What I'd like to do is to continue to tell you of the other ICS-security-related products that have been published that may be useful references for students and practitioners of ICS security.
In 2011 as ENISA was publishing the referenced document above (and shown in the photo) they also produced five separate Annexes as part of the Recommendations document. These documents were certainly foundational to the continued expansion of the ENISA ICS Security "product line." One document I found to be a useful introductory discussion of ICS security was the ENISA document Protecting Industrial Control Systems, Annex I: Desktop Research Results. Similar to NIST 800-82, Guide to Industrial Control System (ICS) Security, this document is a helpful background "textbook" on the basic issues associated with ICS security, emerging issues, the challenges with securing ICS systems, and known good practices as of 2011.
One very useful desk reference that came out of the EU ICS Testing Coordination project was publication of ICS Security Related Working Groups, Standardsand Initiatives (2013). This particular document is an excellent collection of the various global standards, guidelines and studies conducted that focus on ICS security issues. This one is a "keeper!"
- Can we learn from SCADA security incidents? (October 2013)
- Good practice guide for CERTs in the area of Industrial Control Systems - Computer Emergency Response Capabilities Considerations for ICS (Oct 2013) -- useful guide for ICS incident response
- Window of exposure… a real problem for SCADA systems? (Dec 2013) -- excellent demonstration of the challenges with often-delayed patching of ICS systems