Skip to content
en

OT/ICS Cyber Security

Visibility and security for industrial environments.

cybersec_m
Lightup

Demanding and Vulnerable IT Environments

Monitoring critical environments is of paramount importance, as their criticality makes them attractive targets for targeted attacks. There are, however, many challenges when it comes to monitoring critical environments. Often there is poor visibility into the environment, the environment may be completely isolated and its operations must not be jeopardised. Critical industrial environments have not necessarily been designed with information security in mind and might contain old legacy equipment that may be impossible to upgrade. In high-security information networks, isolation is an important security control and its enforcement must be monitored.

Critical Environments

Loihde - 20230317-DSCF2846 - 1920 x 2880

Production Networks and Industrial Control Systems

IT is a broad industry with a wide range of customer environments and requirements. For example, production networks (OT/ICS) and industrial control systems (SCADA) have their own challenges that require specific expertise. They are often critical networks that need to be kept operational even in the most challenging security situations.

New business, support and remote control processes that have come with digitalisation have also introduced new information security risks. As the interest in cloud adoption for OT networks increases, questions are raised of whether it is even possible to utilise cloud services in OT networks and, if so, how cloud services can be introduced securely.

Traditionally, OT environments have been isolated from IT environments, and they have had quite different priorities. However, OT and IT environments are converging and to truly ensure information security, it must be seen as a whole. Our information security experts include experts in industrial environments that support customers with assessing their current state of information security and developing it. 

Providing Security to Daily Operations

Digitalisation has also had its effects on critical industrial and automation environments (OT, ICS, SCADA). New business, support and remote control processes have introduced new information security risks. The environments that previously were very isolated are now increasingly networked with other information systems. Poor visibility and new information security risks make the environments vulnerable.

Our monitoring service for critical industrial environments puts your basics in order. The automated system/device inventory provides visibility into devices and systems and their status. Passive monitoring makes it possible to monitor the behaviour of environments without interruptions. Our Cyber Security Operations Centre (CSOC) monitors and reacts to information security threats and incidents. The solution can be scaled and applied to decentralised production environments and it also makes the monitoring and quality of information security more uniform. This provides security to operations.

Loihde_some (56)
Sormet tietokoneen näppäimistöllä

Prevent Data Leaks from Isolated Networks

The rapid development of network environments can cause configuration errors in the protection of critical networks. Constant changes in the environments expose them to errors that go unnoticed and human error. For example, network topology, firewall and VPN configurations or remote control and maintenance connections may be incorrectly configured or constructed. These errors can create leakage points in the isolated network. Data may leak out of the network or be exploited in attacks by threat actors. Therefore, the functionality of the isolation must be monitored.

Our Isolated Network Cyber Alert service tests the isolation of your network and alerts you to any leaks found. Network isolation testing is carried out on a large sample, by testing different escape techniques. The service can be implemented as a three-month pilot, after which it can continue as a continuous, managed service. In the managed version of the service, we test network isolation on a regular basis, making it possible to quickly respond to any loopholes. Our CSOC will report the findings and propose necessary corrective actions.