Industrial and Utilities

Ensuring Cybersecurity Compliance for Electric Power Industry

Operational technology (OT) networks and Industrial Control Systems (ICS) are increasingly interconnected with IT networks. This interconnectedness has increased the ICS/OT attack surface due to:

• Proprietary appliances and sensors

• Malware insertion via dedicated attacks to take control of critical infrastructure by criminal and nation-state actors

• Third-party remote access for contractors that may have lax security processes

NERC CIP are mandatory security standards for high-voltage electric transmission and power generation. CIP-005, CIP-007, and CIP-010 require utilities to collect and archive network traffic data at the plant and substation level. Network taps can be placed in power plants and substations at multiple levels of the SCADA network. Unlike Span ports, Network Taps don't drop packets, don't need programming, and can be installed where you need them.

Three Challenges Facing Utilities

The US electric generation and transmission infrastructure is one of the most complex systems in the world. Comprised of over 9,000 power plants, and 300,000 miles of high voltage transmission lines, it has a combined generation capacity of one million megawatts.

The utilities that operate this infrastructure face unprecedented challenges from three simultaneous drivers of strategic change:

• Cyber threats – Countries round the world test for weaknesses in the US electricity grid’s cyber defenses
• Emergence of Smart Grid – Bringing a new generation of digital controls, computers, data, and internet access
• Changing Power Mix – Gas-powered plants and renewable sources (solar/hydro/biomass/ wind) are replaceing coal

Fortification strategies have created large-scale adoption of ethernet and an increased dependence on telecommunications networks. This drivies requirements to inspect and monitor traffic on IT and OT networks.

Are you fortifying your IT / OT networks with monitoring tools to identify and root out malicious traffic?

Why Validate?

It's been said that there are two kinds of companies. Those who've been hacked, and those that don't know they've been hacked. And in these unusual times, the headlines scream about breaches occuring even at heavily fortified security companies. So how can you be sure that your cybersecurity defenses are actually working?

In a recent Keysight survey, 75% of companies surveyed have been breached on average once each year. Research indicates that only 50% of security professionals are confident in their current security solutions.

Industrial Ethernet for the IIOT

Today’s ethernet based industrial networks are entering a new phase requiring advanced testing that includes system-level validation using realistic application mixes.

The industrial network is made up of different components that serve multiple purposes and work in concert together. Components interacting over the network include programmable logic controllers (PLC), robotics components, motors, sensors, human-machine interface (HMI) devices, and integration switches for the cloud and corporate IT network.

The shared network carries different types of traffic with different time criticality, frame size, and bandwidth requirements. Validation challenges evolve with the application of technologies to solve real network problems. .

The biggest validation challenge is to create a real-life simulation of these workloads in the lab.

Have you validated that this new workload mix hasn't increased your attack surface?