{"id":13643,"date":"2018-10-22T11:00:03","date_gmt":"2018-10-22T19:00:03","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/10\/22\/news-7410\/"},"modified":"2018-10-22T11:00:03","modified_gmt":"2018-10-22T19:00:03","slug":"news-7410","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/10\/22\/news-7410\/","title":{"rendered":"TIPs to Effectively Maintain Industrial Control System Security"},"content":{"rendered":"<p><strong>Credit to Author: Daniel Desruisseaux| Date: Mon, 22 Oct 2018 13:57:27 +0000<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-52185 size-large\" src=\"https:\/\/blog.schneider-electric.com\/wp-content\/uploads\/2018\/10\/138766096-1024x681.jpg\" alt=\"\" width=\"1024\" height=\"681\" srcset=\"https:\/\/blog.schneider-electric.com\/wp-content\/uploads\/2018\/10\/138766096-1024x681.jpg 1024w, https:\/\/blog.schneider-electric.com\/wp-content\/uploads\/2018\/10\/138766096-300x200.jpg 300w, https:\/\/blog.schneider-electric.com\/wp-content\/uploads\/2018\/10\/138766096-768x511.jpg 768w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/>Industrial Control System (ICS) operators recognize the need to improve <a href=\"https:\/\/www.schneider-electric.com\/en\/work\/services\/field-services\/industrial-automation\/industrial-cybersecurity\/industrial-cybersecurity.jsp\">cybersecurity<\/a>, but many lack the understanding on how to operate a system in a secure manner.\u00a0 Schneider Electric has authored a whitepaper <a href=\"https:\/\/www.schneider-electric.com\/en\/download\/document\/998-20304109_GMA-US\/\">\u201cEffectively Maintaining the Security of Industrial Control Systems\u201d<\/a> that takes asset owners through the system maintenance process. \u00a0In this blog article, I will provide a brief overview of the concepts presented in the whitepaper.<\/p>\n<p>The <strong>Maintenance Phase<\/strong> consists of a variety of independent activities that must be effectively managed on an ongoing basis.\u00a0 Activities can be divided into 2 key types \u2013 those that occur on a continual basis, and those that are event driven.<\/p>\n<p><em>Continual Monitoring<\/em> &#8211; Security monitoring is typically not as simple as having personnel look at the alarms each morning.\u00a0 Personnel must have in depth knowledge of the monitoring applications.<\/p>\n<ul>\n<li>Asset Monitoring &#8211; Ongoing monitoring of the network to track devices connected to the system, and whether elements are using the latest software versions.<\/li>\n<li>Security Monitoring &#8211; This activity is focused around monitoring the technologies that has been implemented to detect malicious activity.<\/li>\n<\/ul>\n<p><em>Event Driven<\/em> Maintenance &#8211; In addition to activities that operate in the background, there are a variety of event driven components of the Maintenance Phase.<\/p>\n<ul>\n<li>Patch Management &#8211; Patches are utilized by equipment vendors to address vulnerabilities, and thus are critical to system security.<\/li>\n<li>System Backup &#8211; Defines elements requiring backup, backup interval, number of backups, manual vs. automatic backup, backup schedules, file storage locations, and how to properly dispose of backup systems that have reach end of life.<\/li>\n<li>Change Management &#8211; During the implementation phase, system architecture diagrams, network diagrams, and asset inventories were created.\u00a0 Changes will occur when the system is operational.\u00a0 A formal change management process should be utilized to ensure that changes are effectively requested, decided on, implemented, and documented.<\/li>\n<li>Incident Handling &#8211; A critical process in the Maintenance Phase is incident handling.\u00a0 Incident handling creates a plan to deal with unauthorized intrusion, cyber theft, denial of service, malicious code, and other security related events.<\/li>\n<\/ul>\n<p>A third key area associated with maintenance is <em>auditing<\/em>. \u00a0Companies should create a comprehensive plan to audit key cybersecurity related policies and procedures on a regular basis.\u00a0 The priority of the policy\/procedures drive the audit schedule.\u00a0 Examples include change management process audits, incident response audits, system recovery audits, and risk assessment process audits.<\/p>\n<div id=\"attachment_52231\" style=\"width: 170px\" class=\"wp-caption alignleft\"><a href=\"https:\/\/www.schneider-electric.com\/en\/download\/document\/998-20304109_GMA-US\/\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-52231 size-full\" src=\"https:\/\/blog.schneider-electric.com\/wp-content\/uploads\/2018\/10\/Security-of-Industrial-Control-Systems-WP.jpg\" alt=\"\" width=\"160\" height=\"219\" \/><\/a><\/p>\n<p class=\"wp-caption-text\"><a href=\"https:\/\/www.schneider-electric.com\/en\/download\/document\/998-20304109_GMA-US\/\">C<\/a><a href=\"https:\/\/www.schneider-electric.com\/en\/download\/document\/998-20304109_GMA-US\/\">lick here to download your FREE whitepaper<\/a><\/p>\n<\/div>\n<p>The threat of cyber-attack is real and will continue to be an issue plaguing ICS for the foreseeable future.\u00a0 Following the steps outlined in the whitepaper will enable operators to effectively maintain ICS infrastructure.<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.schneider-electric.com\/cyber-security\/2018\/10\/22\/tips-to-effectively-maintain-industrial-control-system-security\/\">TIPs to Effectively Maintain Industrial Control System Security<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.schneider-electric.com\">Schneider Electric Blog<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.schneider-electric.com\/cyber-security\/2018\/10\/22\/tips-to-effectively-maintain-industrial-control-system-security\/\" target=\"bwo\" >http:\/\/blog.schneider-electric.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Daniel Desruisseaux| Date: Mon, 22 Oct 2018 13:57:27 +0000<\/strong><\/p>\n<p>Industrial Control System (ICS) operators recognize the need to improve cybersecurity, but many lack the understanding on how to operate a system in a secure manner.\u00a0 Schneider Electric has authored&#8230;  <a href=\"https:\/\/blog.schneider-electric.com\/cyber-security\/2018\/10\/22\/tips-to-effectively-maintain-industrial-control-system-security\/\" title=\"ReadTIPs to Effectively Maintain Industrial Control System Security\">Read more &#187;<\/a><\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.schneider-electric.com\/cyber-security\/2018\/10\/22\/tips-to-effectively-maintain-industrial-control-system-security\/\">TIPs to Effectively Maintain Industrial Control System Security<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.schneider-electric.com\">Schneider Electric Blog<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[12389,12388],"tags":[19914,19915,12608,19916,4500,19917,17881,19918,12508,19919,19920],"class_list":["post-13643","post","type-post","status-publish","format-standard","hentry","category-scadaics","category-schneider","tag-continual-monitoring","tag-control-room","tag-cyber-security","tag-cyber-security-auditing","tag-cybersecurity","tag-event-driven-maintenance","tag-industrial-control","tag-industrial-control-system","tag-machine-and-process-management","tag-security-monitoring","tag-system-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13643","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13643"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13643\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13643"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13643"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13643"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}