the Input / Output module and ICSS
channel status* indicator.

Note: The I/O indicator shows the status of the I/O modules in the controller.

• Module status on - Normal

• Module status off - Abnormal
• Channel status (steady) on - Channel enabled (Normal)
• Channel status (blinking) on - Loop fault, out-of-range condition, or
configuration fault (Abnormal)
• Channel status off - Either module is powering up or channel is inactive (Normal
if module is confirmed ok)

*Some module do not have status indicator. For such, confirm the channel status
indicator.

d. Observe the module status indicator on the 1746-NR8 RTD / ICSS

Resistance Input Module for normal indication. The module status
indicator should be "ON, STEADY." Any other status is abnormal.

N.B. The LED indication status in 8.1 (c) also applies here.

e. Any abnormal condition observed should followed up with appropriate ICSS

corrective work order.

Effective Date:03/24/20 Page 56 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
8.0 6M Inspection & Diagnostics: Allen Bradley SLC 5/03 PLC System (Continued)

Step Action / Remarks Who

8.2 Software Diagnostics

a. Ensure that the communications cable is connected between the PLC and ICSS
diagnostics workstation using RS232 access cable.

b. Launch RSLinx application - Start > All Program > Rockwell Software > RSLinx > ICSS
RSLinx. Confirm that the PLC shows up in RSWho.

It is hereby assumed that during installation, RSLinx application was properly setup
with the appropriate communication driver to establish communication with PLC. If
not, configure RSlink using PLC property. (Click communication, choose 'configure
driver'. Under configuration, choose PLC driver that matches the controller property)

c. Launch RSLogix 500 Programming application. ICSS

d. On the RSLogix page, select and click - File > Open > C: > SLC500_Project > ... ICSS
(Select the project file of interest)

e. Open the applicable .RSS PLC project. ICSS

f. Select and click - Comm > Who active go online. Select the connected PLC on the ICSS
communication window that opens, then click Ok to go Online with the PLC.

1) Click No if ask to save changes. ICSS

2) If password window pops up, enter appropriate password to proceed. ICSS

Effective Date:03/24/20 Page 57 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

g. Expand Controller and double click Processor Status. ICSS

h. Go to Error tab and note any error message. ICSS

i. Click on Clear Major Error ICSS

j. Close the PLC project and application. ICSS

8.3 Identification of bypasses/overrides and forced signals

a. Go online following steps 8.2a-f (if not already online) ICSS

b. Observe and record the condition of the FORCE indicator. ICSS

Note: The FORCE indicator on the CPU (see 8.1b) shows whether the I/O forces
are active or enabled.

• Off indicates that no I/O points contain force values or I/O forces are inactive
(disabled).
• Steady amber indicates that forces are active (enabled).
• Flashing amber indicates that one or more I/O addresses have been forced but
the forces have not been enabled.

1) If force point(s) exist, identify the specific force point(s), match each with an ICSS
approved bypass certificate. Forced point is identified by '>ON', on the logic.

2) Remove any forced point that is not approved. ICSS

Effective Date:03/24/20 Page 58 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Close the PLC project and restore normal working condition. ICSS

End of Task

Effective Date:03/24/20 Page 59 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

9.0 6M Inspection & Diagnostics: GE BN 3500 Vibration Monitoring System

Complete the following steps to perform 6M ICS Complete Inspection & Diagnostics of the GE BN 3500
Vibration Monitoring System for active alarms and faults.

Step Action / Remarks Who

9.1 Hardware Diagnosis

a. Check supply power ICSS
Measure the incoming supply power at the back of the modules rack using a digital
voltmeter.

• Verify that the primary supply power is 120/240 VAC.

• Verify that the backup supply power is 24 VDC.
• When checked, if either the 120/240 VAC or the 24 VDC power supply do not
supply the correct voltage, initiate a corrective maintenance work order for
replacement.

The module annunciates this via a green "Supply OK" light emitting diode on the
power supply’s front panel.

The 24 volt DC power is provided by an uninterruptable power supply (UPS).

! IMPORTANT: Energy isolation is not required for this task

b. Verify that the low (120) voltage AC I/O module incoming power supply meets the ICSS
following requirements:

• 85 to 125 VAC
• 4.5 amps
• 47 to 63 Hz

c. Verify that the high (240) voltage AC I/O module incoming power supply meets the ICSS
following requirements:

• 175 to 250 VAC

• 2.3 amps
• 47 to 63 Hz

d. Verify that the high voltage DC I/O module incoming power supply meets the ICSS
following requirements:

• 88 to 140 VDC
• 2.5 amps

Effective Date:03/24/20 Page 60 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
9.0 6M Inspection & Diagnostics: GE BN 3500 Vibration Monitoring System (Continued)

Step Action / Remarks Who

e. Verify that the low voltage DC I/O module incoming power supply meets the following ICSS
requirements:

• 20 to 30 VDC
• 10 amps

f. Inspect the vibration modules rack. ICSS

◦ Check for faults / alarms on each module in the monitoring system.

◦ Verify if any fault / alarms exist, the possible source; from the machinery or
from the vibration monitoring system.

1) Observe the condition of the BN3500 modules and record the status ICSS
indicators following the tables below;

N.B. Keyphasor 'OK' LED will be active when;

• Shaft RPM is between 1RPM and 99,999RPM,

• Keyphasor Signal has not changed by a 50% or greater in
Period,
• Keyphasor transducer is not failty,
• Keyphasor signal is not greater than 20 kHz.

Effective Date:03/24/20 Page 61 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

9.2 Software Diagnosis

a. Connect the Programmer Laptop to the Rack ICSS

b. Log in with authorized priviledge ICSS

c. Go to Start > All Programs > 3500 Software > Rack Configuration Software. ICSS

The screen below will open

Effective Date:03/24/20 Page 62 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Connect the computer to the rack via interface module - Transient Data Interface ICSS
(TDI) either by using;

• RS232 (DB 9) cable between computer and the CONFIGURATION PORT in

front of the Rack Interface Module,

• Straight RJ45 ethernet cable between ethernet port of the computer and
ethernet port in the back of the Rack Interface Module.

e. Next click on the ‘Connect’ button near the top of the screen (the button with the blue ICSS
and orange horizontal arrows).

Click - Connect - Direct (for serial communication)

- Network (for ethernet communcation)

f. Set the communication parameters; baud rate at default 38400, appropriate comm. ICSS
port, IP address, as applicable. Click 'Browse'.

g. When the equipment of interest appears on the 'Available Racks' window, highlight ICSS
the equipment by clicking on it, then stop browsing, click 'Connect' to access the BN
3500 rack. See picture below -

h. Click 'OK' when 'Connection established' window appears as shown below. ICSS

Effective Date:03/24/20 Page 63 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

i. After connection is established, click the ‘Upload From Rack’ button (shown ICSS
below). This will pull the configuration from the 3500 rack and display it within
the software screen so it can be viewed and/or changed.

CAUTION: ONLY UPLOAD DON'T DOWNLOAD...

The 3500 rack is an active machinery protection system,

improper or unapproved changes to the 3500 rack
configuration that are ‘DOWNLOADED’ to the 3500 rack
could cause a MACHINE TRIP and PHYSICAL HARM to
the machinery and/or life and body parts. Approval must
be given as per the Work Management System and
appropriate MOC documentation completed prior to any
changes to the 3500 rack configuration and
subsequent DOWNLOAD to the 3500 rack.

CAUTION: This exercise explains only uploading FROM the 3500

rack, not downloading TO the 3500 rack. The difference is
important to understand. If there is any uncertainty in the
procedure at all, the process should be halted and help
sought from plant maintenance personnel who have a
better understanding of the process.

j. After the upload is complete, click the ‘OK’ button. ICSS

k. Verify the uploaded rack configuration by comparing the physical modules with the ICSS
logical modules uploaded.

The uploaded rack should appear like the rack being checked - same number/types
of modules as well as module spaces not used. Example below is East Siemens BN
rack 1 with 15 slot.

Effective Date:03/24/20 Page 64 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

l. Verify date and time. ICSS

on the menu bar, go to utlities > Date and time

Verify that computer date and time matches those for the rack. If there is a variance,
update the rack with correct time.

m. Click software switches and confirm if any point is on bypass ICSS

Go to Utilities>software switches

Use the dropdown button, select the slot and view module and channel switches for
each slot

E.g 4:/42m Proximitor/Seismic Monitor

Effective Date:03/24/20 Page 65 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) E.g 4:/42m Proximitor/Seismic Monitor ICSS

Display Module switches

2) Display: Channel switches ICSS

n. Repeat step 8 for each module in the dropdown box ICSS

Effective Date:03/24/20 Page 66 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

o. Verify status of modules in each slot of BN3500 configuration rack to confirm NO ICSS
Alarm.

On the configuration rack above,Right click each of the slot and select verification to
confirm status of each slot

1. Point to module slot>right click>verification

2. Use the dropdown button on each slot to select channel to view.

3. Observe the status of all the channels on each slot and record findings
1) Transient Data Interface - TDI [3500/22M] ICSS

Effective Date:03/24/20 Page 67 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Proximitor/Seismic Monitor [3500/42M] ICSS

Use the dropdown button on each slot to select channel to view.

3) Standard Relay Module[3500/32M] ICSS

Use the dropdown button on each slot to select channel to view.

Effective Date:03/24/20 Page 68 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) Communication Gateway [3500/92M] ICSS

Use the dropdown button on each slot to select channel to view.

5) Keyphasor Module [3500/25] ICSS

Use the dropdown button on each slot to select channel to view.

Effective Date:03/24/20 Page 69 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

6) Channel Relay Module [3500/32] and [3500/33] ICSS

Use the dropdown button on each slot to select channel to view.

p. Record and report any problem or discrepancy and generate a work order as ICSS
necessary.

q. Exit the Configuration software ICSS

9.3 Identification of Forces in Program

a. 4:/42m Proximitor>Seismic Monitor ICSS

Display Module switches

Effective Date:03/24/20 Page 70 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Display: Channel switches ICSS

c. Repeat steps 1 and 2 in all applicable modules. ICSS

d. If force point(s) exist, following the steps 1 to 3, match each with an approved ICSS
bypass certificate.

e. Remove any forced point that is not approved. ICSS

End of Task

Effective Date:03/24/20 Page 71 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

10.0 6M ICS Complete Inspection & Diagnostics: GE Fanuc 90-30 PLC System

Complete the following steps to perform 6M ICS Complete Inspection & Diagnostics of the GE Fanuc 90-30
PLC to check the complete system for active alarms and faults.

Step Action / Remarks Who

10.1Hardware Diagnostics
a. Observe the Status indicators on the GE Fanuc controller for normal indications as ICSS
follows:

• OK LED = ON (The controller is in good working condition)

• RUN LED = ON (The Controller is in Run mode).
• BATT LED = OFF (Battery is in good working condition)
• PWR LED = ON

Effective Date:03/24/20 Page 72 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
10.0 6M ICS Complete Inspection & Diagnostics: GE Fanuc 90-30 PLC System (Continued)

Step Action / Remarks Who

b. Check the power supply to the PLC ICSS

Check and confirm the status of battery. Replace if it shows sign of deterioration or
BATT LED is illuminated.

Effective Date:03/24/20 Page 73 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Observe the Status indicators on the GENIUS Analog Input block for normal ICSS
indications:

Status: steady green for normal

Effective Date:03/24/20 Page 74 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Observe the Status indicators on the Digital Input Module ICSS

Status: steady green for normal

Effective Date:03/24/20 Page 75 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Observe the Status indicators on the Analog Output Module ICSS

Status: steady green for normal

Effective Date:03/24/20 Page 76 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Observe the Status indicators on the Digital Output Modules ICSS

Status: steady green for normal

10.2Software Diagnostics
a. Connect the serial communication port on the CPU Module with the serial ICSS
communication (COM1) port of the Maintenance Laptop.

CAUTION: When plugging communications cable to CPU port –

Ensure perfect alignment of slots and pins to avoid
damage to the port.

Effective Date:03/24/20 Page 77 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Start up Logicmaster 90-30 software: ICSS

§ At the window screen press:

Start>All Programs>PLC Programmer>LM9070>Logicmaster 90-30

c. Press (F1)……Logicmaster 90 Programmer Package. ICSS

(This opens the program (in the laptop) that matches the running program
in the PLC and connect automatically with the PLC in monitor mode)
It is assumed here that the laptop is the one dedicated for use on the system and
therefore must have been pre-loaded with the projects for the unit.

d. Press Status (F3) to view the PLC control and status. ICSS

Effective Date:03/24/20 Page 78 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Press PLC Fault Table (F3). ICSS

f. Record the information that is displayed on the screen. ICSS

g. Press F9 to clear the PLC fault table and avoid information overflows. ICSS

To clear the PLC fault table, the programmer must be in the Online mode.

h. Press 'Esc' to get back to main menu ICSS

i. Press (F2)……Logicmaster 90 Configuration Package ICSS

Effective Date:03/24/20 Page 79 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

j. Press (F7)…………Programmer Mode and Setup ICSS

k. Press (F2)…………Set Prgmr Mode (Offline/Monitor/Online) ICSS

Effective Date:03/24/20 Page 80 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

l. Select Online, use the tab key cursor position, then press Enter. ICSS

m. To display the I/O fault table, from the PLC CONTROL AND STATUS screen Press ICSS
I/O Fault (F4).

n. Record the information that is displayed on the screen, and clear the fault table ICSS
to avoid information overflows.

Note: The Zoom (F10) enables you to obtain additional information pertaining
to each fault listed by placing the cursor on a particular fault and pressing
Zoom (F10).

Effective Date:03/24/20 Page 81 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

o. To exit the Logicmaster 90-30 software. Press ESC and at the prompt, select ICSS
Y.
p. Check for forces on the I/Os by visually inspecting for blinking LED on the I/O ICSS
block.

End of Task

Effective Date:03/24/20 Page 82 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

11.0 6M Inspection & Diagnostics: GE PAC 8000 PLC System

Step Action / Remarks Who

11.1 Hardware Diagnosis

a. Check the power supply. ICSS

Confirm incoming power supply - 230VAC

Confirm PLC power supplies 24/12 VDC distribution

Confirm bulk power supplies 24 VDC distribution

Effective Date:03/24/20 Page 83 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
11.0 6M Inspection & Diagnostics: GE PAC 8000 PLC System (Continued)

Step Action / Remarks Who

b. Confirm LED Indicators on the front of the controller. These provide indication of both ICSS
health condition.

c. The table below gives interpretation of the status of the controllerbased the indicator states. ICSS

LED Name Color On Off Flashing

Power Green Power Ok No Power -
Master Yellow Master Standby -
Healthy Yellow Healthy Not Healthy Refreshing
Fault Red Failed Ok Starting
Failsafe Red Failsafe Mode Ok No control
LAN A Yellow Ok Not in use Fault
LAN B Yellow Ok Not in use Fault
COM 1 Yellow Ok Not in use Fault
COM 1 Yellow Ok Not in use Fault
A-B Link Yellow Ok Not in use Fault
Rail bus Yellow Ok Not in use Fault

Effective Date:03/24/20 Page 84 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Confirm module status. ICSS

e. Confirm LED Indicators on the front of the modules - Analogue Input modules ICSS

LED Name Color On Off Flashing

Power Green Power Ok No Power -
Open circuit sensor Open circuit sensor
Status Yellow Sensor loop OK and channel and channel active
inactive OR Error condition
Failsafe
A/D error on AI
Fault Red Normal Initialization error
BFP failure on 2/2
AI

If any fault condition is observed, consult the appropriate OEM manual to clear fault and report
in a corrective work order.

Effective Date:03/24/20 Page 85 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Confirm LED Indicators on the front of the modules - Digital Input/Output modules ICSS

LED Name Color On Off Flashing

Power Green Power Ok No Power -
Channel input
Status Yellow Channel input “low” -
“high” or latched
Failsafe
A/D error on AI
Fault Red Normal Initialization error
BFP failure on 2/2
AI

If any fault condition is observed, consult the appropriate OEM manual to clear fault
and report in a corrective work order.

11.2 Software Diagnosis

a. To view the system diagnostics, go to the Overview screen, select System ICSS
Diagnostics.

b. The appears as shown below. ICSS

c. On the diagnostics screen, confirm the following information: ICSS

• Health status of all controllers

• Communication status of the HMI
• Communication status of PLC
• Power supply redundancy status
• Health status of all IO Cards
• Option to exit fail safe mode.

N.B. Green icon beside a parameter indicate 'Ok' status.

If any fault condition is observed, consult the appropriate OEM manual to clear fault
and report in a corrective work order.

End of Task

Effective Date:03/24/20 Page 86 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

12.0 6M Inspection & Diagnostics: HIMA PLC System

12.1 Activity will be done when there is available competency and software access tools to the PLC.
13.0 6M Inspection & Diagnostics: Mitsubishi PLC System

13.1 Activity will be done when there is available competency and software access tools to the PLC.
14.0 12M ICSR Management Communication

Step Action / Remarks Who

14.1 Open annual management communication native file [word document] for the ICSS
previous year:

I:\MPN\ORG\AFSS & DCS\.I C S R\2019 UN PCS SECURITY DOCUMENTS\2019

ICSR ANNUAL COMMUNICATION

14.2 “Save as” annual ICSR management communication in the folder for the year in view ICSS
i.e. current year.

14.3 Review previous and current Industrial trends and ICSR Management communication to the ICSS
Work force.

Sample of ICSR management communication is shown below.

Effective Date:03/24/20 Page 87 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
14.0 12M ICSR Management Communication (Continued)

Step Action / Remarks Who

14.4 Logon to ICSR share team site, review and get update on latest cybersecurity ICSS
happenings worthy of sharing.

ICSR Share team site:

https://ishareteam1.na.xom.com/sites/EMPC0741/Default.aspx

Cybersecurity:
https://ishareteam1.na.xom.com/sites/EMPC0741/SitePages/CyberSecurity.aspx

Vulnerability Notifications:
https://ishareteam1.na.xom.com/sites/EMPC0741/Vulnerability%20Notifications/For
ms/AllItems.aspx

Announcements:
https://ishareteam1.na.xom.com/sites/EMPC0741/Lists/ICSR%20Announcements/All
Items.aspx

14.5 Obtain additional inputs from; ICSS

• PCS Supervisor ·
• Instrument and Controls Supt.
• In-Country ICSR Lead

14.6 Update the word document ICSR annual management communication one pager for ICSS
review by the following: ·

• PCS Supervisor ·
• Instrument and Controls Supt. ·
• In-Country ICSR Lead
• UN MICE Manager

14.7 Obtain DocuSign approval from: ICSS

• General Manager UN JV Operations

• General Manager UN DW Operations

14.8 Work with the Secretary to General Manager UN JV Operations and Publish as Inter ICSS
Office correspondence

14.9 Obtain meeting attendance register from location/work center Superintendents and ICSS
Offshore Installation Managers (OIMs) to cover at least two rotations of workers
where the ICSR annual management communication was discussed

Effective Date:03/24/20 Page 88 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
14.0 12M ICSR Management Communication (Continued)

Step Action / Remarks Who

14.10 Save the attendance registers on I-Drive. ICSS

I:\MPN\ORG\AFSS & DCS\.I C S R\2019 UN PCS SECURITY DOCUMENTS\2019

ICSR ANNUAL COMMUNICATION

End of Task

Effective Date:03/24/20 Page 89 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

15.0 12M External Network Certification

Step Action / Remarks Who

15.1Verification of Work Activity

a. Confirm from EMIT External Network Certification website that the current year’s ICSS
certification has not been done already. This is normally indicated by date on the
portal.

Link to ENC Portal

b. Blank form

c. Insert the tracking number for the network you require certification for and click ICSS
“search” on the top left-hand corner.

Effective Date:03/24/20 Page 90 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
15.0 12M External Network Certification (Continued)

Step Action / Remarks Who

d. Form with Tracker Number, for e.g. BRT, inserted: ICSS

Note: Networks that had gone through EMIT Certification process and had been
certified are already in EMIT’s annual re-certification program and are triggered
automatically every year.

e. Confirm Business Re-certification Date on the search result above.

f. If the network had been re-certified, go to Section 15.2b

15.2Authorization of Work Activity and Documentation

a. If the re-certification had passed due date, call EMIT helpdesk to RAISE Workorder
for the re-certification process to commence.

EMIT Network Certification team will send an email to JVO management (DOAG 7)
for approval of re-certification. When approval is obtained, network will be
re-certified.

b. Look out for a notification email from EMIT when network is re-certified.

c. Copy and save re-certification information from the portal in assigned folder in PCSG
shared LAN drive.

I:\MPN\ORG\AFSS & DCS\.I C S R\”year” UN PCS SECURITY DOCUMENTS\”year”

NETWORK CERTIFICATIONS - EXTERNAL - EKPE

Where “year” refers to year of re-certification.

Effective Date:03/24/20 Page 91 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
15.0 12M External Network Certification (Continued)

Step Action / Remarks Who

d. Repeat the process during next annual re-certification exercise

End of Task

Effective Date:03/24/20 Page 92 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

16.0 12M Update UN ICS BCP/DR Plan Critical lists

Step Action / Remarks Who

16.1 Ensure the annual workorder has triggered in IPES for the task. ICSS

16.2 Notify PCSG supervisor to include in planned weekly schedule. ICSS

16.3 Change the review date on the top left-hand corner of the document to current date. ICSS

16.4 Verify that the document UN-ICS-PR-06-01a,b,c,d,e_BCP,DRP_Critical Lists ICSS

contains the following critical lists:

• List of Critical Systems with initial risk level at medium

• List of Critical Personnel
• List of Critical Backup Personnel
• List of Critical Vendors
• List of Critical Documentation

16.5 Confirm from the “Advanced System Security Evaluation Tool” (ASSET) web-based ICSS
application that there are/are no new risk assessments with initial risk level of
“medium”.

Note: ASSET is the web-based tool for ICSR Risk Assessment.

16.6 If new risk assessments with initial medium risks are available, add those risk ICSS
assessments to the list of critical systems

16.7 Look through the List of Critical Personnel documented by locations and verify that ICSS
there was no personnel movement changes since the last update period.

If there was, edit the sections accordingly.

16.8 Look through the List of Critical Backup Personnel documented by locations and ICSS
verify that there was no personnel movement changes since the last update period.

If there was, add/delete the personnel accordingly.

16.9 Look through the List of Critical Vendors and verify that there was no 3rd Party ICSS
personnel changes since the last update period. The verifications include:

• Using phone calls with the documented phone numbers to contact personnel to
confirm continued support and availability.
• Emailing the vendor’s personnel using documented email addresses to verify
correctness.
• Adding any new vendors supporting any critical systems to the list, including
their contact information.

If there are changes in personnel and their contact information, update accordingly.

Effective Date:03/24/20 Page 93 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
16.0 12M Update UN ICS BCP/DR Plan Critical lists (Continued)

Step Action / Remarks Who

16.10 Look through the List of Critical Documentation to confirm that: ICSS

• For each system, necessary documentation are available for references and
systems’ support.
• Links to the storage directory are correct and valid
• All critical systems documentation are listed in the Critical Lists Documentation.

If there are changes, update accordingly.

16.11 Save the document (in PDF) with the current date in shared LAN folder designated ICSS
for this purpose.

I:\MPN\ORG\AFSS & DCS\.I C S R\"year" UN PCS SECURITY

DOCUMENTS\"year" BCP_DRP Critical Lists Update

Where “year” is the year under review.

End of Task

Effective Date:03/24/20 Page 94 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

17.0 24M ICS BCP/Disaster Recovery and Cybersecurity Emergency Response Plan
Test

Step Action / Remarks Who

17.1Planning and Verification of Work Activity

a. Select a credible scenario for the table-top test to include, but not limited to fire, explosion, ICSS
localized flooding, widespread process control equipment damage, process control
operating system virus, worms and intrusion, as well as cybersecurity exposure and 3 rd Party
services.

b. Set up a team for the table-top exercise including PCSG personnel, EMIT (if required), field ICSS
operations, electrical and instrumentation/DCS techs., OIMs and Mtce Supervisors, and
other relevant personnel.

c. Obtain approval and inform participants of dates, location and timing for the exercise. ICSS

17.2Table-Top Test Documentation

Follow the process below to document the table top test. ICSS

a. Title: ICSS
ICS Disaster Recovery and cyber Security Emergency Response Plan
Event Log

b. Event Name: ICSS

This is the event name you are documenting. e.g.

Randomly Accessed Trojan [RAT] infiltrated through the L4 network and attacked the Safety
Instrumented System [SIS] resulting in extended production outage.

c. Event Date: ICSS

Not applicable for simulated events.

d. Description: ICSS

Describe in appropriate detail the nature of the event including an overview of

affected process equipment, affected process control equipment and initial outlook
on recovery efforts both for the process as well as process control.
e. Sequence of Events: ICSS
Describe the sequence of what happened or may happen.
f. Restoration Efforts: ICSS
Describe the effort needed from all relevant personnel to bring back the system to
service. This must include work management processes and timelines.

Effective Date:03/24/20 Page 95 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
17.0 24M ICS BCP/Disaster Recovery and Cybersecurity Emergency Response Plan Test
(Continued)
Step Action / Remarks Who

g. Evaluation: ICSS
Attach equipment list for affected location(s). List the process control equipment that was
damaged or affected including an initial assessment of availability of replacement parts and
software backups (if applicable). Example below.

Example:

Process Control Equipment Damaged or Affected

• Equipment Hardware

• Replacement Source

• Time to Receive Hardware

• Time to Restore Equipment

h. List the process control functions that are adversely affected or unavailable to ICSS
manufacturing, the equipment needed to restore the function and the approximate
date when manufacturing will be capable of using the function

Example:

Process Control Functions Affected

1. Function

2. Equipment Needed

3. Date Required by Operation/other Groups

i. Contacts and Initial Communications ICSS

List all personnel and organizations contacted:

Example:
• Person

• Organization

• Date

• Notes

Effective Date:03/24/20 Page 96 of 285 Author: ASIAN, MICHAEL A.

j. Recovery Prioritization: ICSS

List the equipment/functions to be restored in order of priority.

Example:

• Equipment
• Function
• Notes

k. Plan: ICSS

List the steps required to recover all necessary process control functions. Include equipment
and backup media which are needed, the source of the equipment, timing and man-power
requirements.

Example:

Situation-Specific Recovery Plan

§ Steps

§ Responsibility

§ Completion Targets

l. Follow-up: ICSS

After recovery has been completed, list any follow-up items and describe any
learnings or process improvements.
m. Recovery Objective: ICSS

Describe the expected recovery time.

n. Recovery Results: ICSS

Describe recovery time for this event.

Effective Date:03/24/20 Page 97 of 285 Author: ASIAN, MICHAEL A.

o. Documented By: ICSS

List of personnel involved in the test

• Example: Name

• Relevant Expertise (e.g. Instrumentation Tech.)

p. Approvals: ICSS

List reviewers and approvals personnel

Example:
• Documented by: ICSR Security Contact

◦ Sign:

◦ Date:

• Reviewed by: PCSG Supervisor

◦ Sign:

◦ Date:

• Reviewed by: Instrumentation & Controls Supt.

◦ Sign:

◦ Date:

• Approved by: Asset AOM

◦ Sign:

◦ Date:

q. Route the approval on DocuSign. ICSS

r. Document the test and reviews/approval in PCSG shared LAN folder named, “year” BCP_DRP ICSS
TEST DOCUMENTS.

Where “year” is the year under review.

End of Task

Effective Date:03/24/20 Page 98 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

18.0 36M Control Panel Maintenance

Step Action / Remarks Who

18.1Visual Inspection
a. Ensure that the ICS components are tagged with respective IPES tags, tags are ICSS
securely attached, legible, and correct.

• Secure the tag if loose.

• Replace the tag if damaged, illegible, or incorrect.

b. Check mechanical mounting integrity for damage. ICSS

c. Check for physical damage / corrosion on the panel. ICSS

d. Inspect fan / filter for proper air flow. ICSS

e. Inspect door seals and cable gland. ICSS

f. Check for liquid ingress. ICSS

g. Check / replace desiccant pack or (corrosion) vapor corrosion inhibitor. ICSS

h. Ensure that there are no unjustifiable jumper[s] / hardware override[s] installed. ICSS

i. Check for proper panel and enclosure lighting/illumination. ICSS

18.2Check Power Supply

a. Check for adequate incoming and system power. ICSS

1) Verify that AC/DC power quality is within manufacturer's recommended ICSS

tolerances.

b. Check for loss of redundancy, where redundant power supply is provided. ICSS

c. Verify the integrity of (Memory Back-up / Main) battery, where applicable. ICSS

18.3Inspect Wiring
a. Check for loose wire connections. ICSS

CAUTION: This activity can be deferred to an appropriate shutdown window if

there is potential to cause an outage from checking for loose
connections.

b. Check for loose modules or relay not seated properly. ICSS

18.4Verify Grounding
a. Verify that ground (earth), bonding, and other connections are secure and corrosion ICSS
free.

Effective Date:03/24/20 Page 99 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
18.0 36M Control Panel Maintenance (Continued)

Step Action / Remarks Who

b. Check the grounding cable integrity. ICSS

Use the lowest ohms setting. Touch the multimeter's Black lead to a grounded metal
surface of the Panel and touch the Red lead to each wire of the circuit.

A meter reading of infinity, O.L. (Open Loop) indicates an open circuit with no path to
ground; that indicates a good ground.

c. Check the functionality of the ground fault detector where available. ICSS

18.5Panel Drawing Verification

a. Ensure that the most recent version of the control system documentation is readily ICSS
accessible to authorized personnel.

Documentation may include but is not limited to the following:

• Ladder logic
• Flowcharts
• Control schematics
• Instrument Loop Drawing
• System Architecture Drawing
• Electrical Wiring Drawing

b. Ensure that the documents are the latest revision with all modifications captured. ICSS

c. Ensure that security procedures are sufficient to prevent unauthorized use. ICSS

Effective Date:03/24/20 Page 100 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
18.0 36M Control Panel Maintenance (Continued)

Step Action / Remarks Who

18.6Function Test Annunciation System

a. Perform panel lamp and alarm test. ICSS

• Observe Status of PLC modules during Lamp test.

• Replace dead bulbs or report for replacement.

b. Verify quality of power supply to the annunciator. ICSS

End of Task

Effective Date:03/24/20 Page 101 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

19.0 36M Workstations & Laptops Hardware Maintenance

Step Action / Remarks Who

19.1Hardware Maintenance - External

! IMPORTANT: Prior to performing this task, ensure that there will be no

adverse effect to operations throughout the duration of this
task, since it requires taking Workstation offline.

a. Perform controlled shutdown of the ICSS

Workstation and isolate it from utility power.

CAUTION: Do not use the power button to perform forced or hard shutdown of the
Workstation to prevent damage of the hardware or corrupt the software.

b. Inspect the exterior of the system for any signs of physical damage and ICSS
wipe the exterior of the enclosure with a soft cloth.
c. Clean Workstation System Unit, Keyboard, Mouse, Monitor, Laptop. ICSS

Use portable electronics vacuum cleaners or de-ionized air blowers, paint brush or
toothbrush to clean any dust buildup inside and outside the casing, especially on the
input/output connection areas, is recommended.

d. Inspect the keyboard to ensure that no keys are sticking. If keys are sticky, it ICSS
may be necessary to replace the keyboard.

Effective Date:03/24/20 Page 102 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
19.0 36M Workstations & Laptops Hardware Maintenance (Continued)

Step Action / Remarks Who

19.2Hardware Maintenance - Internal

a. Ensure to make firm contact to a grounded metal to discharge static electricity from ICSS
yourself before opening the computer to avoid damaging the electronic cards.
Electrostatic discharge bracelet can be used shown below.

Effective Date:03/24/20 Page 103 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Using a vacuum cleaner, dust all the internal components of your computer with ICSS
short bursts of air. Soft paint brush or toothbrush can also be used for the task.
Gently dust the surface of the motherboard, memory, processor, fans, expansion
cards, fan filters and all ports. If the fans are hard to reach or extremely dirty, feel
free to remove them from the case for easier cleaning. If using the vacuum cleaner
try to stay at least a few inches away from the components.

Effective Date:03/24/20 Page 104 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Ensure that computer internal hardware components (e.g., RAM, plugs, etc.) are ICSS
evenly and firmly seated in their slots. Pay attention to component orientation.

d. Close back the computer cover, restore inputs/outputs and power ICSS
connections.

19.3PC- Power up and Diagnostic Utility

a. Verify that connections to any attached devices such as network cables, keyboard, ICSS
monitor, and mouse, as well as any device attached to the serial port, are firm and
tight.

b. Double-check that all power cables are properly connected to the system, the ICSS
monitor and peripherals, and their power sources.

Effective Date:03/24/20 Page 105 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Switch on the workstation and return to service. ICSS

If “system time invalid” error come up while booting up it means the onboard CMOS
battery needs to be changed.

Make replacement and power up the work and confirm normal operation is restored.

Complete the following steps to do a diagnostic test on the computer using

PC-Diagnostic Utility.

It is recommended to run PC diagnostics tests on the workstation after hardware

maintenance.

d. During Boot Up, press “F2” [for Dell Workstation] to go to the BIOS. ICSS

For workstation other than Dell, press the associated key on the keyboard to enter
BIOS e.g. “Delete” on Option Industrial Computer [Proplus 2000SB], etc.

Effective Date:03/24/20 Page 106 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Using the arrow keys scroll to EXIT on the menu and Navigate to DIAGNOSTIC ICSS
UTILITY.

f. Click enter on the Diagnostic Utility for it to open and run a PC-Diagnostic test on all ICSS
components of the computer.

Effective Date:03/24/20 Page 107 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

g. Do not touch the computer for a few minutes till all the Icons are highlighted. The ICSS
green indicator signifies that the system component is in good condition while the red
signifies which system component is in bad condition.

h. Return workstation to service. ICSS

End of Task

Effective Date:03/24/20 Page 108 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

20.0 36M Workstations & Laptops Software Maintenance

Step Action / Remarks Who

20.1 Software Maintenance Windows XP ICSS

a. Software Maintenance - Removing Unnecessary files ICSS

1) ICSS
Power on laptop/workstation and log on.

! IMPORTANT: There may be need to take “As Found” image and applications
backups before beginning software maintenance for restoration
purpose just in case necessary files are deleted by mistake.

Effective Date:03/24/20 Page 109 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
20.0 36M Workstations & Laptops Software Maintenance (Continued)

Step Action / Remarks Who

3) Manually remove all unnecessary files and folders from the computer. ICSS

Click Start | My Computer

Click Search | All Files and Folders and type: *.jpeg, *.jpg, *.mpeg, *.mov,
*.exe, *.dat, *.bat, *.wmv, *.wma, *.mp3, *.mp4, *.png, *.bmp etc.

· Files not used by the controls application(s).

· Games files and folders

· Personal folders manually created by users (not automatically

created by Windows operating system containing the user profile).

· User’s personal information, etc.

b. Software Maintenance – Disk Clean up. ICSS

Effective Date:03/24/20 Page 110 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) ICSS
Click on Start | Computer | Right Click on C Drive | Properties.

Effective Date:03/24/20 Page 111 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Click on General | Disk Cleanup and allow it to calculate amount of space to be free. ICSS

Effective Date:03/24/20 Page 112 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Select each of the check boxes in the “Files to delete” list in the Disk Cleanup dialog ICSS
box and click OK.

4) Click Yes, When Prompted. ICSS

· If you have more than one hard disk drive, repeat this process for each hard
drive.

· Click Reboot later when prompted to reboot, till all disks are
completed then manually reboot.

c. Software Maintenance – Setting up Virtual Memory. ICSS

Effective Date:03/24/20 Page 113 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click Start | Right Click My Computer | Properties. ICSS

2) Click on Advance | Settings under Performance. ICSS

Effective Date:03/24/20 Page 114 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Select Advance | Click Change under Virtual Memory. ICSS

Effective Date:03/24/20 Page 115 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) Untick Automatically manage paging file size for all drives, Select the Drive letter, ICSS
Select Custom size, and input both Initial and Maximum value size to be the same as
Recommended.
Then Click Set, Then Reboot the computer when prompted.

d. Software Maintenance – Deleting Account unknown profile. ICSS

Effective Date:03/24/20 Page 116 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click Start | Right-Click Computer | Click Properties | Click Advance Tab | Click on ICSS
Settings under User profiles.

Delete any Account Unknown user profiles. Click OK all the way to exit.

e. Software Maintenance - Windows event log review ICSS

1) Logon as a Windows Administrator. ICSS

2) Click Start | Settings | Control Panel | Administrative Tools | Event Viewer. ICSS

3) Select Application, then on the menu, click Action | Save Log File As. ICSS

Effective Date:03/24/20 Page 117 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) In the “Save Application As” dialog box, name the file using the format ICSS
Sitename_Computer Name_Log File type and click Save.

Save as file types include - .evt. .txt, .csv. Optionally, Action - Export list can also
be used to save as .txt. In total, about three file types (.evt, .txt, .csv) should be
saved for each event viewer group item (Application, Security, etc).

5) Repeat this action for all items under Event Viewer. Items of importance are ICSS
System, Security and Application.

6) Review the event logs for warnings and possible failure and recurring ICSS
problems.

f. Software Maintenance – Defragmentation and disk check ICSS

Effective Date:03/24/20 Page 118 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click on Start | Computer | Right Click on C Drive | Properties | ICSS

Click on Tools tab | Defragment now

Effective Date:03/24/20 Page 119 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Select Drive C | Click on Defragment disk, wait for the process to be completed, then ICSS
Click Close, when Prompted.

Effective Date:03/24/20 Page 120 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Click on Start | Computer | Right Click on C Drive | Properties | ICSS

Click on Tools tab | Check now…

4) Select both Check disk options and Click Start, then Click on Schedule disk check. ICSS

Effective Date:03/24/20 Page 121 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

5) Reboot the Workstation/Laptop and wait for the CHECK DISK process to complete. ICSS

20.2 Software Maintenance Windows 7 ICSS

a. Software Maintenance – Removing Unnecessary files. ICSS

1) Power on laptop/workstation and log on. ICSS

! IMPORTANT: There may be need to take “As Found” image and

applications backups before beginning software
maintenance for restoration purpose just in case
necessary files are deleted by mistake.

Effective Date:03/24/20 Page 122 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Manually remove all unnecessary files and folders from the computer. ICSS

Click Start | Computer

· Click on the search bar and type (case sensitive): *.jpeg OR *.jpg OR *.mpeg
OR *.mov OR *.exe OR *.dat OR *.bat OR *.wmv, *.wma OR *.mp3 OR
*.mp4 OR *.png OR *.bmp etc.

· Files not used by the controls application(s).

· Games files and folders

· Personal folders manually created by users (not automatically created by

Windows operating system containing the user profile).

· User’s personal information, etc.

Effective Date:03/24/20 Page 123 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Software Maintenance – Disk Clean up.

Effective Date:03/24/20 Page 124 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click on Start | Computer | Right Click on C Drive | Properties. ICSS

Effective Date:03/24/20 Page 125 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Click on General | Disk Cleanup and allow it to calculate amount of space to be free. ICSS

Effective Date:03/24/20 Page 126 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Select each of the check boxes in the “Files to delete” list in the Disk Cleanup dialog ICSS
box and click OK.

4) Click Delete Files, When Prompted. ICSS

· If you have more than one hard disk drive, repeat this process for each hard
drive.

· Click Reboot later when prompted to reboot, till all disks are
completed then manually reboot.

c. Software Maintenance – Setting up Virtual Memory. ICSS

Effective Date:03/24/20 Page 127 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click Start | Right Click Computer | Properties. ICSS

2) Click on Advance System Settings to open the System Properties dialogue box. ICSS

Effective Date:03/24/20 Page 128 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Click on Advance | Settings to open Performance options dialogue box. ICSS

Effective Date:03/24/20 Page 129 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) Select Advance Tab and Click Change under Virtual Memory . ICSS

Effective Date:03/24/20 Page 130 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

5) Untick Automatically manage paging file size for all drives, Select the Drive letter, ICSS
Select Custom size, and input both Initial and Maximum value size to be the same as
Recommended.

Then Click Set. Then Reboot the computer when prompted.

d. Software Maintenance – Deleting Account unknown profile. ICSS

Effective Date:03/24/20 Page 131 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

Effective Date:03/24/20 Page 132 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Delete any Account Unknown user profiles. Click OK all the way to exit. ICSS

e. Software Maintenance – Disk Defragmentation. ICSS

Effective Date:03/24/20 Page 133 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click on Start | Computer | Right Click on C Drive | Properties | ICSS

Click on Tools tab | Defragment now…

Effective Date:03/24/20 Page 134 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Click on Defragment disk if the fragmented percentage is greater than 0%. Wait for the ICSS
process to be completed, then Click Close.

f. Software Maintenance - Event Log Check ICSS

Effective Date:03/24/20 Page 135 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Type compmgmt.msc on the search tab as shown below and Click on the ICSS
result program as shown.

2) Select Application, then on the menu, click Action | Save Log File As. ICSS

Effective Date:03/24/20 Page 136 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) In the “Save Application As” dialog box, name the file using the format ICSS
Sitename_Computer Name_Log File type and click Save.

N.B.: Save as file types include - .evt. .txt, .csv.

Optionally, Action - Export list can also be used to save as .txt. In total, about
three file types (.evt, .txt, .csv) should be saved for each event viewer group
item (Application, Security, etc).

4) Repeat this action for all items under Event Viewer. Items of importance are ICSS
System, Security and Application.

5) Review the event logs for warnings and possible failure and recurring ICSS
problems.

g. Software Maintenance – Disk Check ICSS

Effective Date:03/24/20 Page 137 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Click on Start | Computer | Right Click on C Drive | Properties | ICSS

Click on Tools tab | Check now…

Effective Date:03/24/20 Page 138 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Select both Check disk options and Click Start, then Click on Schedule disk check. ICSS

3) Reboot the Workstation/Laptop and wait for the CHECK DISK process to complete. ICSS

End of Task

Effective Date:03/24/20 Page 139 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

21.0 36M Workstations & Laptops Image Backups Using Acronis 11.7

Step Action / Remarks Who

Reference: All work must be conducted in accordance with the Production ICSS
Best Practice (PBP) Work Management System Manual, latest
revision.

! IMPORTANT: Only use Acronis to back up computers that cannot be backed up using
Apricorn.

21.1 Sign out On-site Backup Hard Disk from Maintenance Supervisor/or ICSS
designate's office.

21.2 Logon to workstation with Admin Access ICSS

21.3 Confirm workstation date and time is correct ICSS

IF... THEN...

Date and Time is not correct Set correct date and time ICSS

IF... THEN...

Date and Time is correct Move to next step ICSS

21.4 Connect the Site Hard Disk to an Available USB port on the Workstation/Laptop ICSS

21.5 Double click on the Acronis Backup 11.7 shortcut icon on the Desktop or Click on Start/All ICSS
Programs, Select Acronis Folder. Then Click on Acronis Backup 11.7 to launch the backup
application.

Effective Date:03/24/20 Page 140 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
21.0 36M Workstations & Laptops Image Backups Using Acronis 11.7 (Continued)

Step Action / Remarks Who

21.6 Click on Manage this machine icon to connect the console to Acronis Backup Agent ICSS
installed on the PC.

21.7 Click on Back up now to carry out backup action. ICSS

Acronis Back up now – will display the screen shown below. ICSS

Hint: Follow graphical sequence from step 1-4.

Effective Date:03/24/20 Page 141 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

21.8 Click on Items to back up… to launch the Data to backup dialogue. ICSS

21.9 Select Disks/Volumes, then Click on the Name of the computer ICSS

• Check the box of the disk,

• Uncheck all USB interface connected disk,
• Then Click OK.

21.10 Click on Location on a dialogue box below; ICSS

Effective Date:03/24/20 Page 142 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

The following screen will appear; ICSS

Navigate following steps 1-4 shown above.

21.11 Select the Name tab, enter the name of the backup image, using the below naming ICSS
convention. Then Click Ok.

“SITENAME_SYSTEM NAME_ COMPUTER-MODEL_ BRIEF

DESCRIPTION_OPERATING SYSTEM-VERSION_DATE_ASLEFT”

E.g: NGAE_OWS 1_SCADA HMI_COMPAQ DESKPRO_WINDOW

XP_DDMMMYYYY_ASLEFT

Effective Date:03/24/20 Page 143 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

21.12 Set Backup type to Full and Parameters to Validate a backup as soon as it is ICSS
created. Then Click OK to begin the Backup process.

Hint: Follow graphical sequence step 1-3.

21.13 Confirm the Execution state shows Running with a percentage value as shown ICSS
below;

Effective Date:03/24/20 Page 144 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

21.14 View the completion status dialogue box to ensure there is no error. Then Click on ICSS
Close.

21.15 Go to "Recent activities" to verify Validation of the image backed up as shown ICSS
below.

21.16 Delete the .xml file (from the location where the backup is saved). ICSS

21.17 Disconnect Site Backup Hard Disk Safely from the USB port on the ICSS
Workstation/Laptop

21.18 Return workstation to service / Shutdown Laptop ICSS

End of Task

Effective Date:03/24/20 Page 145 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

22.0 36M Workstations & Laptops Image Backups Using Apricon EZ gig II

Step Action / Remarks Who

Reference: All work must be conducted in accordance with the Production

Best Practice (PBP) Work Management System Manual, latest
revision.

! IMPORTANT: Apricorn EZ True Image Backup Software is not used to backup

Computers with 64bits processors and 64bits Windows Operating
System.

22.1 Sign out On-site Backup Hard Disk from Maintenance Supervisor/or ICSS
designate's office.

22.2 Logon to workstation with Admin Access ICSS

22.3 Confirm workstation date and time is correct ICSS

IF... THEN...

Date and Time is not correct Set correct date and time ICSS

IF... THEN...

Date and Time is correct Move to next step ICSS

22.4 Connect the Site Hard Disk to an Available USB port on the Workstation/Laptop ICSS

Effective Date:03/24/20 Page 146 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
22.0 36M Workstations & Laptops Image Backups Using Apricon EZ gig II (Continued)

Step Action / Remarks Who

22.5 Run Apricorn backup software by clicking on the START >> All Programs >> ICSS
Apricorn >> Apricorn EZ Gig II. As shown below (Note steps 1, 2, 3 );

22.6 Click on Backup Image. ICSS

Effective Date:03/24/20 Page 147 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.7 Click on Next on the Create Image Wizard screen. ICSS

22.8 Tick the Disk 1 check box (to select all internal Hard disk partitions). ICSS

N/B: The naming of the partition will help to identify the correct disk number to select

Effective Date:03/24/20 Page 148 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.9 Navigate to where you want to save the backup image file. (Note steps 1, 2, 3, 4) ICSS

22.10 Select the Naming tab, enter the name of the backup image, using the below naming ICSS
convention. Then Click Ok.

“SITENAME_SYSTEM NAME_ BRIEF

DESCRIPTION_COMPUTER-MODEL_OPERATING
SYSTEM-VERSION_DATE_ASLEFT”

E.g: NGAE_OWS 1_SCADA HMI_COMPAQ DESKPRO_WINDOW

XP_DDMMMYYYY_ASFOUND

Effective Date:03/24/20 Page 149 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.11 Click on Next ("Use default options" radio button checked). ICSS

22.12 Click Next on the Archive Comments screen ICSS

Effective Date:03/24/20 Page 150 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.13 View the summary of the list of operations to be carried out, then Click Proceed to ICSS
begin the backup process

The screen below should appear next.

Effective Date:03/24/20 Page 151 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.14 View the completion status dialogue box to ensure there is no error. Then Click on ICSS
Ok.

22.15 Click "Explore and Validate Backup" Archives to validate backup image. ICSS

Effective Date:03/24/20 Page 152 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.16 Click Validate Backup Archive on the Manage Backup Archives screen. ICSS

22.17 Navigate to the location of the image, then Select the just backed up image and click ICSS
Next.

Effective Date:03/24/20 Page 153 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.18 Click Proceed to begin validation ICSS

Effective Date:03/24/20 Page 154 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

22.19 View the completion status dialogue box to ensure there is validation no error. Then ICSS
Click on Ok.

22.20 Disconnect Site Backup Hard Disk Safely from the USB port on the ICSS
Workstation/Laptop

22.21 Return workstation to service / Shutdown Laptop ICSS

End of Task

Effective Date:03/24/20 Page 155 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

23.0 36M Verification & Backup of Siemens Simatic S7-400 PLC System

Step Action / Remarks Who

23.1Back Up the Program

Complete the following steps to back up the program.

Ensure related software (e.g WinCC explorer, etc.) is closed. ICSS

a. Log on to the engineering workstation with authorized account ICSS

b. Connect approve hard drive to the work station ICSS

c. Follow the path shown below to access the Simatic manager; ICSS

d. When the 'SIMATIC Manager' screen comes up, click Cancel on the 'PCS 7
Wizard...' screen that displayes.

e. In the SIMATIC Manager environment, select and click on the following menu ICSS
command:

• File > Archive

• The "Archiving" dialog box displays.

Effective Date:03/24/20 Page 156 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
23.0 36M Verification & Backup of Siemens Simatic S7-400 PLC System (Continued)

Step Action / Remarks Who

f. On the "Archiving" dialog box that is displayed, switch to the 'Multiprojects' tab. ICSS

g. Select the project for archiving - the first option, QGFE ICSS
D:\Simantic\Projects\Qgfe_1\Qgfe, should be selected.

h. Click OK to save your inputs: ICSS

• The Archiving - Select Archive dialog box displays.

i. Create the settings for the archive file: ICSS

1) In the Save in list, select the drive and folder. ICSS

2) For File name, enter the name of the file where the data will be saved. ICSS

j. Click Save to save your inputs. ICSS

• The archive operation starts.

• The archive operation is complete when the Archiving dialog box closes.

Back up device database files (*.GSE files). ICSS

From C:\ Program file\Siemens\Step7\S7Data\GSD

k. Transfer the backups to NAS ICSS

End of Task

Effective Date:03/24/20 Page 157 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

24.0 36M Verification & Backup of Rockwell Automation ControlLogix PLC System

Step Action / Remarks Who

24.1Verification of Current Running PLC Project

a. Login to the programming workstation ( Laptop) with an authorized username and ICSS
password (Admin or maintennce priviledge).

b. Connect the site hard drive to the workstation. ICSS

c. Launch RSLinx classic from start>All programs > Rockwell Software>RSLinx ICSS
Classic

1) Refer to step [7.2a] to establish communication with PLC. ICSS

d. Connect the site hard drive to the laptop ICSS

e. Launch RSLogix 5000 from Start>All programs>Rockwell Software>RSLogix ICSS

5000 enterprise series>RSLogix 5000.

Effective Date:03/24/20 Page 158 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
24.0 36M Verification & Backup of Rockwell Automation ControlLogix PLC System (Continued)

Step Action / Remarks Who

f. Locate the previously backed up program of the controller with rungs comments. ICSS
Click on File> open from the Menu bar.

g. Select the appropriate RSLogix 5000 project for the controller and click on “Open” ICSS
button.

Effective Date:03/24/20 Page 159 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

h. From the communications menu, select who active. ICSS

i. Expand the communication driver to the level of the controller ICSS

Effective Date:03/24/20 Page 160 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

j. Select the controller and click on GO Online. ICSS

If the controller goes online without showing “the open project has offline changes
that aren’t in the controller” message, the program is verified.

If the controller shows “the open project has offline changes that aren’t in the
controller” message, an upload must be performed.

Click on Upload (name the file to be uploaded different from the offline file if you do
not want to replace the offline file) and wait to the uploading process to be completed

24.2Backup Current Running PLC Project

a. Select the controller and click on GO Online. ICSS

Effective Date:03/24/20 Page 161 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Click on File> save as from the Menu bar. ICSS

c. Name the file with the name of the original project name and save it in a folder that ICSS
can be name in this format
Sitename_PLCMaker_PLCservice_ASFound_dd/mm/yyyy. Copy this folder into the
Application folder (Application Backup\RAXXX\20xx\As_Found) of the site hard
drive.

For example:
TreatingPlant_AllenBradley_WaterTreatmentPLC_ASFound_dd/mm/yyyy

d. Click on Save. ICSS

e. A “tag value may have change since last save” message pops up. Click on YES. ICSS

f. Take the Laptop offline by clicking on Communications>Go offline from the menu ICSS
bar.

g. Exit RSLogix 5000 ICSS

Effective Date:03/24/20 Page 162 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

h. Copy out the verified .ACD PLC project file and save in authorized external storage ICSS
media following the backup process.

End of Task

Effective Date:03/24/20 Page 163 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

25.0 36M Verification & Backup of Allen Bradley SLC 5/03 PLC System

Step Action / Remarks Who

25.1Verify PLC Project

a. Go online folowing steps on [8.2]. ICSS

The offline project is verified as current if communication is established with PLC ICSS
without any display of mismatch message between the offline and the online project.

b. If a mismatch message appears, upload project to laptop. ICSS

! IMPORTANT: Do not replace the backup file with upload file. Save file following file
naming convention to specify date.

25.2Backup Current Running PLC Project

a. Complete Steps to verify the PLC program ICSS

b. Click on File> save_as from the Menu bar. ICSS

c. On the 'Save in' bar, browse to the storage file location. Click on save ICSS

d. Copy this folder into the Application folder (Application ICSS

Backup\RAXXX\20xx\As_Found) of the site hard drive.

Effective Date:03/24/20 Page 164 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
25.0 36M Verification & Backup of Allen Bradley SLC 5/03 PLC System (Continued)

Step Action / Remarks Who

e. Name the file with the name of the original project name and save it in a folder that ICSS
can be named in this format
Sitename_PLCMaker_PLCservice_ASFound_dd/mm/yyyy.

f. Take the programmer offline by clicking on Comms > Go offline from the menu bar. ICSS

g. Exit RSLogix 500. ICSS

End of Task

Effective Date:03/24/20 Page 165 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

26.0 36M Verification & Backup of GE Fanuc 90-30 PLC System

Step Action / Remarks Who

26.1Verify PLC Project

a. Connect to the PLC. ICSS

b. To verify the program: From Logicmaster 90 Programmer Package, press Utility ICSS
(F9).

c. Press F3…….Verify PLC Programmer ICSS

d. Scroll to ALL LOGIC BLOCKS and press tab to select Y, then press ICSS
Enter to start the verify function.

If the information being compared is the same, the screen prompts: "Verify
complete, no miscompares detected" and the program logic equality state
is set to EQUAL.

If the information being compared is not the same, the miscompares are
listed and the program logic equality state is set to NOT EQUAL.

e. Repeat the steps for verification of All Data Blocks and Configuration. ICSS

26.2Backup Current Running PLC Project

a. Complete task on PLC project verification. ICSS

b. From the Programming Software menu, press Folder (F8). ICSS

c. Press Backup (F4) to create a backup copy of the current selected ICSS
folder.

– Select the ENTIRE FOLDER and then press Enter.

The backup folder is located in a subdirectory under the program folder. The
Backup Destination field allows you to specify the location for the backup
copy. A message of backup completion is shown.
d. Copy the backup and save following the UN ICS backups management framework. ICSS

End of Task

Effective Date:03/24/20 Page 166 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

27.0 36M Verification & Backup of GE BN 3500 Vibration Monitoring System

Step Action / Remarks Who

27.1Verification of the configuration of Bently Nevada 3500 rack

a. Refer to section [9.2], software diagnosis, steps 1 - 11, for connection and access to ICSS
the BN 3500.

27.2Backup of the configuration of Bently Nevada 3500 rack.

a. Complete all the steps in the verification steps listed above to ensure that project is ICSS
verified

b. Click on the ‘Rack Information’ button. ICSS

Effective Date:03/24/20 Page 167 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
27.0 36M Verification & Backup of GE BN 3500 Vibration Monitoring System (Continued)

Step Action / Remarks Who

c. The following message appears asking if the rack configuration needs ICSS
to be downloaded again. Click ‘NO’ since the download has already
been done.

Effective Date:03/24/20 Page 168 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. The following message allows one to select which of the 4 information files ICSS
should be saved. Leave all 4 checked for this exercise.

e. Wait as the rack information is being saved ICSS

Effective Date:03/24/20 Page 169 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Once the rack information is saved click ‘OK’ ICSS

g. The rack information is saved in one specific location: ICSS

C:\3500\RackInfo\ (or whichever drive the software is installed on, i.e.
it could be D:\3500\RackInfo)

Effective Date:03/24/20 Page 170 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

h. Each time the ‘Rack Info’ button is selected, the 4 information files are ICSS
written to this location for the rack that is connected. These files can
then be saved on a specific location on the Hard Disk Drives.

i. Click on File> Save As. ICSS

Navigate to the Application folder on the site hard drive, give the file an appropriate
name (Sitename_EQUIPMENTSERVICE_DD/MM/YYYY) and click on Save.

For Example; QIT West Flare_FlareBlower_DD/MM/YYYY

j. Terminate communication with the rack by clicking on the Disconnect command in ICSS
the File menu.

k. Disconnect the configuring Laptop computer from the rack. ICSS

End of Task

Effective Date:03/24/20 Page 171 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

28.0 36M Verification & Backup of GE PAC 8000 PLC System

Step Action / Remarks Who

28.1 Log out the operator and log on to the application software with authorized ICSS
password.

28.2 Exit the running iFIX software. In the Proficy iFIX Startup window. Use ALT+Tab till ICSS
the icon below appear. Select Options →Shutdown iFIX.

Wait until the iFIX shuts down completely.

28.3 Log of operator from the operating system and log on with authorized password ICSS

28.4 Launch (double click) Windows XP icon on the HMI (Windows XP lunches on ICSS
VMware)

28.5 Authorization access window opens. Enter the appropriate username and password ICSS
to progress.

28.6 On the (VM ware) Windows XP screen, double click Workbench to launch it. ICSS

28.7 Click Connect on the selected option, on the pop-up window. ICSS

28.8 Select (on the top bar) Tools > Administrative Tools > Backup/Restore Project > ICSS
Backup Project

Effective Date:03/24/20 Page 172 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
28.0 36M Verification & Backup of GE PAC 8000 PLC System (Continued)

Step Action / Remarks Who

28.9 The Project Backup form appear as shown below. ICSS

28.10 Click on Start Backup ICSS

28.11 When the backup is complete, click Close on the Project Backup form. ICSS

Note: The Workbench checks for available disk space before performing backups
and restores. A warning message is displayed if there is a limited amount of space
available. You can choose to ignore this warning and continue with operation, if
desired.

The Workbench performs the following steps for the backup -

• Attaches to the database and creates a backup of the project database. This file
is named xxx.bu (where xxx is the project name and the file is created in the
project's directory),
• The Workbench automatically compresses the project files into a single .zip file.
This .zip file is date and time stamped in the title. The naming convention for this
file is MPNU_<Projectname>_YYYY_MM_DD_HH_MM_SS.zip, indicating year
(YYYY), month (MM), day (DD), hour (HH), minute (MM), second (SS), refering
to the time and date the backup was done,
• As the backup procedure progresses, the status bar at the bottom of the form
shows the current step,
• Following a successful backup, a message indicating same is displayed in the
status bar and logged to the event viewer.

28.12 Move the backup to a safe location following UN Backup Process ICSS
(UN-ICS-PR-06-04). It is necessary to copy only the zip file -
MPNU_<Projectname>_YYYY_MM_DD_HH_MM_SS.zip

End of Task

Effective Date:03/24/20 Page 173 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

29.0 36M Verification & Backup of Mitsubishi PLC System

29.1 Activity will be done when there is available competency and software access tools to the PLC.
30.0 36M Verification & Backup of HIMA PLC System

30.1 Activity will be done when there is available competency and software access tools to the PLC.
31.0 36M Verification & Backup of Siprotec PLC System

Step Action / Remarks Who

31.1 Sign off Siemens laptop from Maintenance Supervisor/or designate's office. ICSS

31.2 Log on to the laptop with authorized access name and password. ICSS

31.3 Create a folder in the general material folder, into which the configuration files will be ICSS
saved, using the approved naming convention. See sample below.

As shown in the second picture, the folders - QGFE_SIP\GT1\LHS, RHS (for left and ICSS
right hand side PLCs when facing the PLC cabinet), is created inside the folder
QGFE_SIPROTEC_BACKUP_ASFOUND_16NOV2019 in the path
D:\General_Materials\PROJECT_Backup\SIPROTEC

31.4 Connect laptop to PLC using RS232 male to female cable connector. ICSS

Effective Date:03/24/20 Page 174 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
31.0 36M Verification & Backup of Siprotec PLC System (Continued)

Step Action / Remarks Who

31.5 The access software to siprotec PLC is DIGSI V4.88. ICSS

Navigate to the software from the start button as shown below and then click on it.

Effective Date:03/24/20 Page 175 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

31.6 On the DIGSI Manager page that opens, Click File > New ICSS

31.7 On the window that pops up, populate the name (e.g GT1 for East SGT). For storage ICSS
location, browse to the appropriate folder created in step 31.3. Click Ok.

Effective Date:03/24/20 Page 176 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

31.8 Select and click Device -> DIGSI (Plug & Play). ICSS

31.9 Select type - SIPROTEC 4 and click OK on the next screen. ICSS

31.10 Setup the parameters; Connection type – Direct, PC Interface – COM 1, Frame – 8 ICSS
E (ven)1 (as shown below) and click OK;

Effective Date:03/24/20 Page 177 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

31.11 Confirm 'Connecting' to device is displayed. ICSS

31.12 When connection is established, confirm 'Online' indication on the bottom right hand ICSS
side of the screen.

31.13 Select and click on File > Save to transfer parameters to PC. ICSS

31.14 Confirm 'Transfer' of settings is displayed. ICSS

Effective Date:03/24/20 Page 178 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

31.15 When transfer of setting is completed, make soft disconnection (select and click ICSS
Device > Switch Off-line) then disconnect communication cable.

31.16 Confirm the parameters and setings are save to the PC. ICSS

31.17 Copy out to external hard drive and follow the ICS backup procedure to backup the ICSS
most current SIPROTEC PLC configuration parameters.

End of Task

Effective Date:03/24/20 Page 179 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

32.0 36M Verification & Backup of MOOG Servo Controller

Step Action / Remarks Who

32.1 Login to the programmer with an authorized username and password. ICSS

32.2 Connect the serial port COM 1 of the programmer to the serial port of the Moog ICSS
controller using the a crossed serial cable

Effective Date:03/24/20 Page 180 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
32.0 36M Verification & Backup of MOOG Servo Controller (Continued)

Step Action / Remarks Who

32.3 Launch MOOG Windrive from Start>All programs > Moog WinDrive>WinDrive ICSS

A “Communication Port” dialog box below pops up

Effective Date:03/24/20 Page 181 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

32.4 Select the communication port number of your programmer (usually comm 1) Under ICSS
the "Port" section of the dialog box.

32.5 Select "RS-232" Under the “Rec. Standard” section of the dialog box and click Ok.

The MOOG WinDrive main window appears.

32.6 Verify active communication between the Moog controller and the programmer by ICSS
observing the “configure” and “online” message at the bottom status bar of the Moog
main window as shown above.

Effective Date:03/24/20 Page 182 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

32.7 Observe the fault status of the Moog controller by looking at the fault message ICSS
located on the upper status bar of the Moog Windrive main window as shown below.

32.8 Upload the Moog controller configuration by clicking on File>Configuration Upload. ICSS

A “Configuration Upload” dialog box appears.

The dialog box is used to perform a configuration upload of several controller

parameters to a Log file on the programmer.

Most of the field values contained in this dialog will appear as comments in the log
file generated.

32.9 Type in a suitable but brief file name that reflects the location and service of the ICSS
Moog controller.

! IMPORTANT: • The file name must not be more than 8 characters long.
• The .Log extension must be attached to the filename and it does
not constitute part of the 8 characters.

Effective Date:03/24/20 Page 183 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

32.10 Type in the company name (MPN) and click ok. All other fields are automatically ICSS
populated.

32.11 Wait for a while for the configuration parameters to appear on the left bottom pane of ICSS
the Moog main window.

Effective Date:03/24/20 Page 184 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

32.12 Connect the site backup hard drive to the programmer and click on "File>save" from ICSS
File menu.

The”File Save” dialog box appears.

32.13 Type in a suitable but brief file name that reflects the location and service of the ICSS
Moog controller.

• The file name must not be more than 8 characters long.

• The .mdl extension must be attached to the filename and it does not constitute
part of the 8 characters.

32.14 Browse to the application folder (Application Backup\RAXXX\20xx\As_Found) in the ICSS

site hard drive and click on save.

32.15 Repeat step 33.14 but replace the .mdl extension with .log extension. ICSS

Effective Date:03/24/20 Page 185 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

32.16 Exit the Moog Windrive Software. ICSS

End of Task

Effective Date:03/24/20 Page 186 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

33.0 36M Verification & Backup of OMNI Flow Computer System

Step Action / Remarks Who

33.1Verification of project
a. Connect serial cable where applicable to connect to the Omni Flow computers to the ICSS
configuration laptop.

b. Power up the configuration laptop and log on using your logon credentials or the Fire ICSS
Call (only where individual logon cannot be used).

Reference: Refer to UN-ICS-PR-04-03, for Fire Call Passwords

c. Launch Omnicom (Windows version) by clicking the icon located on the desktop. ICSS

Note: Alternatively, Omnicom can be launched from Start|All Programs|Omni Flow

Computers|OmniCom|OmniCom.

Effective Date:03/24/20 Page 187 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
33.0 36M Verification & Backup of OMNI Flow Computer System (Continued)

Step Action / Remarks Who

d. Click File|Open, and then browse to where the Omni configuration files are saved on ICSS
the laptop.

Note: QIT path is C:\omniflow\OmniCom\QIT\Condensate or CRUDE

QIT Condensate CNOMNI_A.o20 is opened below

e. Click Actions|Online… to access the Connect to Omni screen. ICSS

Note: It is assumed that the site and Omni has already been set up as shown
below. If the site and Omni have not been set up, raise a notification for setup

Note: Unless the method of communication changes, site(s) setup is a one-time

configuration and is out of scope for this procedure.

Effective Date:03/24/20 Page 188 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

f. Select the Omni that matches the one with the opened configuration in the step ICSS
above, and then click Connect.

The following screen displays, indicating that communication has been established
with the Omni

g. Use the WinPanel application (Actions|WinPanel) to verify that communications ICSS

have been established with the correct Omni. (Whatever action is completed in
WinPanel, such as clicking a button, will reflect physically on the Omni)

h. Close WinPanel after verification ICSS

33.2Backup of Omni Flow Computer System

a. Click Configure and receive the configuration from the Omni. ICSS

b. Under General Setup|System Date and System Time tabs, verify the Omni time ICSS
and date.

If not, enter the correct date and time, respectively. Verify the Omni Identification
information under the Setup tab

c. Click File|Save or click the diskette icon to save the configuration, overriding the ICSS
existing one on the laptop

! IMPORTANT: The laptop date and time MUST be correct prior to saving so that the
saved file will reflect the correct date and time stamp.

If the laptop date and time are incorrect, set them up correctly including
the correct time zone.

Note: Administrator or power user access level may be required.

Effective Date:03/24/20 Page 189 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Click Actions|Offline. ICSS

e. Repeat the above process to back up the configuration of the other Omni flow ICSS
computers

f. Click File|Exit to close the Omnicom application ICSS

g. Disconnect the serial cable from the laptop ICSS

h. Copy the folder with the configuration files from the laptop to the site portable PCS ICSS
backups hard disk drive, saving it to the following location:

SITE|APPLICATION BACKUPS|METERING SYSTEM|OMNI|YEAR|

End of Task

Effective Date:03/24/20 Page 190 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

34.0 36M Backup of Jiskoot AutoSampler Controller

Step Action / Remarks Who

34.1 Login to the programming tool with an authorized username and password. ICSS

34.2 Using corresponding access cable, make physical connection between the ICSS
programming tool (laptop, etc) and Jiskoot computer on the port shown -

Jiskoot connection point

34.3 Open HyperTerminal following the path below. ICSS

Jiskoot path

34.4 The screen opens as shown below; ICSS

34.5 Go to File>New Connections ICSS

34.6 Enter the connection description - name of file, choose telephone service (see ICSS
below). Click OK.

34.7 Enter further details for the connection. Choose the communication port as shown ICSS
below or any other available as applicable. Click OK.

34.8 Enter the "COM1 Properties" (or any other port choosen) as shown below. (Click ICSS
Restore Defaults for COM1)

34.9 After clicking "OK", the connection to the Jiskoot computer should be established. ICSS
Status is shown on the down left corner of the screen.

34.10 Confirm the screen accept character entry - type $, for e.g. ICSS

34.11 Commence Uploading Configuration file. Type BBSAVE and hit ENTER. ICSS

34.12 The screen below should appear - ICSS

34.13 Go to Transfer > Receive File. ICSS

34.14 In the Receive File pop up window, browse the location the configuration is to be ICSS
received at and choose the protocol - Kermit. (See below)

Effective Date:03/24/20 Page 191 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
34.0 36M Backup of Jiskoot AutoSampler Controller (Continued)

Step Action / Remarks Who

34.15 When file transfer is completed, disconnect communication and restore normal ICSS
working condition.

34.16 Store backups using the process outlined in the UN ICSR backup process. ICSS

End of Task

Effective Date:03/24/20 Page 192 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

35.0 PCS Backup of Intouch HMI Application

Step Action / Remarks Who

35.1 Log off “Operator” account and log on with a user right that has Windows ICSS
desktop access
35.2 Create a folder in C: drive of the workstation. ICSS

35.3 Launch Intouch: Start | All Programs | Wonderware | Intouch ICSS

35.4 ICSS
In the main window of InTouch, the name and path of the program would be
displayed as shown below, note it down.

Effective Date:03/24/20 Page 193 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
35.0 PCS Backup of Intouch HMI Application (Continued)

Step Action / Remarks Who

35.5 Right click on the project and click on Windows Maker. This will open Intouch ICSS
Windows Maker.

35.6 Close the Intouch "Windows to Open…” dialog box. Ensure that all the ICSS
other opened windows are closed.

Effective Date:03/24/20 Page 194 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
35.0 PCS Backup of Intouch HMI Application (Continued)

Step Action / Remarks Who

35.7 ICSS
Select File> Export Window…

An “Export to directory….” Dialog box pops up. Navigate to the folder that was
created in step b and click OK.

Effective Date:03/24/20 Page 195 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
35.0 PCS Backup of Intouch HMI Application (Continued)

Step Action / Remarks Who

35.8 A “Windows to Export…” dialog box pops up. Select all the windows for backup ICSS
and click OK.

35.9 Exit Windows Maker. ICSS

35.10 Navigate to the location of the folder were Wonderware windows were exported to. ICSS
Copy this folder into the Application Folder (Application
Backup\RAXXX\20XX\As_Found) in the site hard drive.

Effective Date:03/24/20 Page 196 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
35.0 PCS Backup of Intouch HMI Application (Continued)

Step Action / Remarks Who

35.11 Also navigate to the path where the project is located and copy project folder into the ICSS
Application Folder (Application Backup/20XX/As_Found) in the site hard drive.

35.12 Exit Intouch. ICSS

35.13 Store backups using the process outlined in the UN ICSR backup process. ICSS

35.14 Log off and log on as “Operator” for operations use. ICSS

End of Task

Effective Date:03/24/20 Page 197 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

36.0 36M Backup of WinCC HMI Application

36.1 Activity is managed through Verification & Backup of Siemens Simatic PCS7-400 PLC System
procedure. The backup method used also backs up WinCC HMI application.
37.0 36M Backup of iFIX HMI Application

Step Action / Remarks Who

37.1 Log in to the operator workstation with an authorized username and password. ICSS

37.2 Confirm the date and time on the HMI to be correct ICSS

37.3 Stop the iFIX software, in the Proficy iFIX Startup window. Use ALT+Tab till the icon ICSS
below appear. Select Options →Shutdown iFIX.

Wait until the iFIX shuts down completely.

Effective Date:03/24/20 Page 198 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
37.0 36M Backup of iFIX HMI Application (Continued)

Step Action / Remarks Who

37.4 From the Windows start button, follow the path; ICSS

All Programs > Proficy HMI SCADA - iFIX 5.5 > Tools > Backup & Restore
Wizard

Backup Path

37.5 When Backup & Restore Wizard is clicked, the following screen will open - ICSS

Effective Date:03/24/20 Page 199 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
37.0 36M Backup of iFIX HMI Application (Continued)

Step Action / Remarks Who

37.6 Click on FullBackup (1), then click on the Project Backup Wizard icon (2) ICSS

37.7 The following screen appears - ICSS

37.8 Browse to the desired backup path (file may be save to D: and then copied out to ICSS
external hard drive) and click Finish to complete procedure.

37.9 Follow the ICS backup procedure to save the HMI backup. ICSS

37.10 Confirm the date and time of the backed up file to be current and file extension to be ICSS
.fbk

37.11 Log out the authorized access credentials and log on operator and confirm normal ICSS
operation HMI is in place.

End of Task

Effective Date:03/24/20 Page 200 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

38.0 36M Backup of Bently Nevada System1 Database

BENTLY Nevada system 1 HMI is a vibration visualization workstation used for analysis, monitoring and
recording events related to axial and radial vibrations of equipment.

Step Action / Remarks Who

38.1 On the vibration monitoring workstation, select and click on Enterprise > Exit. (to ICSS
exit the running vibration monitoring program)

38.2 Login to the workstation with an authorized username and password. ICSS

38.3 Connect the On-site backup hard drive to the workstation. ICSS

38.4 Launch System 1 Database Tools from the Start ICSS

Click Start> Programs>Bently Nevada> System 1 Tools>System 1 Database Tools.

The Database Tools application is displayed, as shown below

Effective Date:03/24/20 Page 201 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
38.0 36M Backup of Bently Nevada System1 Database (Continued)

Step Action / Remarks Who

38.5 Connect to the SQL Server that contains the database you want to backup ICSS

a. Select Server > Connect from the menu bar. ICSS

The “SQL Server dialog” box pops up. If the current workstation is an SQL Server, its
name will appear in the field.

38.6 Click the drop down menu, select the database of interest then click OK ICSS

You may also type in a SQL Server name that is accessible from this workstation.

38.7 Expand the Server hierarchy to view the databases - expand Enterprise then select ICSS
QGFE...

Effective Date:03/24/20 Page 202 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

The databases will show up in the right pane.

The configuration database for an Enterprise can be identified by a name ending

with "_Config". Remember, a single Enterprise configuration database may have
multiple historical databases.

38.8 Select the configuration database (1) that needs to be backed up. Then, select and ICSS
click Database (2) ->backup (3) from the main menu bar.

Or Right click the selected Database and click Backup

The backup database wizard will appear.

Effective Date:03/24/20 Page 203 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

38.9 Enter the Name and a brief Description for the backup in the Backup Name and ICSS
Backup Description fields respectively for the dialog box below.

38.10 Click on Next. The Destination page of the wizard will appear. ICSS

38.11 Enter the file path (Application folder in the site hard drive) for the *.dat backup file ICSS
you will create.

Effective Date:03/24/20 Page 204 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

38.12 Click on Next. The Backup Options page of the wizard will appear. ICSS

a. Select "Overwrite Existing Media" if you don't care about any previous backups ICSS
and you want to reduce the file size of the *.dat backup file you are creating.

b. Select "Append to Existing Media" if you want to keep a copy of past backups ICSS
within the *.dat file so you can go back and restore any one of them in the
future.

38.13 Click on Next. The Summary page of the wizard will appear. ICSS

38.14 Verify that all the information you entered is correct. ICSS

Effective Date:03/24/20 Page 205 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

38.15 Click "Finish" to backup the database ICSS

38.16 Backup Completion ICSS

Click "Ok" to complete the database backup.

38.17 Repeat steps 38.8 to 38.16 for the next database ICSS

38.18 After the backup activity, restore the HMI to its normal use for vibration monitoring. ICSS

End of Task

Effective Date:03/24/20 Page 206 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

39.0 36M Backup of Rockwell Automation FactoryTalk (FT) View Site Edition (SE)
HMI Application

Perform the following steps to back up and archive FactoryTalk (FT) View Site Edition (SE) HMI Project.

Step Action / Remarks Who

39.2 Select Backup HMI Server. ICSS

39.3 Under Source HMI Server, browse to the HMI project folder to backup ICSS
and open the project .sed file.
39.4 Under destination backup path, browse to where the project backup is to be saved ICSS
(e.g. external backup Hard Disk Drive), then click OK.

! IMPORTANT: Ensure that the destination folder does not have the project (with the
same name) already stored.

39.5 Click Start Backup and wait for the backup to complete. ICSS

39.6 Acknowledge the backup completion message and exit all opened ICSS
applications during the backup process.

39.8 Select Backup application and click Next. ICSS

39.9 Select the application to backup and click Next. ICSS

39.10 Browse and select where to store the backup archive and click Finish. ICSS

39.11 To backup the .cli client runtime file for the HMI Project, copy it from the Client folder ICSS
(e.g. C:\Documents and Settings\All Users\Documents\RSView Enterprise\SE\Client)
to the backup storage location.

! IMPORTANT: Store the HMI Project backup folder, the .apa archive file and the .cli
client runtime file following the PCS backups management framework.

End of Task

Effective Date:03/24/20 Page 207 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

40.0 36M Backup of Minimax F&G Operator Interface Terminal

40.1 Activity will be done when there is available competency and software access tools to the PLC.
41.0 36M Backup of Allen Bradley PanelView Plus Operator Interface Application

The following methods can be used for backup of PVP project.

1. Use of USB flash drive to transfer the running .mer runtime file from PVP.
2. Use of FactoryTalk (FT) View Studio Machine Edition (ME) to compare and/or upload the .mer runtime
file in PVP.

• This procedure focuses on the USB flash drive method.

• Optional: Use of FT View Studio ME to compare/backup the .mer runtime file and/or create the .apa
archive file and/or backup the entire project folder that include the .med project file.

Perform the following steps to backup PanelView Plus Operator Interface Terminal Runtime Project File.

Step Action / Remarks Who

41.1 Plug authorized USB flash drive to the USB port on the PanelView Plus (PVP). ICSS

41.2 Go to Config screen. ICSS

41.3 Press Terminal Settings>File Management>Copy Files>Copy ICSS

Applications
41.4 Ensure Source is Internal Storage and Destination is the active External Storage ICSS
then press Copy to copy the runtime .mer file from PVP internal storage to the USB
flash drive.

41.5 Unplug the USB flash drive and return the PVP to service by running the application. ICSS

41.6 Using an authorized workstation, copy out the .mer PVP runtime project file from the ICSS
USB flash drive to authorized external storage media following the backup process.

Reference: UN-ICS-PR-06-04, Backup Process

End of Task

Effective Date:03/24/20 Page 208 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

42.0 36M Backup of Tank Gauging System Application

42.1 Activity is managed through PCS Backup of Intouch HMI Application procedure
43.0 36M Backup of OPC Applications

Follow the steps below to perform to perform OPC configuration backup on metering HMI.

Step Action / Remarks Who

43.1 Logic to the crude or condensate metering HMI with an authorized username and ICSS
password

43.2 Launch TOP Server ICSS

Launch TOP Server

CLICK "Start>All Programs>Software Toolbox>TOP Server>TOP Server

43.3 Note the .opf file location on top bar of the screen ICSS

43.4 Browse to the project folder on C drive (C:\Program Files\Software Toolbox\TOP ICSS
Server\Projects\CRUDE_CONFIG.opf)

43.5 Copy the project file you just created into your external backup hard drive. ICSS

43.6 Close the TOP Server screen - File > Exit ICSS

Effective Date:03/24/20 Page 209 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
43.0 36M Backup of OPC Applications (Continued)

Step Action / Remarks Who

43.7 Logoff from the metering HMI and logon operator ICSS

End of Task

Effective Date:03/24/20 Page 210 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

44.0 36M Backup of Historian Application

Step Action / Remarks Who

44.1 Exit the running FactoryTalk operator view ICSS

44.2 Press the windows button on the keyboard and type "System Management Tools". ICSS

44.3 Right click on "System Management Tools" and Click Run as Administrator below ICSS
to elevate application permission.

44.4 Tick the check box on "QITSCADAII-HIST" under Collectives and Servers. ICSS

44.5 Click Operations > Archives under System Management Tools. ICSS

N/B: The Archive File that currently has "Primary" in the Status column and has
"Current Time" in the End Time column is the active archive.

44.6 Click the Force an archive shift button to start a new Archive. ICSS

After several seconds (of clicking the Force an archive shift button , you should see
results similar to the following: The original archive file is now identified as Status of
"Has Data" (So you know it is no longer active or "current" or primary)

N/B: Archive shifts are done automatically by Historian when a "current" archive is
almost full.

44.7 Select on the archive with "old" data (the one that is NOT PRIMARY) then click the ICSS
Unregister the selected archive button

44.8 Click Yes on the pop-up window ICSS

44.9 Click Refresh button (This will remove the archive). ICSS

44.10 Goto E:\Historian_archives. Scroll down to the bottom and here you should see the ICSS
actual .arc file that you have unregistered, along with its "partner" file ending with an
.ann extension (This file would store any annotations related to the data in the arc
file).

44.11 Copy the files to the site external memory device. ICSS

44.12 Close the “System Management Tools” and restore normal operator HMI. ICSS

End of Task

Effective Date:03/24/20 Page 211 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

45.0 36M PCS Backups Synchronization

Step Action / Remarks Who

45.1 Request for PCS Hard disk [transfer hard disk drive] from the PCSG Supervisor ICSS

45.2 Sign out the site Hard Disk and PCS Laptop from the Maintenance Supervisor Office ICSS

45.3 Whitelist the requested Hard Disk to Center Tools Drive Lock temporarily on the PCS ICSS
Laptop

45.4 Scan the requested Hard Disk to ensure it is free from Virus. ICSS

45.5 Connect the Site Hard disk to the PCS LAPTOP ICSS

45.6 Transfer all files back up done during ICSR Sustainment PM from the SITE Hard disk ICSS
to the Requested PCS Hard disk.

! IMPORTANT: Save files on the transfer hard disk following the same path on the site
storage hard disk drive.

45.7 Sign-in Site Hard Disk and PCS Laptop back to Supervisor's office ICSS

45.8 Send requested PCS Hard disk to PCSG Supervisor with a cargo manifest and ICSS
follow-up email to assign PCSG workshop personnel to transfer content to NAS
Server

45.9 Login to the QIT NAS SERVER STATION ( For PCSG perssonnel only) ICSS

45.10 Click on c(\\10.0.0.4) (Z:) to open the Nas server mapped Network drive. ICSS

Effective Date:03/24/20 Page 212 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
45.0 36M PCS Backups Synchronization (Continued)

Step Action / Remarks Who

45.11 Transfer backup files to the listed authorized locations as applicable under each site. ICSS

• IMAGE BACKUP – only for computer images.

• APPLICATION BACKUP – only for pcs application project backups.
• SITE SPECIFIC DOCUMENTATION – only for project documentation eg. logic
printout (ALL LOCATION).

45.12 Arrange files by year in each system/risk assessment grouping. For each year, they ICSS
should be further arranged in “AS_FOUND” and “AS_LEFT” folders.

45.13 Transfer backed up Files from Requested-Hard disk to I: DRIVE ICSS

(\\UPSTREAMACCTS.XOM.COM\DFS).

Path: I:\world\nig-qit\MPN\ORG\PCS BACKUPS … (FOR MPN).

The locations above has a folder with the site name containing sub-folders as
follows:

IMAGE BACKUP – only for computer images (QIT location only).

APPLICATION BACKUP – only for pcs application project backups (ALL

LOCATIONS).

SITE SPECIFIC DOCUMENTATION – only for project documentation eg. logic

printout (ALL LOCATION).

! IMPORTANT: The reason IMAGE BACKUP folder is present on I: for QIT only is due
to size limitation. QIT images are loaded on I: to safe as off-site
storage.

45.14 Arrange backup by year in each system/risk assessment grouping. For each year, ICSS
they should be further arranged in “As_Found” and “As_Left” folders.

End of Task

Effective Date:03/24/20 Page 213 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

46.0 36M Hardware & Software Inventory Review

Step Action / Remarks Who

46.1 Locate the most recent PCS Hardware & Software Inventory excel workbook for the ICSS
facility of interest stored in I: MPN\ORG\AFSS&DCS\.ICSR. Copy out the workbook
and carry out hardware and software inventory update as described in the following
sections of this procedure. The workbook must have the following sheets: Installed
Hardware Inventory, Delivered Software Inventory and Installed Software Inventory.
See sample sheet tabs displayed below:

Effective Date:03/24/20 Page 214 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
46.0 36M Hardware & Software Inventory Review (Continued)

Step Action / Remarks Who

46.2 On the Installed Hardware Inventory worksheet, verify that the columns/rows are ICSS
populated in the manner shown below:

Description of Installed Hardware Inventory columns items:

• S/N - Serial numbering of all items listed on the Installed Hardware Inventory
worksheet starting from 1
• Index/RA Ref – Risk assessment numbering and should be same for all items
under the same risk assessment
• Sub Index – Serial numbering of all items under a risk assessment starting from
1
• Process Area – Plant area housing the hardware.
• Control Panel – Identity tag of the panel housing the hardware e.g.
DCS-101A-738
• Function – Function of the hardware e.g. Basic Process Control, Alarm
Management.
• Packaged Unit – Package hardware is supporting e.g. Power Generation, etc.
• Equipment Category - Category of the hardware e.g. Controller/PLC, Network
Switch, HMI/Operator Station, etc.
• Item name/Machine identifier - This is the workstation name in the case of
workstations or specific name used to identify the hardware for items that are
not workstations.
• Item description - This is the description of the item as captured in IPES e.g.
WorkStation,DCS Engineering-1.
• Tag Number –This is the IPES tag number of the hardware e.g.
NG8A-WSTN-EWS1
• Quantity – This is the physical count of an item having an IPES tag.
• HW Vendor – This is the manufacturer of the hardware e.g. Dell, 3Com, etc.
• Model –This is the model of the hardware e.g. Optiplex 755, etc.
• Attended/Unattended - Is the equipment in an attended (manned) or
unattended (unmanned) location? Indicate “Attended” or “Unattended”

Effective Date:03/24/20 Page 215 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

46.3 Verify that all in-scope hardware components are captured on the Installed Hardware ICSS
Inventory worksheet. Update the worksheet as necessary following site survey.

The Installed Hardware Inventory grouped according to risk assessment looks like
this:

46.4 On the Delivered Software Inventory worksheet, verify that columns/rows are ICSS
populated as shown below:

Description of Delivered Software Inventory columns:

• S/N - Serial numbering of all items listed on the Delivered Software Inventory
worksheet starting from 1
• SUB S/N - Serial numbering of all software listed under a risk assessment
starting from 1
• OEM/VENDOR – Software Manufacturer
• SOFTWARE DESCRIPTION - This is a detailed description of the software
• MEDIA TYPE – Through which original/authentic media the software was
received e.g. CD, DVD, USB drive, email, file download, etc.
• PART# - The manufacturer’s part number of the software as stated on media or
packing.
• SERIAL# - Software serial number indicated on media or software
documentation.
• QTY - Software quantity; physical counting of original/authentic media.
• LOCATION – Location software is stored e.g. ICS Drawer in OIM's office.
• LICENSES COUNT – This states the software license coverage e.g. System
Wide, 2 Workstation, Unlimited, etc.
• LICENSE INFORMATION AS DELIVERED – Relevant information about
software license.

Effective Date:03/24/20 Page 216 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

46.5 Confirm that all in-scope software on the facility received from project are captured ICSS
on the Delivered Software Inventory worksheet. Update the worksheet as necessary.

The Delivered Software Inventory worksheet once completed should look something
like this:

Effective Date:03/24/20 Page 217 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

46.6 Run PCAudit on the ICS workstations and use the listing of “Software” to verify or ICSS
update the parameters on the Installed Software Inventory worksheet. Verify that the
columns/rows are populated as shown below:

Description of Installed Software Inventory columns:

• S/N - Serial numbering of workstations where Process Control System software

are installed starting from 1
• MACHINNE IDENTIFIER – This is the name of the computer/workstation.
• OPERATING SYSTEM – The operating system running on the workstation as
captured by PCAudit e.g. Microsoft Windows XP Professional (version 5.1.2600;
build 2600), etc.
• APPLICATIONS – The complete list of all software installed as captured by
PCAudit.
• INSTALLED LICENSE INFORMATION (IF APPLICABLE) – Software license
information as captured on workstation, e.g. physical dongle, software enabling
key, activation screen, etc.
• REMARK – Relevant information that is worthy of note about the software.

The Installed Software Inventory worksheet once completed should look something
like this:

46.7 Save the updated Hardware and Software Inventory workbook in ICSS
I:\MPN\ORG\AFSS&DCS\.ICSR\ under the Current year PCS Security Documents
folder. Also safe the raw data [PCAudit] files named according to workstation and
arranged according to risk assessment.

End of Task

Effective Date:03/24/20 Page 218 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

47.0 36M Network diagrams & Inventory Review

Step Action / Remarks Who

47.1 Locate the most recent VISIO PCS Network diagram for the facility of interest stored ICSS
in I:\MPN\ORG\AFSS & DCS\.I C S R

47.2 Copy out and open the VISIO PCS Network diagram. Check that all in-scope ICS ICSS
components at site are well represented and inter connected correctly.

Click link below for QIT Network Diagram.

QIT Operation Netwok Diagram

Example: QIT metering network diagram is shown below. ICSS

47.3 Open the “Hardware Inventories” folder and select your facility of interest ICSS

Effective Date:03/24/20 Page 219 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
47.0 36M Network diagrams & Inventory Review (Continued)

Step Action / Remarks Who

47.4 Copy out, open and go through the hardware inventory file ICSS

47.5 Correlation of Network diagram with Installed hardware Inventory. ICSS

Using the Installed Hardware Inventory worksheet, verify that ALL listed devices are
represented on the network diagram.

47.6 Save any modified and verified network diagram in the designated shared network ICSS
drive.

End of Task

Effective Date:03/24/20 Page 220 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

48.0 36M OS, App & Wireless License Review

Conduct software license compliance verification following guidelines from referenced procedure.
Reference: UN-ICS-PR-06-03, License Management

Step Action / Remarks Who

48.1 Open the current site ICS Hardwares_Softwares_License Inventory workbook from ICSS
the repository on the ICSR shared drive.

The workbook contain the following sheets:

• Installed Hardwares Inventory [not applicable to this task]

• Delivered Softwares Inventory – Inventory of ICS softwares procured/delivered
to site
• Installed Softwares Inventory – Inventory of softwares installed on site ICS
workstations including the Operating System e.g as captured by compatible
PCAudit tool
• Softwares License Verification – Verification of installed vs delivered softwares
count/license

48.2 Update the “Delivered Softwares Inventory” sheet to match with the list of softwares ICSS
delivered to site or decommissioned at site.

For example

Effective Date:03/24/20 Page 221 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
48.0 36M OS, App & Wireless License Review (Continued)

Step Action / Remarks Who

48.3 Update the “Installed Softwares Inventory” sheet to match with the list of softwares ICSS
installed on each ICS workstation including the respective Operating System [OS].

For Windows OS, use compatible PCAudit tool to ensure accuracy in the capture of
softwares and version numbers.

Example

! IMPORTANT: OS activation screen and applications license information should be

attached as shown above. Picture of Windows OS authentication
sticker should also be attached.

Effective Date:03/24/20 Page 222 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
48.0 36M OS, App & Wireless License Review (Continued)

Step Action / Remarks Who

48.4 Update the “Softwares License Verification” sheet to: ICSS

• Accurately populate the list of softwares installed on all ICS workstations without
repetitions.
• Populate the “Installed Count” column using the cell “COUNTIF” formula already
existing
• Populate the “License Verified” column using the cell “IF” formula already
existing

for example

48.5 Report all “License Verified” response of “No” through the corrective work order ICSS
process.

48.6 Using the site ICS Laptop with wireless capability, SWITCH ON the wireless network ICSS
card.

48.7 Scan for wireless networks at site and prepare a list of those that are in scope for ICSS
ICSR stating their respective purpose

48.8 Check the network drive ICSR documentation repository for license documentation ICSS
to use the wireless network. CONTACT EMIT for the license documentation if not
found on repository. SAVE the documentation in the ICSR network drive repository
when received from EMIT.

48.9 For wireless networks on systems and components used for external connection, ICSS
VERIFY that existing EMIT external network certification clearly covers the wireless
networks.

48.10 Report all anomalies through the corrective work order process. ICSS

End of Task

Effective Date:03/24/20 Page 223 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

49.0 36M Access Authorization Review-OS/APP

Perform task following the steps below:

Step Action / Remarks Who

49.1 INFORMATION CAPTURE FOR OPEARTING SYSTEM (DUMPSEC) AND ICSS

APPLICATION

This is about capturing the necessary information that would be used to fill up the
access review form per workstation. The information are automatically generated by
running an executable file.

a. Application Information Capture ICSS

Use the print utility of the HMI application software to print to a PDF file the list
of users, groups and assigned privileges for both users and groups. For
application software (such as older versions of WonderWare) that does not
have printing capabilities;

• Take screenshots of all users with their respective assigned groups and
privileges.
• Paste all captured screenshots into any word processing package (such as
Wordpad or MS word) in the workstation and use its printing utility to print
the captured information to a PDF file (see the figure below).

Effective Date:03/24/20 Page 224 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
49.0 36M Access Authorization Review-OS/APP (Continued)

Step Action / Remarks Who

b. Operating System Dumpsec Information Capture ICSS

Locate the OneClick Ver2 folder

Possible Locations of the executable file

1. In the workstation check the following path

C:\General_Materials\Workstation_Info_Capture_Tools\ OneClick Ver2\ If
the workstation has more than one drive partition, then replace the C:\
with the other partition letters.
2. In the workstation, you can also perform a computer files and folders
search for “OneClick Ver2”.
3. In the onsite PCS Hard drive, perform a search for “OneClick Ver2” on the
“Site_Specific_Documentation” folder.

c. Open it up and double click on the “OneClick_local.bat” file. ICSS

d. A window looking like the figure below pops up. Press any key on the keyboard ICSS
to continue. Do not interrupt the process. It requires some time to get
completed.

Effective Date:03/24/20 Page 225 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Once the process is completed, press any key to continue for the second time. ICSS

Immediately the key is pressed, a window of a folder called

“AR_ComputerName” containing the necessary files for filling the access
review document pops up. The folder is located in C: drive of the workstation.

f. This folder in addition to the application access user PDF file should be copied ICSS
to the Site_Specific_Documentation folder of the onsite PCS Hard drive and
should be transferred to a GME computer with Microsoft Excel software.

g. To exit the OneClick_local.bat process, press any key on the keyboard for the ICSS
third time.

Effective Date:03/24/20 Page 226 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

49.2 LOCATING AND PREPARING THE ACCESS REVIEW (AR) FORM TO BE ICSS
FILLED

a. The most recent copy of AR Forms for a facility is located in I:\MPN\ORG\AFSS ICSS
& DCS\.I C S R\20XX UN PCS SECURITY DOCUMENTS\20XX USER
ACCESS REVIEWS - (BY LOCATION)\ FACILITY_NAME.

XX represents the most recent year

FACILITY_NAME represents the name of the asset (e.g Usan, BRT, EAP, etc).

Select any AR form of interest, ensure you copy the selected form to another
location on your computer and make all changes to the copy.

b. The AR form is of the xlsm extension and can only be opened with MS Excel ICSS
software. To fill the AR form, double click on it to open in excel and clear all
existing content.

The Access review excel spreadsheet has macros and special scripts running at the
backend that is not visible to the user. The macros and special scripts are essential
to working with this document, thus, they should be enabled prior to populating the
spreadsheet. Always ensure you click on the Enable content button to activate
macros and special scripts.

c. Rename the worksheet tab with the computer name. Access Reviews are done ICSS
on a per workstation basis. So if you are preparing access review forms for 5#
workstation, then there will be 5# worksheet tabs with different computer
names.

! IMPORTANT: Do not delete the Groups tab. Hide it before sending for approval.

49.3 FILLING THE CONTROL SYSTEM/APPLICATION INFORMATION ICSS

Effective Date:03/24/20 Page 227 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

a. ICSS

SYSTEM/APPLICATION FUNCTION AND TYPE: Fill these fields with the

name of the risk assessment the workstation belongs to (see figure above:
filled with Risk Assessment name). In some cases where the name of the
RA does not reflect the function of the workstation/ Laptop, the name or service
of the package/ unit it controls can be used instead (See figure below: filled
with system name).

b. Location: Fill this field with the name of the facility (see figures above). ICSS

c. STATIONS WHERE THIS ACCESS IS APPLICABLE: Fill this field with the ICSS
computer name and the IPES tag number of the work station. In some cases
where the computer name does not depict the service of the workstation, a
brief description of the computer function should be used in addition to the
computer name (see figure below: filled with a brief description of the
computer’s function).

49.4 FILLING THE LIST OF IDENTIFIED USERS ICSS

a. Insert a new worksheet tab. This is a temporary work area that should be ICSS
deleted before sending the document out for approval.

b. From the DUMPSEC information capture, open the ICSS

“COMPUTERNAME_users.txt” file and copy all its content.

Effective Date:03/24/20 Page 228 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Paste the content into the temporary worksheet created (Sheet1 in the example ICSS
below)

2) Delete all row entries with “rc=120 RasAdminUserGetInfo” as its username. ICSS

1) Re-arrange the columns to match the access review worksheet in the exact ICSS
order below.

2) Delete all other columns not mentioned. The result should look like below: ICSS

3) Copy only the relevant content of the populated cells. In the example above, ICSS
from cell A4 through cell D27 should be the only cells copied.

Effective Date:03/24/20 Page 229 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Go over to the Main Access Review Worksheet and paste the copied cells. ICSS
Preferably, do a Value Paste so as not to change the border formatting of the
sheet.

2) After pasting, delete any excess rows at the bottom of the “LIST OF ICSS
IDENTIFIED USERS” module. If the rows are not sufficient, add in more rows
before pasting.

1) Paste the content into the temporary worksheet created (Sheet1 in the figure ICSS
below). Ensure that the previous users’ information is cleared before pasting
the group information.

Effective Date:03/24/20 Page 230 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Re-arrange the columns to match the Group worksheet in the exact order ICSS
below.

3) Sort the table in an alphabetic order using the “GroupMember” column as the ICSS
sorting reference.

1) Go to the DUMPSEC information captured earlier, open the ICSS

“COMPUTERNAME_groups.txt” file and copy all its content.

Effective Date:03/24/20 Page 231 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Paste the content into the temporary worksheet created (Sheet1). ENSURE ICSS
that the previous users’ information is cleared before pasting the group
information.

3) Re-arrange the columns to match the Group worksheet in the exact order ICSS
(GroupMember; Group) below.

Sort the table in an alphabetic order using the “GroupMember” column as the
sorting reference.

Effective Date:03/24/20 Page 232 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) Open the Group Worksheet and paste the copied cells. Preferably, do a Value ICSS
Paste so as not to change the border formatting of the sheet. ADD the name of
the workstation above the table of the user group.

Note down the cell id of the first User member and the last group in the table. In
contrast with the figure above, A3 and B36 should be noted down.

Effective Date:03/24/20 Page 233 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Go over to the main AR worksheet (1. ANTIVIRUS). Click on the first cell ICSS
under the “Operating System Access Level” column, the following formula
will appear in the formula bar of excel.
=vlookmulti(C20,Groups!$A$X1:$B$Y1,2)

X1 and Y1 should be replaced with the two numbers that was noted down.
Referring to the figure above, X1 = 3 and Y1 = 36, thus, the formula to be
inputted into the formula bar will be: =vlookmulti(C20,Groups!$A$3:$B$36,2).

After inputting the formula, and pressing the enter key, all the groups that the
user in that row belongs to would be populated in the cell. Endeavor to expand
sufficiently the row to expose the names of all the groups.

2) Hover the mouse on the right bottom corner of the cell until you see the mouse ICSS
pointer change to a plus sign, then drag down to replicate this formula to other
cells below until the end of the “LIST OF IDENTIFIED USERS” module.

Note: At this level of the document completion, check the list of users for
errors. Below are some of the possible errors to watch out for:

1. Unauthorized/Unknown user – This can be identified by reviewing recent

access request forms and previously approved Access Reviews.
2. Guest Account – this account should always be disabled.
3. Privileges assigned to User – inspect on a per user basis, the privilege
levels assigned to each user. They should all conform to the access
request documents.
4. Services Account – All services account should be identified and ensure
the right privileges are assigned to them.

If any error(s) are identified, the errors should be corrected in the concerned
workstation, the DUMPSEC information capture should be repeated to reflect
the correction and this part of the form should be refilled (that is section i of this
procedure should be repeated).

Effective Date:03/24/20 Page 234 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

i. APPLICATION ACCESS LEVEL

1) Select the cell below the application access level column. ICSS

2) Click on the OBJECT icon under the Insert Tab. ICSS

3) Click on the “create from file” in the Object dialog box that pops up. ICSS

4) Browse to the application user access file saved while capturing the DUMPSEC ICSS
information

5) Click on “display as icon”. ICSS

Effective Date:03/24/20 Page 235 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

6) In the Caption text field, input a name that would be displayed as a part of the ICSS
embedded object. The choice of name should be reflective of the file purpose.

7) Click on OK twice to close all opened dialog boxes and the embedded file ICSS
should appear in the selected cell from step XX.

8) Click and drag on this file to position it in the middle of the cell. Below the ICSS
embedded file, you would add a descriptive comment about the attached file.

49.5 FILLING THE CLARIFICATION OF ACCESS LEVEL (ROLE) and ICSS

REPSONSIBILITY (RIGHTS and PRIVILEGES)

a. OPERATING SYSTEM ACCESS ICSS

Fill this column with the list of all the groups in the operating system that users
are assigned to. Referring to example above, Administrators and IIS_WPG are
the only two groups that needs to be listed.

Effective Date:03/24/20 Page 236 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. ACCESS PRIVILEGES and RIGHTS FOR OPERATING SYSTEM ICSS

Fill this column should with a brief description of the each Group in its
associated row. The description of the Group can be found in the
ComputerName_groups.txt file generated during Dumpsec information capture
in the AR_ComputerName folder.

c. APPLICATION ACCESS ICSS

Fill this column with the list of all the groups in the Application Software that
users are assigned to. This column should be filled in line with one of the three
cases below:

CASE 1

If the groups and their privileges are listed in the embedded file under users
APPLICATION ACCESS LEVEL, then a comment can be added referring the
document viewer to the embedded attachment.

CASE 2

Where the application is not capable of generating Users and assigned

privilege report like the older versions of WonderWare, the following can be of
guide while describing the groups’ privileges.

1. The manual/ user guide of the software application.

2. The access level definition from the ICSR procedure - Access
Management UN-ICS-PR-04-02, Chapter 3.

Effective Date:03/24/20 Page 237 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

Role Access

System Access to in-scope equipment and systems including

Adm operating system, applications and databases. Can
inistrator implement addition or deletion of systems and applications
accounts.
Network Access to in-scope network equipment such as routers and
Administrat switches. Can implement network control point access
or rules.
Systems Restricted from interactive (user logon) usage or Firecalled.
Services Inter-system service communication only.

Workstatio Access to workstation environment in order to launch

n interactive applications.
Launching
Engineer/M Access to systems to configure and maintain controls and
aintenance operator graphics, tune control schemes, perform I/O
Tech diagnostics, perform event analysis, perform historical data
analysis for process performance improvements.
Operation Permission to run the process and execute process
Supervisor permissive which requires supervisory decision.

Process Permission to run the process (monitoring and control).

Operator

Read-Only Permission to view the process only or to read data of an

application (e.g. reading PI historical data).

See example of Case 2:

Case 3

Where the application has no user access management, this column should be
filled with Not Applicable (N/A).

Effective Date:03/24/20 Page 238 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Delete all temporary worksheet created at this stage and hide the group folder ICSS
before proceeding to declaration .

49.6 FILLING THE DECLARATIONS SECTION ICSS

This section should be the last to be completed after completely filling other sections
of the access review form.
a. ICSS

Submit the completely filled AR form to the approved custodian (in most cases
the Maintenance Supervisor) for review. He/ She should append his/ her name
and signature after reviewing the document.

Effective Date:03/24/20 Page 239 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Submit the reviewed AP form to the Offshore Installation Manager (OIM) or the ICSS
Person in Charge (PIC) for endorsement. The OIM/ PIC should endorse the
document by appending his/ her name and signature after reviewing it for the
Area Operations Manager (Business Owner) approval.

c. The AOM is the final approval for the Access Review document. ICSR v400
has mandated that the AOM (business owner) cannot delegate this activity to
the OIM. His/ her signature and name must be appended to complete the AR
form.

d. The following mediums for appending names and signatures are all acceptable:

1. Hard copy printout of the access review form and embedded files are to
be wet inked by all the required levels of signatories.
2. Email review, endorsement and approval from all three levels of
signatories.
3. Docusign signatures from all three levels of signatories.

Note:

1. If option 1 (the hardcopy printout) is used, then the signed forms should
be scanned and sent for AOM’s approval either by email or Docusign.
2. If Docusign is used in securing approvals, then all the embedded files in
the form has to be attached separately as a part of the Docusign envelope
for review. This is because Docusign do not have the capability to open
an embedded file.
3. Since Access request form are to be filled on a per workstation basis, if a
group of forms are being prepared together, then options 2 and 3
becomes referred so as to obtain a single endorsement and approval to
cover for all prepared forms.

Effective Date:03/24/20 Page 240 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

e. Save completed and approved copy of the AR form in I:\MPN\ORG\AFSS & ICSS
DCS\.I C S R\20XX UN PCS SECURITY DOCUMENTS\20XX USER ACCESS
REVIEWS - (BY LOCATION)\ FACILITY_NAME. XX represents the year of
approval

FACILITY_NAME represents the name of the asset (e.g Edop, Usan, BRT,
EAP, etc).

All approval emails and copied of documented approval from Docusign should
also be saved in this location as well.

End of Task

Effective Date:03/24/20 Page 241 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

50.0 36M Security Policy & Log Config Review

Step Action / Remarks Who

50.1 Logon to laptop/workstation with admin level username and password ICSS

50.2 Click Start | Settings | Control Panel ICSS

50.3 Click Administrative Tools ICSS

Effective Date:03/24/20 Page 242 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
50.0 36M Security Policy & Log Config Review (Continued)

Step Action / Remarks Who

50.4 Click Local Security Policy ICSS

50.5 Account Policy

Effective Date:03/24/20 Page 243 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

a. Password Policy ICSS

For workstations not in a Windows domain environment (for standalone and

work group environment), the password policy should set as shown below -

• Enforce password history 5

• Maximum password age 365
• Minimum password age 0
• Minimum password length 8
• Password must meet complexity requirements Disabled

Effective Date:03/24/20 Page 244 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. Account Lockout ICSS

Set Account Policies->Account Lockout Policy settings to as;

• Account Lockout Duration 60

Minutes
• Account Lockout Threshold 5 Invalid
logon attempts
• Reset account logout counter after 5 Minutes

50.6 Local Policies

a. Audit Policy ICSS

The audit policy should be set to enable success and failure for all items except
Process Tracking. However, the recommended minimum Audit Log Policies for
process control Workstations and Servers are shown below.

Audit Item Success Failure

Log on and Log Off Enabled Enabled
Policy Change Enabled Enabled
Account Enabled Enabled
Management

b. User Rights Assignment

Effective Date:03/24/20 Page 245 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

1) Log on locally ICSS

This allows a user to log on to the computer from the computer's keyboard.
This user right should be used to restrict logon access to authorized users. The
default "Guests" and "Everyone" groups should be removed.

2) Deny Log on locally ICSS

Companion setting to Log on Locally. “Guest” account should be added here.

Also, any service account that is not required for interactive logon and cannot
be Firecalled or locked down can be added here if the functionality of the
service will not be interrupted.

Effective Date:03/24/20 Page 246 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Force shutdown from a remote system ICSS

This allows a user to shut down a computer remotely over a network. This user
right should be enabled for Administrators only.

50.7 Security Options ICSS

The following additional security option restriction should be set. They are set under
Local Policies->Security Options

Effective Date:03/24/20 Page 247 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

a. Do not display last user name ICSS

The name of the last user to successfully log in is not displayed in the Log On
to Windows dialog box

b. Always use ctrl-alt-del to log on ICSS

Effective Date:03/24/20 Page 248 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

c. Message text for users attempting to log on ICSS

Display the following text:

“This is an ExxonMobil Industrial Control System Computer. It is only to be

used by authorized personnel for official company business. If you have not
been authorized to use this computer, kindly leave it now”

Effective Date:03/24/20 Page 249 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

d. Message title for users attempting to log on ICSS

Display the following text: “Industrial Control System Requirements’’

50.8 Event Log Configuration ICSS

a. Configure the security, application and system logs in Event Viewer as follows: ICSS
Click Start | Click Settings | Click Control Panel | Click Administrative
Tools | Click Event Viewer

1) Click Start | Click Settings | Click Control Panel | ClickAdministrative ICSS

Tools | Click Event Viewer

Effective Date:03/24/20 Page 250 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

2) Select event type (Application, Security, System) under Event Viewer> ICSS
Windows Log and review the logs checking for abnormal entries.

Effective Date:03/24/20 Page 251 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

3) Select the event type (Application, Security, System), right click and ICSS
select Properties;

End - Of - Task

Effective Date:03/24/20 Page 252 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

4) Configure the maximum log size possible to ensure it is adequate to capture ICSS
the events between periodic reviews; recommend a “Maximum log size
(KB)” of not less than 2048KB.

Overwrite Events as needed to ensure that there is no disruption when the logs
are full in the event types (Application, Security, System)

End of Task

Effective Date:03/24/20 Page 253 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

51.0 36M Switch/Firewall/Router Config Review

Step Action / Remarks Who

51.1 Network Switches

a. Connect one end of the CISCO Console Cable to CISCO 2950 switch and the ICSS
other end to configuration laptop (i.e RJ45 end to console port of the switch and
DB9 female to laptop’s DB9 male port).

b. Launch Putty application ICSS

c. Select Logging under session, Tick "All session output" ICSS

BROWSE to the directory to save the Log file and name following required
naming convention "SITE-NAME_SWITCH NAME_SWITCH
MODEL_DDMMMYYYY"

e.g. "USAN_CISCO_2950_6DEC2019":

d. Press Windows + R key on the keyboard, Type in "devmgmt.msc" without ICSS

quote and HIT ENTER to open device manager.

SELECT the Ports (COM & LPT) to confirm the Communication ports.

e. Select serial on the session tab and use the default setting with baud rate 9600 ICSS
and the right COM port, then CLICK Open

f. Hit Enter key to go into the switch in this case USAN is the switch name. ICSS

Effective Date:03/24/20 Page 254 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
51.0 36M Switch/Firewall/Router Config Review (Continued)

Step Action / Remarks Who

g. Type "SHOW INTERFACE STATUS" and HIT ENTER on the Keyboard to ICSS
display the status of all ports in the switch.

h. Hit Enter key till you see the switch name appeared on the terminal interface as ICSS
shown

i. Riht click on the Title bar and click Close to disconnect from the switch and exit ICSS
the putty application

CLICK OK to confirm putty Exit

j. Press "CTRL+H" on the keyboard and copy the characters as shown in the ICSS
picture, paste in the "Find what" tab and leave the "Replace with" tab blank
Click Replace All

N/B: This special characters are created when pressing enter during the
capturing process

k. Go through the Log and SAVE the file by Clicking File | Save ICSS

l. Compare the saved log to physical Network switch. ICSS

If port 1 on the configuration shows “no shutdown”, it means the network port is
unblocked. If it shows “shutdown”, it means port is blocked.

Cable connected ports should indicate “no shutdown” while non-cable connected
ports should indicate “shutdown”. If they match, then review is completed.

! IMPORTANT: Scenerio: A network device connected to a switch port taken out for
repair, will leave that port with "not connected" status. Such ports can
be blocked immediately they are removed from the network.

! IMPORTANT: For non-cable connected ports which indicate “no shutdown”, ports
must be blocked immediately following the procedure below for
blocking (or unblocking).

Effective Date:03/24/20 Page 255 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

m. Sign out the switch firecall. ICSS

Logon to the switch console: BY typing "en" in front of the switch name and
TYPE in the password as revealed in the Firecall envelope and press ENTER
key “Switch#” appears.

n. Type config t and press ENTER ICSS

Result: Switch(config)#

o. Type Int f0/xx and press enter (where xx is the port number you want to ICSS
open)

Result: Switch(config-if)#

p. To shut down, type “shutdown” ICSS

Result: Port is now blocked!!

Type “no shutdown”

Result: Port is now unblocked!!

q. Type exit and press <enter>, type exit again and press <enter>, to exit to ICSS
Switch# mode.

r. Type “write memory” to save changes in the switch memory. ICSS

Effective Date:03/24/20 Page 256 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

s. At the SWITCH# prompt, type config t and press <Enter> ICSS

(Note: this means “configure terminal” which can also be typed in full, and in
the BRT example the prompt will be NGBR-DVPRI-SW-1#)

“Switch (config) #” appears as shown.

Result:

Effective Date:03/24/20 Page 257 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

t. Type the command enable secret xxxxxxxx and press <enter>. (where ICSS
xxxxxxxx is the new password)

u. Type exit and press <enter> to exit to con0 mode ICSS

v. Press <enter> to have the prompt below: ICSS

Effective Date:03/24/20 Page 258 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

w. Type enable and press <enter>. ICSS

x. Insert the new password for logon and press <enter>. ICSS

y. Type exit and press <enter> to exit to con0 mode ICSS

z. Create two new firecall envelopes (one for onsite fireproof safe and one for ICSS
PCSG offsite storage).
aa. Document the switch configurations in shared LAN drive under “year” ICSS
NETWORK SWITCHES CONFIGURATIONS in the respective location’s folder

ab. Close WO# in IPES with all necessary comments. ICSS

51.2 Firewalls/Routers

a. Raise EMIT Get Assistance (REQ....) ticket asking for downloads of firewall ICSS
configurations for all firewalls in UN Business Unit (BU).

State that downloaded configurations are for firewalls:

(QIT: NGQIT-SECFIP002)

EMIT will create internal WO, send it to Global Network Security team to download
firewall configurations, and revert via email.

Effective Date:03/24/20 Page 259 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

b. When download is available, open the previous firewall configuration in “ACL ICSS
RULES & IMPLEMENTATIONS (BY ASSET)” in shared LAN drive that were
signed off by respective asset managers.

c. Compare the last year’s configuration of each site (on shared LAN drive) with ICSS
the current downloaded configurations for each site.

d. Review the full access control list (ACL) as received from EMIT. ICSS

e. Option 1 – Configuration Complete With Matching Entries ICSS

1) Update last year's documentation by editing date. ICSS

2) Route for approval on DocuSign as shown below: ICSS

• Prepared by: PCSG Security Contact

• Reviewed: EMIT Network Support Contact
• Reviewed: PCSG Supervisor
• Endorsed: Instrumentation & Controls Superintendent
• Endorsed: Location PIC
• Approved: ASSET AOM

Note: For asset with two or three sites, the two or three OIMs will have to
endorse.

3) Document approval appropriately in shared LAN drive under “year” ACL ICSS
RULES & IMPLEMENTATIONS (BY ASSET) when approval is completed.

Where “year” is the year under review.

f. Option 2 – Configuration Does Not match With EMIT Submitted Log ICSS

1) Copy the full configuration received from EMIT into the ACL review document. ICSS

2) Identify any new IP address(es) on the new configuration from EMIT and follow ICSS
up with EMIT for prior owner's approval.

3) Document the change approval on shared drive and route the ACL ICSS
configuration review for DocuSign approval.

4) Once approval is provided, document appropriately in shared LAN drive under ICSS
“year” ACL RULES & IMPLEMENTATIONS (by asset).

Where “year” is the year under review.

5) If there was no approval for the changes, report the finding in a corrective work ICSS
order for investigation and proper closeout.

End of Task

Effective Date:03/24/20 Page 260 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

52.0 36M Firecall inventory and Logs review

Step Action / Remarks Who

52.1 Sign out the latest copy of the following from the OIM (Offshore Installation ICSS
Manager).

• Firecall ID inventory sheet

• Firecall ID Usage log book
• Firecall Envelopes

52.2 Confirm the Firecall Envelops checking that envelop number and physical count ICSS
matches with the number and count on the Firecall ID Inventory sheet. Ensure
Firecall IDs are present and accounted for.

52.3 Check for removal/proper documentation of any retired Firecall IDs. ICSS

52.4 Confirm no additional Firecall ID exist (that are not documented). ICSS

52.5 Reconcile the Firecall ID Inventory sheet against the Firecall IDs ensuring New ICSS
Firecall IDs are included.

N.B. Updated firecall inventory require approval of fire-call admistrator.

52.6 Call the Security Contact at PCSG office to ensure the FireCall ID (offsite storage) ICSS
matches the one onsite.

N/B: Any unaccounted for or compromised Firecall ID(s) are to be noted and
investigated.

Effective Date:03/24/20 Page 261 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
52.0 36M Firecall inventory and Logs review (Continued)

Step Action / Remarks Who

52.7 Check to make sure all Firecall Envelops are properly stapled/sealed and labeled. ICSS

! IMPORTANT: N/B: If a Firecall Envelop is found to be compromised:

• A new Reset form should be created.

• This can be followed with a corrective work order.

52.8 Check the Firecall ID Check-in and Check-out process, to ensure that the ICSS
Information on the Firecall ID Usage Log is complete and timely.

Effective Date:03/24/20 Page 262 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

52.9 Check the duration (ISSUE DATE – RETURN DATE) of usage of a Firecall ID to ICSS
ensure it is within the agreed upon time interval (maximum expected duration of
usage is 72 hours). If it’s more than, verify there is an approved extension.

52.10 Reconcile the Firecall ID Usage Log book against the Approved Firecall UserLists ICSS
(Located on AFSS & DCS folder I:\ drive) ensuring Firecall IDs are signed out by
approved users.

52.11 Sign in all documents with the Firecall Administrator. ICSS

End of Task

Effective Date:03/24/20 Page 263 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

53.0 36M Verification of ICSR & RA Controls

Step Action / Remarks Who

53.1 Logon to GME computer using your authorized access ICSS

53.2 Click Start Windows icon | Internet explorer. ICSS

53.3 Type goto/Asset on the Exxonmobil Home page Address bar ( as shown below and ICSS
hit the ENTER key on our keyboard

Effective Date:03/24/20 Page 264 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
53.0 36M Verification of ICSR & RA Controls (Continued)

Step Action / Remarks Who

53.4 Click on the Assessment in the ASSET web page to drop down list, SELECT ICSS
“Search Assessment”.

53.5 Click on the drop down arrow as shown to the right of production unit name and ICSS
select “Upstream Nigeria” from the drop down list.

Effective Date:03/24/20 Page 265 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.6 Type the location name e.g. BRT under the Risk Assessment Name. ICSS

Click the Search Button to display list of all Risk Assessment done for the BRT
location.

N/B: Only search for approved RA.

Effective Date:03/24/20 Page 266 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.7 The Navigation bar to display other pages and the ScrollBar to scroll down. ICSS

Scroll Bar
Navigation Bar

Effective Date:03/24/20 Page 267 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.8 Click on the pencil symbol beside the required risk assessment to open the ICSS
document, wait for it to finish loading.

53.9 Click on overview button on the top right side on the page to display the Overview of ICSS
the Document.

Effective Date:03/24/20 Page 268 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.10 Click on the attachment button on the bottom of the overview page. ICSS

53.11 Click on the Controls Document to Download. ICSS

Effective Date:03/24/20 Page 269 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.12 Click on View Detailed Report button on the bottom of the overview page. ICSS

Effective Date:03/24/20 Page 270 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.13 Navigate using the Forward Arrow to the CONTROLS catalog page. ICSS

Effective Date:03/24/20 Page 271 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.14 Open the downloaded Controls Document and check the status to make sure all ICSS
controls are in place.

Effective Date:03/24/20 Page 272 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

53.15 If a Planned control is confirmed to be In Place: UPDATE the Controls Document of ICSS
the risk assessment in ASSET by changing the status of the control to “In Place”.

• Click Reports | Control Status to change.

53.16 If a control status is still Planned to be implemented, implement the controls and ICSS
document in the risk assessment as 'In Place'.

53.17 Extract the applicable shall statements from the ICSR document based on the risk ICSS
assessment.

53.18 Verify that the applicable shall statements have been implemented, otherwise ICSS
IMPLEMENT.

End of Task

Effective Date:03/24/20 Page 273 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

54.0 48M/60M ICS Risk Assessment & Deviations Review

The selected ICSR Risk Assessment Team Leader/Facilitator will perform the following steps to conduct cross
functional team review of site ICSR risk assessments and deviations.

The ICSR Risk Assessment Team Leader/Facilitator is selected by the PCSG Supervisor.

Step Action / Remarks Who

! IMPORTANT: During the team review session, all ICSR risk assessments for the site
are to be reviewed [not only selected risk assessments]. The quality of
risk assessment review depends on the competency of facilitator and
cross functional team conducting the review. See mandatory [shall]
requirement below:

54.1 Launch http://goto/ASSET ICSS

54.2 Click on “Assessments” then “Search Assessments.” ICSS

• In “Production Unit Name,” drop down to “Upstream Nigeria.”

• In “Risk Assessment Name,” type the site name e.g. QIT.
• In “Risk Assessment Status” drop down, select “Approved.”

54.3 Click “Search.” ICSS

54.4 Check ICSR shared drive storage [e.g. I:\MPN\ORG\AFSS & DCS\.I C S R\2017 UN ICSS
PCS SECURITY DOCUMENTS\RISK ASSESSMENTS\USAN] for any approved and
active ICSR risk assessments for the site but not migrated to ASSET.

! IMPORTANT: Note that not all ICSR risk assessments for the site may have been
migrated to ASSET (Advanced Systems Security Evaluation Tool)

Effective Date:03/24/20 Page 274 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
54.0 48M/60M ICS Risk Assessment & Deviations Review (Continued)

Step Action / Remarks Who

54.5 Compile the list of all approved and active ICSR risk assessments for the site ICSS
including respective review due date. It is required to compile the list of approved
and active risk assessments in ASSET and those not migrated to ASSET.

54.6 Note the earliest and latest review due dates from the list of approved and active ICSS
ICSR risk assessments compiled, check IPES for date of next 36M Verification of
ICSR & RA controls, and decide on planned review period to occur between the
earliest or latest review due date and the next 36M Verification of ICSR & RA
controls.

Example:

• Earliest Review Due Date: 6-Oct-18

• Latest Review Due Date: 11-May-23
• Next IPES triggered 36M Verification of ICSR & RA controls: 2Q2021 [previous
PM in 2Q2018]
• Planned Review Period: 14/Jan/2021 – 10/Feb/2021 [between earliest review
due date and next 36M Verification of ICSR & RA controls so that reviewed risk
assessments/controls will be implemented/verified].

! IMPORTANT: Planned review period can fall before or after latest review due date
identified depending on activities and personnel involvement at site
including date of next verification PM. For instance, in the example
above, the stated planned review period will still remain if the latest
review due date falls in 2019 or 2020 because next verification PM is in
2Q2021.

54.7 Close ASSET. ICSS

Effective Date:03/24/20 Page 275 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

54.8 Identify the cross functional team required to review the risk assessments. Typical ICSS
functions include:

• Operations Specialist
• Instrumentation & Controls Specialist
• Electrical Specialist
• ICE Engineer
• ICS Specialist
• OEM/Vendor ICS FSR ICSR Risk Assessment Facilitator – ICS Technical
Subject Matter Expert with the training or expertise to facilitate ICSR risk
assessment.

54.9 Identify the work location with the required resources to host the review of the risk ICSS
assessments.

54.10 Document the risk assessments review plan on email and obtain Business Owner’s ICSS
approval preferably before the earliest review due date is reached. The plan will
include the following:

• List of all approved and active risk assessments for the site with respective
review due date.
• Date period for the review of the risk assessments with reason(s) for selecting
the period.
• Cross functional team required.
• Location to host the review session.
• Continued operation of site ICSE with approved and active ICSR risk
assessments beyond reassessment period until reviewed and approved [if
earliest review due date precedes plan].

• For systems in operation, the Business Owner is the Area Operations Manager.
• For system in project phase, the Business Owner is the Project Manager.

54.11 Compile and study the latest verified inventory and network diagrams for the site ICSS
including documentation on the site ICS.

54.12 Gather the cross functional team for the risk assessment review session. ICSS

54.13 Decide on the grouping, naming and numbering of the risk assessments to follow the ICSS
format: BUSINESS UNIT_SITE_ICSR_RA_Serial Numbering_SYSTEM GROUPING
CODE or ACRONYMN

Example [note the grouping and serial numbering in the naming]:

1. UN_USAN_ICSR_RA_1_ICSS
2. UN_USAN_ICSR_RA_2_SSCS
3. UN_USAN_ICSR_RA_3_TG-TC-LPC
4. UN_USAN_ICSR_RA_4_MMS
5. UN_USAN_ICSR_RA_5_COMS
6. UN_USAN_ICSR_RA_6_PDCS
7. UN_USAN_ICSR_RA_7_ESDG&EMDG
8. UN_USAN_ICSR_RA_8_OPS

Effective Date:03/24/20 Page 276 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

! IMPORTANT: Decide on short risk assessment names/codes that clearly identify the
system(s) in scope. Serial numbering of risk assessments for a site
help in easy count and arrangement of ICSR documentation including
backups arrangement on approved storage media/locations.
Automatic/system generated naming without following serial numbering
should be avoided.

54.14 Launch http://goto/ASSET ICSS

54.15 Create and complete as new/original risk assessment following the workflow, training ICSS
or expertise for risk assessments not migrated to ASSET or those in ASSET but
named not as required,

a. Identify system and equipment list to use based on inventory ICSS

b. Identify template to use so as to give risk assessment name previously ICSS

decided, otherwise, create template that will give the desired risk assessment
name.

c. Create risk assessment from selected/created template ICSS

d. Complete the Overview, Team Members, Components, Comments and ICSS

Assumptions sections

For systems in operation, the Custodian can be the Maintenance Supervisor.

For system in project phase, the Custodian is the Project I&C Design Engineer

e. Complete the Exposures section through Risk Screening, Initial, Residual and ICSS
Threat Vector Assessments.

f. Go through the ICSR mandatory statements and compile list of deviations to ICSS
ICSR as applicable to the risk assessment. Read the global ICSR deviation
document and any available local deviation document for input on how to
compile the applicable deviations
g. Attach the verified inventory, network diagram, compiled deviation document, ICSS
one page summary of risk assessment conclusion, and controls document
extract [formatted with irrelevant content removed].

h. Update the comments section with summary of risk assessment outcome, ICSS
deviations to ICSR and list of attachments.

i. Print risk assessments in pdf with attachments and review with team members, ICSS
responsible parties to action items, custodian and business owner. Make valid
and fit-for-purpose updates as required by reviewers.

j. Submit risk assessment, follow up and obtain endorsement and approval. ICSS

k. Retire all previous risk assessments replaced by the reviewed ones. Add the ICSS
word “RETIRED” in file name of the risk assessment not in ASSET.

Effective Date:03/24/20 Page 277 of 285 Author: ASIAN, MICHAEL A.

Step Action / Remarks Who

54.16 For risk assessments already in ASSET with name and template as required, clone ICSS
and complete the review following the workflow, training or expertise taking into
account any changes during the review period.

! IMPORTANT: If the cloning function is not available, conduct the review as a new risk ICSS
assessment.

• Update the Overview, Team Members, Components, Comments

and Assumptions sections.

• For systems in operation, the Custodian can be the Maintenance Supervisor. ICSS
-
• For system in project phase, the Custodian can be the Project I&C Design
Engineer.

• Complete the Exposures section through Risk Screening, Initial, Residual and
Threat Vector Assessments.
• Go through the ICSR mandatory statements and compile list of deviations to
ICSR as applicable to the risk assessment. Read the global ICSR deviation
document and any available local deviation document for input on how to
compile the applicable deviations.
• Attach the verified inventory, network diagram, compiled deviation document,
one page summary of risk assessment conclusion, and controls document
extract [formatted with irrelevant content removed].
• Update the comments section with summary of risk assessment outcome,
deviations to ICSR and list of attachments.
• Print risk assessments in pdf with attachments and review with team members,
responsible parties to action items, custodian and business owner. Make valid
and fit-for-purpose updates as required by reviewers.
• Submit risk assessment, follow up and obtain endorsement and approval.
• Confirm that the previous risk assessment is no more in ASSET, otherwise,
retire it.

54.17 Close ASSET. ICSS

54.18 Send official report of completion of the risk assessment review session using the ICSS
email trail of Business Owner’s approval to conduct the risk assessment review.
Save the report in dedicated shared drive e.g. I:\MPN\ORG\AFSS & DCS\.I C S
R\2017 UN PCS SECURITY DOCUMENTS\RISK ASSESSMENTS REVIEWS_MGT
APPROVALS\DWO - ERHA.

End of Task

Effective Date:03/24/20 Page 278 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Tasks (Continued)

55.0 Closeout - Return to Service

Step Action / Remarks Who

55.1 Prior to closeout, remove all tools, extra parts, and loose materials from the work ICSS
area.

55.2 If the ICS was shut down and locked out, remove the locks and tags and then ICSS
restore power to the unit according to Lock out/Tag-out (LOTO) guidelines.

55.3 Notify the Control Room Operator that maintenance is complete and the ICS is ready ICSS
for service.

55.4 Verify that the ICS is in service and that all associated emergency shutdown initiators ICSS
and the inputs/outputs are according to the actual operating conditions.

55.5 Ensure backups for application and operating system are stored according to the ICSS
backups management framework.

55.6 Remove the Supplementary Control Certificate (SCC) from the safety system, as ICSS
applicable.

CAUTION: The system must be operating within normal parameters before

removing the bypass.

55.7 If applicable, close out the permits. ICSS

55.8 Update the records: ICSS

• Review, update, and file the JSA.

• If required, update the regulatory requirements.
• Complete and sign the PM check sheet.
• Prepare the check sheet for input into IPES.
• Update the IPES database and, as appropriate, generate a corrective work
order / notification for any outstanding work.

End of Task

Effective Date:03/24/20 Page 279 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

Appendix
Checksheet
QIT ICSR Sustainment PM Workbook

Attachment 1
Siemens attachment 1.

Omni
OMNI FIXED DATA VERIFICATION TEMPLATE

OMNI FIXED DATA VERIFICATION TEMPLATES

Sample of fixed data checks

QIT OPN Network Diagram

QIT OPNS Network Diagram

Appendix 1 - Backups Management Notes

.Appendix 1

Appendix 2 - Firecall Passwords Notes and Check-out/Check-in Process

Appendix 2..

Appendix 3 - Malware Prevention Notes

Appendix 3.

Supporting Information

Associated Procedures

The following procedures are associated with this procedure:

• OIMS61-NGJV-JVO-2009-065, Anti-Virus Update for Process Control Systems

• OIMS61-NGJV-JVO-2009-066, Hard Disk Image Backup for Process Control Systems
• UN-ICS-PR-06-04, Backup Process
• UN-ICS-PR-06-02, Antivirus Management
• UN-ICS-PR-04-03, Firecall Passwords
• UN-ICS-PR-04-02, Access Management
• UN-ICS-PR-06-03, License Management

Effective Date:03/24/20 Page 280 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Supporting Information (Continued)

Reference Documents

Reference the following documents while preparing for and performing this procedure:

• Upstream Nigeria Work Management Manual

• Upstream Nigeria Upstream Safety Manual
• Equipment Plan / Strategy Report
• Historical reports / IPES database
• Applicable piping and instrument drawings (P&IDs)
• Applicable Package Logic / Wiring Diagram

Vendor Documents

The following Rockwell Automation Documents are associated with their products in this procedure:

[Refer to the following vendor manuals for detailed instructions, diagrams, and specifications]

• ControlLogix System User Manual, 1756-UM001O-EN-P

• FactoryTalk View Site Edition User's Guide
• ControlLogix Data Highway Plus-Remote I/O Communication Interface Module User Manual,
1756-UM514C-EN-P
• RSLogix 5000, Configuration and Programming for the Logix5000 family of Controllers, Getting Results
Guide, Rockwell Automation Doc ID 9399-RLD300GR-AUG00
• RSLogix 5000 Getting results Guide, Pub. LG5000-GR002C-EN-P

• SLC 500 Modular Hardware Style User Manual

• 1747-IN009B-EN-P SLC 5/03, SLC 5/04, and SLC 5/05 Modular Processors Installation Instructions
• 1746-UM003A-EN-P, SLC 500 RTD/Resistance Input Module
• RSLogix 500 Getting Results Guide
• RSLinx® Classic Getting Results Guide
• 2711P-UM006C-EN-P, PanelView Plus 6 Terminals User Manual
• FactoryTalk® View Machine Edition User's Guide

website:http:/literature.rockwellautomation.com

Effective Date:03/24/20 Page 281 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Vendor Documents (Continued)

The following Vendor Documents are associated with Siemens S7-400 PLC installation in this procedure:

• S7-400 Automation System; Hardware and Installation

• S7-400 Automation Systems; Module Specifications
• Instruction List S7-400
• S7-400 Automation System; CPU Specifications
• S7-400 Programmable Controller; Hardware and Installation
• S7-400 Programmable Controllers; Module Data
• Automation System S7-400; CPU Data
• S7-CPs for Industrial Ethernet, Manual Part B4S
• SIMATIC, Distributed I/O device ET 200M, Operating Instructions
• S7-300 Automation System Module Data
• SIMATIC Programming with STEP 7
• http://www.siemens.com/automation/partner
• http://www.siemens.de/simatic–tech–doku–portal
• http://mall.ad.siemens.com
• http://www.siemens.com/automation/service&support
• http://www4.ad.siemens.de/view/cs/en/8774037

The following Vendor Documents are associated with GE Fanuc 90-30 PLC installation in this
procedure:
[Refer to the following vendor manuals for detailed instructions, diagrams, and specifications]
§ Series 90 -70 Programmable Controller, Installation Manual, GFK-0262G

§ Series 90 -70, System Manual, GFK-1192

§ Genius I/O, Discrete and Analog Blocks, User Manual, GEK90486D-2

§ Logicmaster, 90-70, Programming Software User´s Manual, GFK-0263G

§ Lithium Battery Product Safety Data Sheet, GFK-0633A

§
Series 90 -70, Genius Bus Controller and Genius I/O System,
Troubleshooting Guide, GFZ-0087

§ Series 90 Programmable Coprocessor Module and Support Software,

User’s Manual, GFK-0255K

The following OMNI Documents are associated with their products in this procedure:

Omni Vol 1 - System Architecture & Installation

Omni Vol 2 - Basic Operation

Omni Vol 3 - Configuration & Advance Operations

Omni Vol 4 - Modbus Database Addresses & Index Numbers

Effective Date:03/24/20 Page 282 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Vendor Documents (Continued)

The following FactoryTalk Documents are associated with their products in this procedure:

FactoryTalk Historian Site Edition: Advanced Lab.

Effective Date:03/24/20 Page 283 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal

Classification Matrix
Procedure Classification Matrix
Probability Probability

A B C D E Category Probability
I IC IC IC IC IC/N* A Very likely (> 10 percent of occurrence; it occurs 1 in 10 times)
C
Immediate response and analysis required.
O
N II IC IC N N N B Somewhat likely (1 to 10 percent chance of occurring; it
S occurs 1 in 100 times) Prompt response and analysis
E required.
Q
U III IC N N WA WA C Unlikely (0.1 to 1 percent chance of occurring; it occurs 1 in
E 1,000 times) More than 10 minutes to respond, response is
N P1 P2 obvious.
C
IV N WA WA WA WA D Very unlikely (0.01 to 0.1 percent chance of occurring; it
E
occurs 1 in 10,000 times) Potential for human error causing
S
an incident.
IC - Integrity Critical Procedure E Practically impossible (< 0.01 percent chance of occurring; it
N - Normal Procedure may occur 1 in 100,000 times) Familiar, unlikely to be done
WA - Work Aid/Low Risk Procedure incorrectly.
*- Can be IC or normal based on local management decision

Considerations

Consequence Health/Safety Public Disruption Environmental Impact Financial Impact

Category
I Fatalities / Serious impact on Large community Major / Extended duration Corporate
public full-scale response
II Serious injury to personnel / Small community Serious / Significant resource Regional / Affiliate
Limited impact on public commitment
III Medical treatment for personnel / Minor Moderate / Limited response of Division / Site
No impact on public short duration
IV Minor impact on personnel Minimal to none Minor / Little or no response Other
needed
Steps

1. Define the most severe credible consequence scenario assuming a procedure is not followed or not in place. Document the scenario
in the space provided below.
2. Determine the consequence and probability for the scenario assuming a procedure is not used. Plot this on the matrix and label it as
Point 1. If Point 1 falls in a box labeled:
▪ IC, the procedure is Integrity Critical (IC)
▪ N, then the procedure is Normal (N)
▪ WA, then the procedure is a Work Aid (WA)
3. Determine the consequence and probability for the scenario assuming a procedure is available and used. Plot this on the matrix and
label it as Point 2.

Note: Point 2 is the resulting residual risk with the procedure being used. If this point is in a box labeled IC or N, then additional actions (e.g.:
placing additional safety devices) must be taken.
Procedure Classification
Procedure Name: QIT ICSR SUSTAINMENT Date: DEC. 6, 2019

Assessed by Team Members Iniobong Williams; Asian, Michael A.

Procedure found on Global IC List

Procedure meets Global IC criteria

Effective Date:03/24/20 Page 284 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.
OIMS61-NGJV-QIT-2019-
001 Rev 0
QIT ICSR Sustainment Normal
Classification Matrix (Continued)

Step 1: Worst Case Scenario(s) used for During PM on Bentley Nevada GE 3500 machine monitoring system,
Classification:
configuration download was performed instead of upload resulting in severe
damage of the monitored equipment, significant financial loss, and
environmental impact.
Step 2: Plot 1 (P1) Classification (IC, N, Consequence: B
or WA): Probability: 3
Classification:
Step 3: Plot 2 (P2) Residual (should be Consequence: D
WA): Probability:3
Classification:
Team Lead: Iniobong Williams Team Lead Signature:

Effective Date:03/24/20 Page 285 of 285 Author: ASIAN, MICHAEL A.

Procedure is UNCONTROLLED and valid for 7 days after printing date 06/08/2020 10:32.

Kalmar Service Tool - The Basics
No ratings yet
Kalmar Service Tool - The Basics
18 pages
Vibration Basics and Machine Reliability Simplified : A Practical Guide to Vibration Analysis
From Everand
Vibration Basics and Machine Reliability Simplified : A Practical Guide to Vibration Analysis
Mohammed Hamed Ahmed Soliman
4/5 (2)
"Yoga Therapy at The Wall" - Introduction
97% (29)
"Yoga Therapy at The Wall" - Introduction
36 pages
Advanced Process Control: Beyond Single Loop Control
From Everand
Advanced Process Control: Beyond Single Loop Control
Cecil L. Smith
No ratings yet
Applied Reliability Centered Maintenance
100% (10)
Applied Reliability Centered Maintenance
526 pages
User Manual of ADMS Software
No ratings yet
User Manual of ADMS Software
41 pages
Troubleshooting 784C, 785C, 789C, 793C and 793D Off-Highway Truck - Tractors Power Train Electron - 0 PDF
No ratings yet
Troubleshooting 784C, 785C, 789C, 793C and 793D Off-Highway Truck - Tractors Power Train Electron - 0 PDF
7 pages
UTA016 Engineering Design Project-I
No ratings yet
UTA016 Engineering Design Project-I
7 pages
Cybersecurity for Executives: A Guide to Protecting Your Business
From Everand
Cybersecurity for Executives: A Guide to Protecting Your Business
Matthew C. Smith
No ratings yet
Securing ChatGPT: Best Practices for Protecting Sensitive Data in AI Language Models
From Everand
Securing ChatGPT: Best Practices for Protecting Sensitive Data in AI Language Models
Matthew C. Smith
No ratings yet
ChatGPT for Business: Strategies for Success
From Everand
ChatGPT for Business: Strategies for Success
Matthew C. Smith
No ratings yet
Gray Hat Hacking the Ethical Hacker's
From Everand
Gray Hat Hacking the Ethical Hacker's
Çağatay Şanlı
5/5 (1)
ISA/IEC 61511 Safety Instrumented Systems (SIS) Fundamentals: Certification Exam Prep
From Everand
ISA/IEC 61511 Safety Instrumented Systems (SIS) Fundamentals: Certification Exam Prep
Steve Brown
No ratings yet
Us11-101 831 01 01 02
No ratings yet
Us11-101 831 01 01 02
20 pages
caliberation lanco
No ratings yet
caliberation lanco
46 pages
ADMS USer Manual
33% (3)
ADMS USer Manual
42 pages
Adms en PDF
0% (1)
Adms en PDF
42 pages
ADMS USer Manual
No ratings yet
ADMS USer Manual
42 pages
Al Waab City Metro SCS TOC - 30 - 07 - 2020
No ratings yet
Al Waab City Metro SCS TOC - 30 - 07 - 2020
2 pages
Integrated Control and Safety Systems (Icss) : Home About Us Our Business Contact Us
No ratings yet
Integrated Control and Safety Systems (Icss) : Home About Us Our Business Contact Us
2 pages
Content Creation Revolution with chatGPT
From Everand
Content Creation Revolution with chatGPT
Maria Cowen
No ratings yet
Cda Microcode Update Instructions: Ibm Totalstorage Ds8700 242X Model 941
No ratings yet
Cda Microcode Update Instructions: Ibm Totalstorage Ds8700 242X Model 941
14 pages
User Exit
No ratings yet
User Exit
6 pages
AI-Driven Digital Transformation: A Proven Blueprint for Responsible AI Scaling
From Everand
AI-Driven Digital Transformation: A Proven Blueprint for Responsible AI Scaling
Srikanth Victory
No ratings yet
Uspv 60-01-68-00-00
No ratings yet
Uspv 60-01-68-00-00
42 pages
Networked Control System: Fundamentals and Applications
From Everand
Networked Control System: Fundamentals and Applications
Fouad Sabry
No ratings yet
IPL Procedure 2.0 (1) (1)
No ratings yet
IPL Procedure 2.0 (1) (1)
11 pages
Us00-000 831 01 02 02
50% (2)
Us00-000 831 01 02 02
18 pages
VSP 70-04-51-00-M122
No ratings yet
VSP 70-04-51-00-M122
25 pages
AIX 5.3 Migration
No ratings yet
AIX 5.3 Migration
4 pages
Power Inspector SRCS - English
No ratings yet
Power Inspector SRCS - English
60 pages
Fault Log Viewing OP1
No ratings yet
Fault Log Viewing OP1
2 pages
Risk Management and System Safety
From Everand
Risk Management and System Safety
Leonam dos Santos Guimarães
5/5 (1)
ISA 61511 Safety Integrity Level (SIL) Selection Specialist: Certification Exam Prep
From Everand
ISA 61511 Safety Integrity Level (SIL) Selection Specialist: Certification Exam Prep
Steve Brown
No ratings yet
CAN Bus for Beginners: A Practical Guide to Automotive Networking
From Everand
CAN Bus for Beginners: A Practical Guide to Automotive Networking
Mohamad Charara
No ratings yet
QAS - Prev - Maint. - Single Cycle - Test Case - 03
No ratings yet
QAS - Prev - Maint. - Single Cycle - Test Case - 03
4 pages
Operation - Plant It Work
No ratings yet
Operation - Plant It Work
79 pages
TM 11-5826-302-12 (1987 - 1201) Omm & Avum, An - Asn-132 (V) Iins
No ratings yet
TM 11-5826-302-12 (1987 - 1201) Omm & Avum, An - Asn-132 (V) Iins
180 pages
840Dsl Maintenance 1 W/ Operate: CNC - SINUMERIK Solution Line General Information Audience Topics
No ratings yet
840Dsl Maintenance 1 W/ Operate: CNC - SINUMERIK Solution Line General Information Audience Topics
1 page
Isilon Cluster Preventative Maintenance Checklist
No ratings yet
Isilon Cluster Preventative Maintenance Checklist
26 pages
Description of Problem Action Owner Action Owner Status Closed Date Remarks Defect List Reference
No ratings yet
Description of Problem Action Owner Action Owner Status Closed Date Remarks Defect List Reference
2 pages
Electronic Mainternance 1981
No ratings yet
Electronic Mainternance 1981
180 pages
ISA/IEC 61511 Safety Instrumented Systems (SIS) Fundamentals - Study Notes
From Everand
ISA/IEC 61511 Safety Instrumented Systems (SIS) Fundamentals - Study Notes
Steve Brown
No ratings yet
Advanced Preventive Maintenance Schedule
No ratings yet
Advanced Preventive Maintenance Schedule
2 pages
IBM Troubleshooting 7.2
No ratings yet
IBM Troubleshooting 7.2
88 pages
ISA/IEC 62443 Cybersecurity Risk Assessment Specialist Study Notes
From Everand
ISA/IEC 62443 Cybersecurity Risk Assessment Specialist Study Notes
Steve Brown
No ratings yet
Display
No ratings yet
Display
6 pages
Udc CCTV PPM February 2023
No ratings yet
Udc CCTV PPM February 2023
24 pages
ISA/IEC 61511 Safety Integrity Level (SIL) Verification Specialist: Certification Exam Prep
From Everand
ISA/IEC 61511 Safety Integrity Level (SIL) Verification Specialist: Certification Exam Prep
Steve Brown
No ratings yet
Requalification Tracker All Unit
No ratings yet
Requalification Tracker All Unit
39 pages
Maintenance Work Order Report M2new
No ratings yet
Maintenance Work Order Report M2new
1 page
Fanuc 16i 210i Ts Alarms
No ratings yet
Fanuc 16i 210i Ts Alarms
109 pages
Reset Form Print Form: - See DA Pamphlet 738-750 and 738-751
No ratings yet
Reset Form Print Form: - See DA Pamphlet 738-750 and 738-751
5 pages
Upgradation project guidelines
No ratings yet
Upgradation project guidelines
7 pages
Electrical Maintenance
No ratings yet
Electrical Maintenance
7 pages
YouTube05, Exercise - Creating A New Project
No ratings yet
YouTube05, Exercise - Creating A New Project
5 pages
Sap PM End User Manual Preventive Maintenance
100% (7)
Sap PM End User Manual Preventive Maintenance
50 pages
Lab Exercise-1
No ratings yet
Lab Exercise-1
16 pages
Practical, Made Easy Guide To Building, Office And Home Automation Systems - Part One
From Everand
Practical, Made Easy Guide To Building, Office And Home Automation Systems - Part One
Kerwin Mathew
No ratings yet
GERAN-B-EN-ZXG10 B8018 Troubleshooting-1-PPT-201010
No ratings yet
GERAN-B-EN-ZXG10 B8018 Troubleshooting-1-PPT-201010
27 pages
PM Master Activity-2025-1
No ratings yet
PM Master Activity-2025-1
120 pages
Migrating Your Legacy Dcs To Plantpax: Plc-5 & 3 Party PLC Migration Capability
No ratings yet
Migrating Your Legacy Dcs To Plantpax: Plc-5 & 3 Party PLC Migration Capability
39 pages
LPA MLO flushing Mark-up drawings
No ratings yet
LPA MLO flushing Mark-up drawings
4 pages
Typical JB_002
No ratings yet
Typical JB_002
14 pages
Charm Modules
No ratings yet
Charm Modules
38 pages
Smart Junction Box
No ratings yet
Smart Junction Box
12 pages
CAUSEA~1
No ratings yet
CAUSEA~1
14 pages
975-MR-4U-6A-3-A1-Y-7[1]
No ratings yet
975-MR-4U-6A-3-A1-Y-7[1]
12 pages
1-s2.0-S0167577X18314198-main
No ratings yet
1-s2.0-S0167577X18314198-main
4 pages
Detailed Teaching Syllabus (DTS) and Instructors Guide (Ig'S)
No ratings yet
Detailed Teaching Syllabus (DTS) and Instructors Guide (Ig'S)
13 pages
Travelling in Time: Using Interpretative Phenomenological Analysis (IPA) To Examine Temporal Process in Personal Experience
No ratings yet
Travelling in Time: Using Interpretative Phenomenological Analysis (IPA) To Examine Temporal Process in Personal Experience
33 pages
Black Decker kc4815 Manual Do Utilizador
No ratings yet
Black Decker kc4815 Manual Do Utilizador
20 pages
Sol Planner Manual
No ratings yet
Sol Planner Manual
7 pages
Study Guide A: Key Concept
No ratings yet
Study Guide A: Key Concept
17 pages
Assignment For Boundary Layer PDF
No ratings yet
Assignment For Boundary Layer PDF
7 pages
12 Chemistry Notes ch15 Polymers PDF
No ratings yet
12 Chemistry Notes ch15 Polymers PDF
7 pages
Agile ppt and notes
No ratings yet
Agile ppt and notes
54 pages
The Behavioral Guide 2020: Economics
No ratings yet
The Behavioral Guide 2020: Economics
271 pages
Botany
No ratings yet
Botany
156 pages
Teddy Marliadi Nurwan
No ratings yet
Teddy Marliadi Nurwan
8 pages
Cip Stage 1 and Stage 2
No ratings yet
Cip Stage 1 and Stage 2
40 pages
A Glimpse of Folk-Art:Various Patachitra: Dr. Gopal Chandra Bayen
No ratings yet
A Glimpse of Folk-Art:Various Patachitra: Dr. Gopal Chandra Bayen
7 pages
Safety Hygiene in Side The Galley Onboard The Ship
No ratings yet
Safety Hygiene in Side The Galley Onboard The Ship
2 pages
Auditing and Assurance Principles (AT1) : St. Vincent College
No ratings yet
Auditing and Assurance Principles (AT1) : St. Vincent College
3 pages
Sahil Khan Resume
No ratings yet
Sahil Khan Resume
2 pages
Unveiling The Artistry of Zeba Urfi A Journey Through Fashion and Design
No ratings yet
Unveiling The Artistry of Zeba Urfi A Journey Through Fashion and Design
4 pages
Power Shell Scripts 1
No ratings yet
Power Shell Scripts 1
8 pages
Chemical Physics Letters - 2005 - Xie
No ratings yet
Chemical Physics Letters - 2005 - Xie
8 pages
22MAT101_102 syllabus
No ratings yet
22MAT101_102 syllabus
2 pages
Ifric Update November 2014
No ratings yet
Ifric Update November 2014
16 pages
A Study On Customer Satisfaction at HDFC Bank, Vijayapura
100% (1)
A Study On Customer Satisfaction at HDFC Bank, Vijayapura
90 pages
Assessing Customer-Based Brand Equity Ratings in Family Restaurant
No ratings yet
Assessing Customer-Based Brand Equity Ratings in Family Restaurant
7 pages
Literature Review
100% (1)
Literature Review
35 pages
Year 8 Assessment 2 2023-24
No ratings yet
Year 8 Assessment 2 2023-24
12 pages
Fy15 Federal-State Summaries
No ratings yet
Fy15 Federal-State Summaries
83 pages
ARCore Supported Devices Google Developers
No ratings yet
ARCore Supported Devices Google Developers
28 pages