OPSWAT-Sponsored SANS 2023 ICS/OT Cybersecurity Report Reveals Vital Priorities to Mitigate Ongo…>
Dark Reading – Natioinal Cyber Security Training Academy Corp
The SANS 2023 ICS/OT Cybersecurity Survey, sponsored by OPSWAT, a prominent provider of critical infrastructure protection cybersecurity solutions, reveals significant findings regarding the current state of cybersecurity in industrial control systems (ICS).
Despite notable improvements in defense strategies, increased ICS cybersecurity awareness, and enhanced incident response plans, survey respondents collectively perceive the existing cybersecurity threats to ICS as severe/critical (25%) and high (44%).
This highlights the persistent challenges and vulnerabilities faced by organizations operating in interconnected and complex ICS/OT environments, where efficiency and innovation come hand in hand with increased exposure to relentless cyber threats.
The survey identifies the top three priorities for ICS security programs in 2023 as network visibility, risk assessments, and transient device threat detection.
Strengthening network visibility allows organizations to monitor and detect potential security threats and anomalies within their ICS infrastructure.
Conducting thorough risk assessments enables organizations to identify and address potential vulnerabilities, while transient device threat detection ensures the identification and mitigation of threats from devices that connect and disconnect from the network.
Dean Parsons, a SANS Certified Instructor, practitioner, and ICS/OT cybersecurity assessment expert, highlights several notable changes compared to previous years in the survey results.
While significant efforts have been made in critical areas, there is also a lack of commitment in certain evolving domains.
However, there is a silver lining in terms of increased investments in asset inventorying, network-specific ICS/OT visibility and detection systems, and the development and training of staff with essential ICS security skillsets.
These investments indicate a proactive approach towards assessing and enhancing ICS security.
A concerning trend revealed by the survey is the prevalence of ICS incidents involving malware threats or attackers breaching the IT business network, which subsequently enable access and pivoting into the ICS/OT environment.
Respondents express their primary worries and experiences with compromises in IT systems leading to threats entering OT/ICS networks.
The breaches of engineering workstations and external remote services are also identified as significant concerns.
Understanding these specific vectors contributes to effectively addressing the top threat vector and mitigating potential risks.
IT and OT staff convergence is another key trend highlighted in the report.
Approximately 38% of all respondents now have combined responsibilities for both ICS and IT security, indicating an increase in such responsibilities compared to the previous year.
This convergence underscores the growing recognition of the interconnectedness between IT and OT systems and emphasizes the need to bridge the gap between these traditionally separate domains.
When incidents or signs of infection emerge, the survey reveals that organizations frequently consult cybersecurity solution providers (43%).
This highlights the need for specialized expertise in incident response to effectively address and mitigate cybersecurity threats.
It is also worth noting that only 56% of respondents currently possess a dedicated ICS/OT Incident Response Plan, indicating room for improvement in this critical area.
The importance of a proactive approach to cybersecurity in critical infrastructure is underscored by Yiyi Miao, OPSWAT’s Chief Product Officer.
Building resilient critical infrastructure requires effective solutions and industry-leading strategies to safeguard vital systems.
Organizations interested in delving deeper into the survey findings and exploring tomorrow’s defenses against ICS/OT cybersecurity threats can download the full SANS ICS/OT Cybersecurity Survey: 2023’s Challenges and Tomorrow’s Defenses report.
The insights and recommendations provided in the report aim to guide organizations in strengthening their cybersecurity posture and protecting their critical infrastructure from evolving threats.
Link: https://www.darkreading.com/ics-ot/-opswat-sponsored-sans-2023-ics-ot-cybersecurity-report-reveals-vital-priorities-to-mitigate-ongoing-threats