A cybersecurity report by Kaspersky has revealed that the main barrier inhibiting or delaying the implementation of industrial cybersecurity projects is the almighty Red Tape.
Dubbed State of Industrial Cybersecurity in the Era of Digitalisation, the report elaborates that the most common obstacles include the inability to stop production at 34 per cent, and bureaucratic steps, such as a lengthy approval process at 31 per cent, together with having too many decision-makers that stands at 23 per cent.
“This barrier may become a critical point in light of COVID-19 because they can affect the implementation of pandemic-driven operational technology (OT) security initiatives,” notes the report. “Organisations need to make sure their protection is up to date with these changes and there are no open doors for malicious actions in ICS networks.”
Although the cybersecurity race hasn’t slowed down, there have been recent reports of worse incidents including high-profile attacks, hitting industrial control systems (ICS).
The pandemic lockdown introduced its own challenges in addition to the existing threat landscape. Industrial firms now have to adapt to new norms including remote work, overnight digitalisation, and new hygiene requirements, as well as specific pandemic-driven threats such as massive growth in phishing attacks.
The above barriers, however, are what organisations will have to overcome when implementing cybersecurity projects. Remarkably, most of them refer to bureaucratic rather than technical obstacles – in total, almost half of organisations – 46 per cent – face red tape delays. In addition to the most prevalent-long approval times and numerous decision-makers. Such include protracted supplier selection and purchasing processes, as well as interference from other departments.
Typical barriers in the implementation of OT/ICS security projects
These barriers may become even more critical in the current post-lockdown period. The survey reveals that almost half of organisations, 46 per cent, expect to see changes in their OT security priorities as a result of the pandemic.
These organisations will probably need to shift their security strategy on-the-fly and quickly implement new cybersecurity practices. While it can be challenging generally, due to the specific requirements of OT, the barriers for implementation can complicate and slow down the process even more. Therefore, some organisations will need to be even more conscious as they try to overcome these difficulties with decreased OT security budgets.
“It’s always more difficult to invest money and resources in projects without a clear return on investment, such as with cybersecurity initiatives. And while cybersecurity for OT is still a developing area, all these management barriers are quite natural,” said Georgy Shebuldaev, Head of Growth Center at Kaspersky.
In order to help industrial organisations accelerate the implementation of industrial cybersecurity projects, Kaspersky suggests the following steps:
- If an organisation doesn’t have enough experience and practice in complex ICS security projects, it’s better to implement solutions step by step: start with building organisational processes and adopting basic cybersecurity measures such as security gateways and endpoint protection. Then move to more complex projects such as network monitoring, intrusion prevention, and SIEM. Industrial standards, such as ISO or IEC guidelines, can help to organise methods and increase the speed of project execution.
- Introduce a practise whereby all new OT systems are implemented with cybersecurity built-in. This should simplify further protection processes and give the OT security team the ability to test new protection tools on these parts of the infrastructure.
- Enable education and training for all teams including specific ICS security training for IT security and OT engineers and awareness to all employees. This will help different teams understand the risks and responsibilities of each other and increase the overall level of consciousness about cybersecurity.
- Choose a reliable cybersecurity solution for OT components and networks, as well as trusted partners for implementation.
The solution includes dedicated protection for endpoints and network monitoring as well as ICS expert services and intelligence. The services enable cybersecurity assessment, incident response, and obtaining the latest data about emerging threats and how to address them. The results of cybersecurity assessments may be helpful in justifying protection projects to the board.
Read more from the report, State of Industrial Cybersecurity in the Era of Digitalisation.
Do you have a story that you think would interest our readers? write to us firstname.lastname@example.org