IT disaster recovery, cloud computing and information security news

ICS professionals say that human factors are by far the biggest source of cyber risk

People remain the greatest threat to industrial control systems (ICS) and associated networks, as found by a new SANS survey focused on better understanding cyber security risks to operational technology (OT) systems. More than half of respondents also see the cyber risks to their safe and reliable operations as high or higher than in past years.

348 security professionals worldwide, representing IT, OT and hybrid IT-OT domains provided their thoughts in the SANS 2019 State of OT/ICS Cybersecurity Survey. 62 percent of those surveyed believe people are the greatest risk to compromise, distantly trailed by technology (22 percent) and processes and procedures (14 percent).

"The obvious concern about the risk that people represent - whether they are malicious insiders, careless employees or nation-state bad actors - is consistent across industries," noted survey co-author and SANS Senior Analyst Barbara Filkins. "We were a little surprised at the lower-ranking concern around process, given that there is significant complexity involved in ICS design, implementation and operation to safeguard OT systems. It's possible recent attacks that almost always include tried-and-true tactics that exploit human-factors might have impacted our respondents' perceptions."

Survey takers told SANS that identifying connected assets and gaining visibility into device, network and control system integrity remains an issue; 45.5 percent consider it a leading focus for their organizations. That aligns with traditional IT security concerns in which identifying and tracking assets and networks remains a challenge. Not surprisingly, mobile devices (including those used remotely to augment and replace ICS workstations), and wireless communications solutions are contributors to overall risks and threat exposure.

Survey co-author and director of SANS Industrials & Infrastructure business portfolio Doug Wylie said, "We know from previous SANS research that the addition of 'things' and mobile devices to ICS represent significant risk. We see in our newest results that practitioners struggle mightily with how to offset these mounting challenges."

The growing adoption and movement to cloud services (40 percent of respondents indicated they use some cloud service) represents additional risks with exposure to new threats that need to be comprehended and addressed. Wylie added, "Hyperconnectivity and the rapid introduction of new technology within OT is providing tangible value, but the added complexity that comes with each continues to outpace the readiness of those tasked with safeguarding today's systems from cyber threats."

Learn more in a SANS webcast on June 12, 2019: register at https://www.sans.org/webcasts/109625



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.