Tripwire, Inc., a leading global provider of security and compliance solutions for enterprises and industrial organizations, today announced the results of a survey examining how organizations are addressing industrial control system (ICS) cyber threats. The survey was conducted by Dimensional Research last month, and its respondents included 263 ICS security professionals at energy, manufacturing, chemical, dam, nuclear, water, food, automotive and transportation organizations.
According to Tripwire’s survey, 93% were concerned about cyberattacks causing operational shutdown or customer-impacting downtime. In an effort to prepare against such threats, 77% have made ICS cybersecurity investments over the past two years, but 50% still feel that current investments are not enough.
“Cyberattacks against critical infrastructure and manufacturers pose a real threat to the safety, productivity and quality of operations,” said Kristen Poulos, vice president and general manager of industrial cybersecurity at Tripwire. “In these environments, where virtual and physical converge, cyber events can interfere with an operator’s ability to view, monitor or control their processes. Investing in industrial cybersecurity should be a priority in protecting operations from disruption.”
Of the 50% who felt current investments were not enough, 68% believe it would take a significant attack in order for their organizations to invest more. Only 12% of all respondents expressed a high level of confidence in their ability to avoid business impact from a cyber event.
In assessing industrial organizations’ current set of basic cybersecurity capabilities, the survey found the following:
– Only 52% have more than 70% of their assets tracked in an asset inventory.
– Almost one-third (31%) of organizations do not have a baseline of normal behavior for their operational technology (OT) devices and networks.
– Less than half (39%) do not have a centralized log management solution in place for their OT devices.
Poulos added: “Visibility, although the first step, is commonly the biggest hurdle when it comes to protecting ICS environments from cyberattacks. Organizations can gain visibility of their OT networks without disrupting their processes by following methods that meet the unique needs and requirements of OT devices. This includes passive monitoring of network traffic to identify assets, and baselining normal activity to spot anomalies, and analyzing log data for indications of cyber events. With that visibility, organizations can effectively implement additional protective controls, such as industrial firewalls to segment critical assets and establish secure conduits.”
Additional findings include:
– About half (49%) said that collaboration between IT and OT has improved over the past two years.
– More indicated that IT is taking the lead on ICS security (44%) vs. OT (14%); 35% said it is evenly split between IT and OT.
– More than three-fourths (79%) say there is a gap in training OT and IT staff on the unique needs and requirements for securing OT environments. Of those who made cybersecurity investments over two years (77%), education and training was the most common investment (82%).
For more findings on Tripwire’s survey, please visit: https://www.tripwire.com/solutions/industrial-control-systems/industrial-cybersecurity-report/.
For more information on Tripwire’s industrial cybersecurity capabilities, please visit: https://www.tripwire.com/solutions/industrial-control-systems/.
Tripwire is part of Belden Inc. For more information on Belden’s industrial cybersecurity capabilities, please visit: https://www.belden.com/solutions/industrial/cyber-security-solutions/.
Tripwire, part of Belden Inc., is the trusted leader for establishing a strong cybersecurity foundation. Partnering with Fortune 500 enterprises, industrial organizations and government agencies, Tripwire protects the integrity of mission-critical systems spanning physical, virtual, cloud and DevOps environments. Tripwire’s award-winning portfolio delivers top critical security controls, including asset discovery, secure configuration management, vulnerability management and log management. As the pioneers of file integrity monitoring (FIM), Tripwire’s expertise is built on a 20+ year history of innovation helping organizations discover, minimize and monitor their attack surfaces.
Belden Inc., a global leader in high-quality, end-to-end signal transmission solutions, delivers a comprehensive product portfolio designed to meet the mission-critical network infrastructure needs of industrial, enterprise and broadcast markets. With innovative solutions targeted at reliable and secure transmission of rapidly growing amounts of data, audio and video needed for today’s applications, Belden is at the center of the global transformation to a connected world. Founded in 1902, the company is headquartered in St. Louis and has manufacturing capabilities in North and South America, Europe and Asia. For more information, visit us at www.belden.com; follow us on Twitter @BeldenInc.