According to ARC Advisory Group, many industrial operations remain at risk of costly, disruptive cyber incidents. Despite significant investments in defensive technologies, most companies are not doing a good job of maintaining them due to an imbalance between investments in security technologies and the people, processes, and security management technologies needed to sustain them.
Read more > >
ARC Advisory Group met with PAS, a provider of process safety, cybersecurity, and asset reliability solutions, to discuss the company’s approach for a new unified information management system that can integrate key process safety and operational metrics with industrial control systems (ICS) cybersecurity metrics. This creates a common view of risk in real time, allowing end users to address emerging issues before they can result in unplanned downtime or an incident.
Read more > >
PAS receives the Best-in-class Industrial Control Systems Security Solutions award from Frost & Sullivan. Download the report to discover how PAS solutions provide a myriad of benefits to clients through the company’s holistic approach to ICS cybersecurity and compliance. Frost & Sullivan's research team lauds the ability of PAS to offer industry-leading technologies and earn client loyalty from the top critical infrastructure organizations in the world.
Read more > >
We asked 20 experts to share their strategies for managing OT cybersecurity. Their answers reflect a rich knowledge of cybersecurity and risk management best practices across a diverse range of industries—including oil and gas, chemicals and refining, and power generation. These insights are compiled in four eBooks organized around critical topics to inform anyone tasked with securing critical infrastructure.
Read more > >
This paper examines how an over-reliance on IT-centric perimeter defenses, combined with an inability to see vulnerabilities lurking deep within industrial control system (ICS) environments, has left our critical infrastructure vulnerable. It also discusses current ICS vulnerability management challenges, as well as how you can find and remediate vulnerabilities hidden today within ICS environments by taking a more production-centric approach to managing vulnerabilities on Level 2, 1, and 0 ICS assets.
Read now >
Industrial companies have made significant investments in cybersecurity technologies to protect their plants and industrial control systems (ICS). However, many companies are unable to keep up with the never-ending stream of new vulnerability alerts from suppliers and groups like ICS-CERT. This leaves many plants at risk of serious cyber incidents, jeopardizing safety and operational reliability. In this paper, ARC Advisory Group discusses continuous ICS vulnerability management with PAS executives.
Read now >
[Power Industry Focused] There is no question that safety, reliability, and profitability within power and other critical infrastructure facilities face a growing, worldwide threat from cyber attacks. Outlaws are bent on cutting power companies’ cyber versions of barbed wire, or the Devil’s Rope. Unfortunately, many ICS asset owners lack an accurate understanding of their true risk – particularly from industrial control system vulnerabilities.
Read now >
In this white paper, Frost & Sullivan’s independent analysis shows that PAS Cyber Integrity is a comprehensive, feature-rich software product, and that PAS will continue to demonstrate strong momentum consistent with the growing emphasis on industrial cybersecurity around the globe.
Read now >
See the results of the annual SANS survey that gathers and analyzes raw data from hundreds of IT and industrial control systems (ICS) security practitioners. This report turns these inputs into actionable intelligence to support new developments and address trends in the field to inform crucial business decisions. Discover trends and other changes that make active use of ICS as a core enabler for business imperatives and provide actionable advice for today's security practitioners.
Read now >
In this transcript of a webinar, industry experts David Batz, senior director of Cyber and Infrastructure Security at Edison Electric Institute, and Jason Haward-Grau, chief information security officer at PAS Global, discuss whether a government mandated regime makes for a more secure an industry, or is self regulation the answer.
Read now >
With cyber incidents and reported vulnerabilities on the rise, industrial cybersecurity leaders must deploy proactive industrial endpoint detection and response (EDR) across the entire process control network. This paper examines how EDR should extend to proprietary endpoints, what security controls have the greatest effect on reducing risk for these cyber assets, and what best practices apply.
Read now >
With smarter, integrated automation comes a difficult challenge that has repercussions from the boardroom to manufacturing operations: ICS cybersecurity. It is generally well understood that you cannot secure what you cannot see. That is why accurate, up-to-date visibility of the system inventory is a key element of any cybersecurity solution. This paper discusses industry best practices for hardening ICS cybersecurity, focusing on the first and most crucial step: ICS inventory management.
Read now >
If there is a cybersecurity report card, how are we doing as an industry? As cybersecurity best practices continue to emerge, what are the top three things we must consider to secure industrial control systems in today’s increasingly digital Power facility? POWER Magazine editor Aaron Larson recently addressed these questions in an industry panel discussion on emerging best practices, takeaways, and case studies that illustrate how leaders in the power industry are addressing compliance and cybersecurity standards.
Read now >
The target is on the back of industrial control systems (ICS) within the power and process industries. The number of attacks, as reported by the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), has increased fourfold since 2010. This paper discusses the current state of cybersecurity in the industry and best practices for implementing a comprehensive ICS cybersecurity strategy.
Read now >