In recent years, cyber espionage has been growing in magnitude and complexity. One of the most common targets is Industrial Control Systems (ICS) within critical infrastructure sectors.

With many organizations relying more heavily on ICS networks, there has been an increase in threats and cyberattacks aimed at these systems. Not only do these attacks have an economic impact, but they also put national security at risk. To make matters worse, there are no network security guidelines or best practices for ICS systems.

This calls for a solution that will ensure companies take proper steps in case of an emergency. How important is the need for Incident Response (IR), especially in ICS security?

What are Industrial Control Systems (ICS)?

Industrial control systems are computer-based systems that monitor and regulate the operation of manufacturing and processing plants. They are often used in large businesses, such as power plants, oil refineries, chemical plants, and other manufacturing facilities. To clarify, not all industrial systems are part of a large governmental enterprise.  Something as unassuming as a sugar refinery will use ICS to regulate its operations.  Although still part of critical infrastructure, a sugary refinery, like many other manufacturing entities are often overlooked as hosts to ICS. Since these control systems are important to the functionality of a plant, as well as the output of that plant, it is imperative to ensure that they are secure.

How does Incident Response Impact ICS Security?

Incident response is the process of addressing and assessing an event or potential event in order to limit its scope, contain its damage, identify affected systems, and learn how the matter occurred. The ability to react quickly and efficiently in the event of a cyber attack is paramount for any organization.

Incident response is quite different from general (Read more...)