A examine on industrial cybersecurity centered on the largest safety threats for the enterprise.
For all the concerns and heartburn that vital IT networks trigger for IT safety leaders, the safety issues will be even larger for operational know-how (OT) networks utilized in trade, in line with a brand new examine performed of 1,000 IT safety professionals. In an fascinating discovering, some 74% of the survey’s international respondents reported they’re extra involved a few cyberattack on vital infrastructure than an enterprise knowledge breach inside enterprise IT techniques.
SEE: Security Response Policy (TechRepublic Premium)
The report, “The Global State of Industrial Cybersecurity,” which incorporates responses from full-time IT professionals within the US, UK, Germany, France, and Australia, discovered that enterprise safety leaders within the US are extra involved in regards to the safety of their industrial OT techniques than are leaders in different nations. While 51% of the US respondents mentioned they imagine that at the moment’s industrial networks aren’t correctly safeguarded and want extra safety, one other 55% imagine that US vital OT infrastructure is susceptible to a cyberattack. The examine was performed within the fourth quarter of 2019 by Pollfish for OT and IT cybersecurity agency, Claroty.
The knowledge additionally confirmed that international IT safety professionals have a extra optimistic total outlook about their OT community safety in contrast with their counterparts within the US. About 62% of the worldwide IT respondents mentioned they imagine that industrial OT networks are correctly safeguarded, in comparison with solely 49% of US respondents. A majority of each US and international IT safety leaders, nevertheless, reported that they imagine a significant profitable industrial infrastructure cyberattack will come within the subsequent 5 years of their respective countries–according to 63% of US respondents and 67% of worldwide respondents.
Some 43% of worldwide respondents mentioned these assaults will seemingly come from hackers and unauthorized community entry, whereas 33% mentioned they may come by way of ransomware assaults, 14% mentioned they may come from different malware assaults, and 10% from sabotage. Among US respondents, 56% mentioned these assaults will seemingly come from hackers and unauthorized community entry, whereas 21% mentioned they may come from ransomware assaults. Some 12% mentioned they may come from sabotage, and 10% mentioned they may come from different malware assaults.
Dave Weinstein, Claroty’s chief safety officer, advised TechRepublic that the largest shock he sees within the examine’s findings is that many international respondents really feel that vital OT infrastructure networks are adequately protected and safeguarded from threats.
SEE: Cybersecurity: Let’s get tactical (free PDF) (TechRepublic)
“OT safety is a brand new space of cybersecurity for many organizations, and whereas vital infrastructure house owners and operators have made nice progress in the previous few years with lowering their cyber dangers, most are nonetheless on the very starting of what’s going to be a protracted and steady journey to maturity,” mentioned Weinstein.
The increased confidence in OT safety from international IT safety leaders in comparison with these within the US is explainable resulting from various cyberattack patterns around the globe, he mentioned. “IT and OT safety practitioners everywhere in the globe are more and more conscious of the altering cyber danger panorama. It’s doable that as a result of IT professionals within the US are beneath a relentless barrage of attacks–arguably extra so than elsewhere throughout the globe–they view the state of affairs by a barely bleaker lens than the remainder of the world.”
Weinstein mentioned he’s not, nevertheless, stunned that many respondents see OT cyberattacks on vital infrastructure as extra harmful than IT community assaults. Some 74% of the worldwide respondents mentioned they’re extra involved a few cyberattack on vital OT infrastructure, in comparison with 26% who mentioned they’re extra involved about IT enterprise knowledge breaches. Among US respondents, 65% mentioned they’re extra involved about OT assaults, in comparison with 35% who mentioned they’re extra anxious about enterprise knowledge breaches.
“One of the distinguishing traits of OT assaults in comparison with IT assaults are the implications for security,” mentioned Weinstein. “OT is an surroundings the place cyber meets bodily, and subsequently, cyberattacks towards these techniques can manifest themselves in hazardous and unsafe circumstances for these on the plant ground and probably past. Thankfully, there have solely been a small variety of harmful assaults.”
For IT safety leaders, managing an OT community’s safety continues to be totally different than monitoring an IT community’s safety, in line with Weinstein. In OT networks, operators cannot simply implement patches day-after-day or uncover gadgets or monitor site visitors utilizing conventional strategies or instruments, he mentioned. That’s as a result of many of the property on an OT community talk utilizing proprietary, vendor-specific protocols that may’t be simply parsed and understood, making conventional IT system approaches unusable.
“Most IT infrastructure was designed with safety in thoughts,” he mentioned. “Likewise, IT infrastructure is constructed for interconnectivity. The OT surroundings, against this, wasn’t initially designed to be safe, and it actually wasn’t designed to be interconnected. When managing an OT community’s safety, IT professionals have to be cognizant of those basic variations and the way they influence conventional safety operations and insurance policies.”
To higher defend companies from cyberattacks of every kind, there must be an improved convergence of OT and IT safety emphasis and techniques inside firms which depend on each sorts of networks, mentioned Weinstein.
“First, you could acquire deep visibility into exactly what’s in your OT community and the way these property are behaving,” he mentioned. “This vital first step contains understanding not simply what’s on the community, but additionally the communications occurring between and amongst these property.”
In addition, enterprise safety leaders should put in place mechanisms to bridge the cultural and communication divide between IT safety professionals and OT and automation engineers, he mentioned. “This collaboration will likely be vital down the street. And lastly, construct a roadmap that culminates in harmonizing the continual safety monitoring of the IT community with that of the OT community. This evolution will not occur in a single day, however it’s a vital milestone for in the end closing the IT-OT safety hole.”