Vulnerability Management and Threat Monitoring
In the previous chapters, we started learning about the core features of MDIoT. Let us continue in that spirit and move on to learning about risk and vulnerability management along with threat monitoring.
Risk management in IoT/OT incorporates identifying, analyzing, and controlling threats aimed at an organization’s IoT/OT security. We learned about the challenges of cybersecurity in Industry 4.0 in Chapter 1, and we have to ensure that the risks are known to the management and are assessed with risk mitigation steps in place.
Risk assessment forms an integral part of MDIoT. The most vulnerable devices, variations from the baselines, remediation priorities based on a secure score, network security risks, illegal traffic by firewall rules, connections to Industrial Control System (ICS) networks, internet connections, access points, industrial malware, indicators, unauthorized assets, weak firewall rules, network operations...