in Security

Tripwire survey finds 93% fear cyberattacks shutting down operations

Posted 9 October 2019 · Add Comment

Tripwire has announced the results of a survey examining how organisations are addressing industrial control system (ICS) cyber threats.


Image Shutterstock

The survey was conducted by Dimensional Research last month and its respondents included 263 ICS security professionals at energy, manufacturing, chemical, dam, nuclear, water, food, automotive and transportation organisations.

According to Tripwire’s survey, 93% were concerned about cyberattacks causing operational shutdown or customer-impacting downtime. In an effort to prepare against such threats, 77% have made ICS cybersecurity investments over the past two years, but 50% still feel that current investments are not enough.

“Cyberattacks against critical infrastructure and manufacturers pose a real threat to the safety, productivity and quality of operations,” said Kristen Poulos, vice president and general manager of industrial cybersecurity at Tripwire. “In these environments, where virtual and physical converge, cyber events can interfere with an operator’s ability to view, monitor or control their processes. Investing in industrial cybersecurity should be a priority in protecting operations from disruption.”

Of the 50% who felt current investments were not enough, 68% believe it would take a significant attack in order for their organisations to invest more. Only 12% of all respondents expressed a high level of confidence in their ability to avoid business impact from a cyber event.

In assessing industrial organisations’ current set of basic cybersecurity capabilities, the survey found the following:
•    Only 52% have more than 70% of their assets tracked in an asset inventory.
•    Almost one-third (31%) of organisations do not have a baseline of normal behavior for their operational technology (OT) devices and networks.
•    Less than half (39%) do not have a centralized log management solution in place for their OT devices.

Poulos added: “Visibility, although the first step, is commonly the biggest hurdle when it comes to protecting ICS environments from cyberattacks. Organisations can gain visibility of their OT networks without disrupting their processes by following methods that meet the unique needs and requirements of OT devices. This includes passive monitoring of network traffic to identify assets, and baselining normal activity to spot anomalies, and analyzing log data for indications of cyber events. With that visibility, organisations can effectively implement additional protective controls, such as industrial firewalls to segment critical assets and establish secure conduits.”

Additional findings include:
•    About half (49%) said that collaboration between IT and OT has improved over the past two years.
•    More indicated that IT is taking the lead on ICS security (44%) vs. OT (14%); 35% said it is evenly split between IT and OT.
•    More than three-fourths (79%) say there is a gap in training OT and IT staff on the unique needs and requirements for securing OT environments. Of those who made cybersecurity investments over two years (77%), education and training was the most common investment (82%).


For more findings on Tripwire’s survey, click here



 

* required field

Post a comment

Other Stories
Advertisement
Latest News

BAE Systems to provide open source intelligence support to US Army

The US Army has awarded BAE Systems a new $437 million task order to provide open source intelligence support for the Army and Army Intelligence & Security Command (INSCOM) approved partners.

BISim to introduce VBS4

Developer of advanced military simulation and training software, Bohemia Interactive Simulations (BISim), has announced the introduction of its next generation of desktop training and IG simulation host software, VBS4, in

Titan Airways to welcome its first A330

Titan Airways, the London Stansted-based charter and airline sub-charter specialist, is bolstering its fleet with the introduction of a first Airbus A330 airliner.

Stansted to be first airport to convert all coffee waste to solid biofuels

London Stansted is set to become the first airport in the world to convert all its coffee grounds to solid biofuels, after a successful trial with Cambridgeshire-based bio-bean, the world’s largest recycler of coffee grounds.

French patrols doubled to tackle migrant crossings

The UK and France have agreed an enhanced action plan which will see patrols on French beaches doubled, as activity is stepped up to tackle migrants crossing the Channel in small boats.

Meggitt signs SMARTSupport contract with GA Telesis

Meggitt plc has signed a multimillion dollar SMARTSupport agreement with GA Telesis, LLC, to supply parts and technical support to GA Telesis’ MRO Services Organisation for the repair of engine components on the CFM56 and V2500

See us at
DSEI JP BT1605201119SMI ActiveP BT1206121119SMI GMS BT1906071119SMI FAV BT1006141119VIDSE BT1605060320FIL20BT010819260720