Security Incident At Oldsmar Water Treatment Plant And Lessons Learned
ICS/OT Cybersecurity: Securing OT (Operational Technologies) and ICS (Industrial Control Systems) Networks Against Both Internal and External Threats, Intentional or Accidental
Manufacturers are continually looking for ways to improve their production efficiency, reduce cost and waste, and monitor quality to confirm standards are met. As a result, the world’s manufacturing facilities embrace the adoption and deployment of technologies that connect more and more assets and devices to their networks. The benefits of collecting data for timely and clear reporting, or leveraging analytics to uncover process trends and predict manufacturing yields and equipment failure, can be huge. A connected enterprise also presents risks to the manufacturing facility, its employees, and potentially the public if the network and its OT assets are not secure. In fact, many experts in this field believe that it’s not a matter of “if” a cybersecurity incident occurs, but “when.”
The technology now deployed in OT environments and the risks they are exposed to have many similarities to that seen in IT / enterprise environments. However, understanding the many significant differences between OT and IT environments (e.g., priorities) and the unique and evolving security threats to OT must be considered when designing, implementing, and maintaining a cybersecurity program for an ICS/OT environment and the Critical Infrastructure sectors.
How we work
LSI Listens
To support our clients’ cybersecurity needs, LSI’s team of experts starts by listening, learning, and understanding our clients’ processes and business drivers. By combining that understanding with our knowledge and experience of ICS/OT cybersecurity frameworks, industry regulations, and acceptable practices to assess the environment’s cybersecurity posture, we can implement the needed remediation. The result is a custom solution, tailored to the needs of that client’s process and environment, that reduces the attack surface and hardens the environment against cyber threats.
Services and Support
- Assessments & Auditing
- Security Audit / Gap Analysis Based on ICS Standards and Regulations (e.g., CFATS, FERC, NERC-CIP)
- Vulnerability Assessment (e.g., NIST 800-82, ISA/IEC-62443, NIST CSF, CIS-20)
- Risk & Resiliency Assessment and Remediation
- ICS/OT Network Assessment
- Design/Architect OT Network
- Industrial DMZ
- Zone Partitioning
- Develop Security Policy and Procedures
- ICS Device Hardening (e.g., Switches, Routers, Computers, etc.)
- OT Cybersecurity Training
- ICS/OT Vulnerability and Penetration Testing
- Threat Detection / Network Monitoring
Compliance
LSI understands the complexities and challenges with acquiring and maintaining compliance to Framework Standards and Industry Regulations. LSI’s team can help with numerous requirements including but not limited to:
Framework Standards
- NIST 800-82 – Guide to Industrial Control Systems (ICS) Security
- ISA-99/IEC-62443 – Security Capabilities For Control System Components
- NIST Cybersecurity Framework (CSF) – Framework for Improving Critical Infrastructure Cybersecurity
- American Water Works Association (AWWA) G430 Standard – Security Practices for Operation and Management
Industry/Federal Regulations
Experienced Service Provider
We understand that your organization’s success is dependent on keeping your ICS and OT networks and operations secure. Cybersecurity is serious business. If you want a team on your side with a solid, proven foundation in process improvement, automation, systems integration, electrical engineering, and manufacturing intelligence, let’s have a conversation. LSI listens.