Critical infrastructure cyber security is in the spotlight thanks to the new Presidential Executive Order on Cyber security. No matter your politics, most would agree that it’s good to see the U.S. government elevating the urgency for critical infrastructure cyber resiliency improvement.
Section 2 of the order calls out the need to improve cyber risk management efforts. If you work for an electric utility or other critical infrastructure operator you should be aware that recent advances in technology can greatly help in this area, and do so in a way that is simple and safe to implement.
Government, industry, system integrators and automation vendors all know that industrial cyber security needs to be improved. Yet, all too often both enterprise and industrial networks are still managed without a coherent security strategy. What’s the reason? First and foremost, there is a lack of industrial security expertise in the workforce. Secondly, up to now, technologies have focused on modularized solutions for either the enterprise network or the industrial environment, without paying attention to the integration between the two. The good news is that a new generation of solution helps overcome both the skills shortage and the IT/OT divide.