What managers should know about industrial cyber security

La industrial cyber security is assuming more and more importance in all companies: increasingly worrying and significant IT security violations are discovered.

Entrepreneurs and Managers are now required to continuously identify, classify and mitigate risks, even those deriving from IT incidents.

To address the issue, try asking yourself the following questions about your company's exposure to information security vulnerabilities of systems used in production:

• What opportunities exist for infringement?
• What risk exposure does my company have and what are the consequences of this exposure?
• What is the maximum damage that could be caused if one of these violations occurs?
• What specific security measures protect each of our assets?
• If our systems have cybersecurity vulnerabilities, how do these vulnerabilities affect our security goals and initiatives?
  

• Who in our organization is responsible for these security measures?
• Are IT and OT teams coordinated and working together to secure our systems?
• Do we allocate adequate resources, do we use the standards and do we have the right equipment to give us the best possible result?

WHITE PAPER ON INDUSTRIAL CYBER SECURITY

In white paper that we propose address these and other questions in the context of the following objectives:

• Understand the features e le vulnerability unique to the systems industrial control;
• See the main ones differences between IT and OT on computer security;
• Evaluate i potential impacts of accidents on critical infrastructure and production processes;
• Identify standards, training and awareness programs for companies

create and maintain secure systems, it is necessary:

• First make sure that our processes and communications between different company departments are effective
• That there is awareness that industrial control systems need to be protected.
• Third, we need to go in and understand whether the systems we use are inherently secure and kept up-to-date with known vulnerabilities, industry standards and compliance plans.
• Finally, we need to evaluate whether our personnel have adequate experience with industrial cyber security and coordinate closely with our IT personnel to protect systems and facilities.