Section

IT/OT convergence at a time of unprecedented cyber-risks

By Manila Times - 7 months ago

IN the digitization of factory operations, industrial organizations are pulling production data from across their operations into IT systems. As more OT (Operational Technology) systems are connected to enterprise IT networks, this data can be shared to help drive business growth.

While the benefits of digital transformation or OT/IT convergence are undeniable, more connectivity equates to heightened vulnerability to cyberattacks. Smart and connected devices at the factory floor are high-value targets not only because of the intellectual property they contain but also because one day of downtime can cost millions. Since many OT environments have inadequate and outdated security, cybercriminals are increasingly attacking cyber-physical systems in manufacturing, energy, utility and other industries.

At the Fortinet APAC Operational Technology Security Summit 2024, OT experts discussed the convergence of IT and OT networks and the critical importance of a unified cybersecurity strategy that integrates multiple data sources to automate security and speed intrusion detection time.

OT security risks, challenges

Titled "Advancing Digital Transformation in a Time of Unprecedented Cybersecurity Risks," a study by The Manufacturers Alliance Foundation and Fortinet provided the starting point of the Summit. Its key findings include:

– Cybersecurity is a major business risk, with 78 percent of manufacturers ranking cybersecurity as a top-five business risk, compared to 70 percent in 2020.

– Ransomware extortion is the top cybersecurity concern for manufacturers, with 36 percent experiencing such an attack in the past year, up from 23 percent in 2020.

– Over 80 percent of manufacturers experienced at least one data breach in the past year, with 15 percent experiencing six breaches or more.

– The most prevalent security incidents reported include phishing attacks, malware, spyware and ransomware.

The study finds that manufacturers are addressing these heightened risks, foremost among them is that enterprises are making OT cybersecurity a priority like never before, broken down into various initiatives, as follows:

– Increased OT security audits, with 48 percent of manufacturers having conducted OT security audits or assessments in the past six months, up from 44 percent in 2020.

– Regular security reviews, in which 23 percent of manufacturers perform OT security audits monthly, while 49 percent do so quarterly.

– Security reviews of new equipment whereby 87 percent of manufacturers now conduct security reviews before purchasing new equipment.

– Scrutinizing third-party vendors such that a majority (54 percent) of manufacturers require comprehensive security assessments and management from third-party vendors.

But the bigger question is: are the manufacturers doing enough to stay ahead of the spiraling threat? Top-level findings revealed that companies have advanced in maturity in terms of security analysis, evaluation, monitoring, and assessment of their own operations and their third-party vendors as well.

At the same time, companies struggle with IT/OT collaboration and communication, the availability of skilled talent, and the galloping pace of change. That tempo is too often set by attackers with an appetite for profit and track record of innovation.

Many companies are at the beginning of their OT cybersecurity journey and looking for insights and best practices about how to protect the OT space without hurting productivity. Others are well on their way, with advanced programs and policies yielding impressive results. Regardless of their stage, the majority of the manufacturers who took part in the study expressed an increased awareness of the importance of cybersecurity as a business risk and the need to speed up IT/OT collaboration for a competitive advantage.

Roadmap to secure OT

The Fortinet OT Security Summit tackled these challenges head-on. The resource persons equipped organizations with the knowledge and tools to develop a comprehensive cybersecurity strategy that safeguards the entire production network, from legacy systems to cutting-edge technologies.

Essential to the OT security roadmap is the Fortinet OT Security Platform, a comprehensive suite of security products and services designed to protect industrial networks. It offers:

– Deep Visibility which provides a holistic view of the entire IT and OT environment.

– Zero-Trust Security anchored on security policies that require continuous verification.

– Security Operations Center (SOC) that centrally manages security across IT and OT networks at the network edge to include industrial-grade switch designed for power utilities, Wi-Fi connectivity security for hazardous environments, wireless gateway for connected fleets and mobile OT deployments, and OT View dashboard for a unified view of IT and OT security data.

– Security operations and services that detect threats, investigate incidents, and remediate vulnerabilities to include OT-specific security analytics and reporting, network traffic analysis deception technology and OT threat intelligence.

Powered by real-time OT threat intelligence, Fortinet's integrated approach to security enables customers to establish a zero-trust model and securely facilitate IT/OT convergence.

Disclaimer : Mymoneytimes implements extreme caution and care in collecting data before publication. Mymoneytimes does not liable for the adequacy, accuracy or completeness of any given information. Hence we are not liable for any kind of direct or indirect loss caused by the use of such information.