Book Image

Industrial Cybersecurity

By : Pascal Ackerman
Book Image

Industrial Cybersecurity

By: Pascal Ackerman

Overview of this book

With industries expanding, cyber attacks have increased significantly. Understanding your control system’s vulnerabilities and learning techniques to defend critical infrastructure systems from cyber threats is increasingly important. With the help of real-world use cases, this book will teach you the methodologies and security measures necessary to protect critical infrastructure systems and will get you up to speed with identifying unique challenges.Industrial cybersecurity begins by introducing Industrial Control System (ICS) technology, including ICS architectures, communication media, and protocols. This is followed by a presentation on ICS (in) security. After presenting an ICS-related attack scenario, securing of the ICS is discussed, including topics such as network segmentation, defense-in-depth strategies, and protective solutions. Along with practical examples for protecting industrial control systems, this book details security assessments, risk management, and security program development. It also covers essential cybersecurity aspects, such as threat detection and access management. Topics related to endpoint hardening such as monitoring, updating, and anti-malware implementations are also discussed.
Table of Contents (19 chapters)
Title Page
About the Author
About the Reviewers
Customer Feedback

The ICS security program development process

The objective of an Industrial Control System security program is to define the desired security stance of the industrial network (the IDMZ and lower levels), identify current deviation, and strategize improvement activities. The resulting program will be comprised of a repetitive set of activities geared towards establishing, improving, and maintaining a healthy ICS security posture.

The following figure shows a summary of the resulting ICS security program. It follows the aforementioned NIST standards and builds upon the CPwE security framework, as discussed in an earlier chapter. The summary figure helps to illustrate the activities that went into designing the program, which we will look at in more detail in the next sections.

The following activities were performed during the development process of the ICS security program:

  • Define ICS-specific policies
  • Define and inventory the ICS assets
  • Perform an initial risk assessment on discovered ICS assets...