This paper examines how an over-reliance on IT-centric perimeter defenses, combined with an inability to see vulnerabilities lurking deep within industrial control system (ICS) environments, has left our critical infrastructure vulnerable. It also discusses current ICS vulnerability management challenges, as well as how you can find and remediate vulnerabilities hidden today within ICS environments by taking a more production-centric approach to managing vulnerabilities on Level 2, 1, and 0 ICS assets.
Read now >
Industrial companies have made significant investments in cybersecurity technologies to protect their plants and industrial control systems (ICS). However, many companies are unable to keep up with the never-ending stream of new vulnerability alerts from suppliers and groups like ICS-CERT. This leaves many plants at risk of serious cyber incidents, jeopardizing safety and operational reliability. In this paper, ARC Advisory Group discusses continuous ICS vulnerability management with PAS executives.
Read now >
[Power Industry Focused] There is no question that safety, reliability, and profitability within power and other critical infrastructure facilities face a growing, worldwide threat from cyber attacks. Outlaws are bent on cutting power companies’ cyber versions of barbed wire, or the Devil’s Rope. Unfortunately, many ICS asset owners lack an accurate understanding of their true risk – particularly from industrial control system vulnerabilities.
Read now >
In this white paper, Frost & Sullivan’s independent analysis shows that PAS Cyber Integrity is a comprehensive, feature-rich software product, and that PAS will continue to demonstrate strong momentum consistent with the growing emphasis on industrial cybersecurity around the globe.
Read now >
See the results of the annual SANS survey that gathers and analyzes raw data from hundreds of IT and industrial control systems (ICS) security practitioners. This report turns these inputs into actionable intelligence to support new developments and address trends in the field to inform crucial business decisions. Discover trends and other changes that make active use of ICS as a core enabler for business imperatives and provide actionable advice for today's security practitioners.
Read now >
In this transcript of a webinar, industry experts David Batz, senior director of Cyber and Infrastructure Security at Edison Electric Institute, and Jason Haward-Grau, chief information security officer at PAS Global, discuss whether a government mandated regime makes for a more secure an industry, or is self regulation the answer.
Read now >
With cyber incidents and reported vulnerabilities on the rise, industrial cybersecurity leaders must deploy proactive industrial endpoint detection and response (EDR) across the entire process control network. This paper examines how EDR should extend to proprietary endpoints, what security controls have the greatest effect on reducing risk for these cyber assets, and what best practices apply.
Read now >
Cyber incidents emanating from either cyber attacks or internal threats represent significant risks for every industrial organization and merit immediate attention. A recent ARC briefing with PAS executives on the PAS Cyber Integrity product demonstrated a deep understanding of automation systems and what it takes to help companies ensure the security of their most critical control assets.
Read now >
With smarter, integrated automation comes a difficult challenge that has repercussions from the boardroom to manufacturing operations: ICS cybersecurity. It is generally well understood that you cannot secure what you cannot see. That is why accurate, up-to-date visibility of the system inventory is a key element of any cybersecurity solution. This paper discusses industry best practices for hardening ICS cybersecurity, focusing on the first and most crucial step: ICS inventory management.
Read now >
If there is a cybersecurity report card, how are we doing as an industry? As cybersecurity best practices continue to emerge, what are the top three things we must consider to secure industrial control systems in today’s increasingly digital Power facility? POWER Magazine editor Aaron Larson recently addressed these questions in an industry panel discussion on emerging best practices, takeaways, and case studies that illustrate how leaders in the power industry are addressing compliance and cybersecurity standards.
Read now >
The target is on the back of industrial control systems (ICS) within the power and process industries. The number of attacks, as reported by the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), has increased fourfold since 2010. This paper discusses the current state of cybersecurity in the industry and best practices for implementing a comprehensive ICS cybersecurity strategy.
Read now >