It takes many different methods to stave off cyber attacks at industrial sites. That’s because a breach can come in many different forms—from infected systems, unauthorized personnel or a network hack, to name a few.
Suppliers of industrial control systems (ICS) have been diligent about finding different ways to protect the system and everything surrounding it. For its part, Siemens offers its Plant Security Services that cover everything from security assessments to protecting physical access of facilities and continuous network monitoring.
In an effort to expand its services, last week Siemens announced the opening of its Cyber Security Operation Center (CSOC) with locations in Portugal, Germany and the U.S. Siemens industrial security specialists based at these sites will monitor customers’ industrial facilities around the world looking for cyber threats and warning companies in the event of security incidents, as well as coordinating proactive countermeasures.
The CSOC provides managed security services in which facilities are under continuous surveillance—an important next step in cybersecurity as the Industrial Internet of Things (IIoT) increases the connectivity of industrial infrastructures.
If a Siemens expert detects an increased risk, they give the customer an early warning, issue recommendations for proactive countermeasures and coordinate their implementation. The countermeasures are based on the criticality of the incident and the likely impact on the business, and include modifying firewall rules or providing updates for closing gaps in security.
In addition, Siemens provides forensic analyses of security incidents. Companies are then in a position to prepare reports that comply with international standards such as ISO 27002 or IEC 62443. Manufacturing companies also receive a transparent view of their plants' security status through Siemens' partner, Intel Security. Products include: McAfee VirusScan, McAfee Application Control, McAfee ePolicy Orchestrator (ePO), as well as McAfee Enterprise Security Manager with Security Information and Event Management.