Take a Self-Assessment for ICS Cyber Security Risk

Here’s the situation – industrial security is a hot topic today and management has decided to assign you the task to assess and come up with an action plan to protect the company from… well, they didn’t specify.

Perhaps some budget support has been provided for this task and perhaps not. Regardless of budget, it is understood that the priority is to keep production running while you put your plan into action.

Doing Nothing? Not an Option

Try the following industrial security self-assessment as a start for cyber security risk at your organization. While it isn’t for everyone, it’s a great starting point for your business. Taking action here may just help your company avoid some serious security incidents.

  1. Determine Who Should Help with the Assessment
  2. Identify the Critical Assets
  3. Prioritize and List the Largest Risks for Each Asset
  4. Prioritize the List of Industrial Security Assets
  5. Determine and Rate Existing Protection Measures

Read Full Article

 

ICS “Subversive Six” – the unseen risks within industrial infrastructures

Sean McBride aka self-described “Mr. Potatohead” delivered a keynote address at Belden’s annual Industrial Ethernet Infrastructure Design Seminar (IEIDS).

Sean is the lead analyst for critical infrastructure at iSight, specializing in securing industrial control systems (ICS) and operations environments.

Sean gave an excellent keynote drawn both his life experiences in the Idaho potato industry, and from his years in forensic and analyst work to help secure critical infrastructure and industrial control systems.

Sean masterfully wove his talk from the fields of Idaho to the control floor of industrial businesses. Speaking from experience, he highlighted the potentially “unseen” risks within potato farming and harvesting processes

  • Unauthenticated protocols
  • Outdated Hardware
  • Weak Password Management
  • Weak File Integrity Checks
  • Vulnerable Windows Operating Systems
  • Undocumented Third Party Relationships

Read full article…