Based on recent reports of Russian involvement in a multistage intrusion of the US power grid, it’s no longer a question of “if” threat actors will gain access to critical infrastructure control systems – it’s when it will happen again, and for what purpose.
What can be done to thwart these potentially disruptive assaults?
How does your ICS cybersecurity budget compare to those of other organizations? How well are you doing, relatively speaking, in terms of detecting security breaches? And, where does your company stand in terms of managing OT/IT convergence?
If you would like the answers to these questions, the good news is that the SANS Institute has a report for you.
Let’s look at the three areas mentioned above, and find out where they stand in 2017, according to dozens of industrial organizations.
One of the findings of the recent SANS report “Securing Industrial Control Systems – 2017” is that the number one technology industrial organizations are looking to implement over the next 18 months is intrusion detection.
Up until recently, detecting anomalies on ICS networks that might be caused by a cyberattack has been ”mission impossible.” That’s because such networks typically include equipment from a wide assortment of vendors, run thousands of real-time processes and generate huge volumes of data. Analyzing and monitoring this data to detect anomalies was very difficult.
The good news is that a new generation of ICS cybersecurity tool is available for industrial intrusion detection. This article describes how our product, SCADAguardian does it, and gives an example of how it would detect and counter a cyberattack on a regional control center of an electric power utility.
The SANS Institute recently surveyed hundreds of ICS practitioners and cybersecurity stakeholders on the topic of industrial cybersecurity. The results provide a valuable source of information for organizations seeking to understand the state of ICS security or to benchmark their organization against others.
Amongst the findings are a ranking of top threat vectors. Read on to learn what global leaders in critical infrastructure are most concerned about, and how Nozomi Networks’ SCADAguardian defends and mitigates against the top threats.