Q: Do you have security policies and incident response processes in place to secure an IT/OT environment?
A: It is critical to assess your security readiness by reviewing current security policies against industry-recognised standards to identify IT/OT security gaps. Ensuring effective response during a security incident starts from examining your incident response processes. You also need to build cyber awareness across your organisation through tailored security awareness training that helps to educate staff on social engineering and other risks.
Q: Is your in-house IT team equipped with insights into security considerations when selecting security technology for IT/OT environment?
A: Conduct a vulnerability assessment of OT networks to identify key OT .assets and existing security vulnerabilities. Access control can be established via an identity assurance programmes to capture existing job roles and assign access rights. An intrusion prevention service protects via deep protocol inspection, intrusion detection, and more
Q: Is your in-house IT team trained to handle security issues that may arise from a converged IT/OT environment?
A: The lack of cross IT/OT competence is a key challenge in managing security in a converged environment. It is crucial that IT and corporate executives are sent for training on IT/OT cross-competency via simulation exercises to build tactical skills.
Q: Do you have access to real-time intelligence on the latest cyber threat landscape?
A: With hackers increasingly finding loopholes with sophisticated techniques, it is crucial to keep up with real-time cyber insights. Extend cyber intelligence subscriptions to incorporate OT issues and proactively qualify threats, contextualise risks and prioritise responses.
Singtel Managed Security Services delivers a comprehensive suite of network security solutions and capabilities to help you effectively prevent, identify, prioritise and resolve threats in your converged IT/OT networks.
Speak to a Singtel security advisor today.
Footnotes:
- http://www.datacenterdynamics.com/content-tracks/security-risk/scada-cyber-attacks-double-over-the-last-year/93738.fullarticle
- http://www.sandiegouniontribune.com/news/science/sd-me-russians-powergrid-20161230-story.html