Tag: ICS intrusion detection

Using-ICS-Anomaly-Detection-to-Protect-Substations-and-Power-Grids

Securing Substations and Power Grids with ICS Anomaly Detection

Date: July 25, 2017 By: Moreno Carullo and Heather MacKenzie
One of the findings of the recent SANS report “Securing Industrial Control Systems – 2017” is that the number one technology industrial organizations are looking to implement over the next 18 months is intrusion detection.

Up until recently, detecting anomalies on ICS networks that might be caused by a cyberattack has been ”mission impossible.” That’s because such networks typically include equipment from a wide assortment of vendors, run thousands of real-time processes and generate huge volumes of data. Analyzing and monitoring this data to detect anomalies was very difficult.

The good news is that a new generation of ICS cybersecurity tool is available for industrial intrusion detection. This article describes how our product, SCADAguardian does it, and gives an example of how it would detect and counter a cyberattack on a regional control center of an electric power utility.

Read more
ICS-Security-For-Water-Treatment-Plants

Two Reasons for the ICS Cybersecurity Deficiency

Date: April 19, 2017 By: Thomas Nuth
Government, industry, system integrators and automation vendors all know that industrial cybersecurity needs to be improved. Yet, all too often both enterprise and industrial networks are still managed without a coherent security strategy. What’s the reason? First and foremost, there is a lack of industrial security expertise in the workforce. Secondly, up to now, technologies have focused on modularized solutions for either the enterprise network or the industrial environment, without paying attention to the integration between the two. The good news is that a new generation of solution helps overcome both the skills shortage and the IT/OT divide.

Read more
“An average of 46% of all cyberattacks in the OT environment go undetected, suggesting the need
for investments in technologies that detect cyber threats to oil and gas operations.”
Ponemon Institute report, February 2017

ICS Security Lags Digitization in U.S. Oil and Gas Industry

Date: March 13, 2017 By: Edgard Capdevielle

A recently released study by the Ponemon Institute finds that 61% of oil and gas operators in the U.S. indicate that their organization’s ICS protection and security is inadequate. While the implementation of digitally connected industrial components is delivering business benefits, it has significantly increased cyber risk. Yet only 41% of companies continually monitor OT infrastructure to prioritize cyber threats and attacks.

Read more
arc-2017-ics-cybersecurity-panel

ARC Forum: 4 Key Criteria for ICS Cybersecurity Anomaly Detection

Date: Feb 23, 2017 By: Kim Legelis
At the recent ARC Forum in Orlando, the automation community met to discuss pressing issues for the future. Cybersecurity was on top of the list of topics, with a full track led by ARC’s lead industrial security analyst Sid Snitkin. He led a panel that addressed an important new tool: ICS anomaly and breach detection solutions. Let’s look at the four critical capabilities ARC identified for these products, and how Nozomi Networks’ technology addresses them.

Read more