Collaboration on Critical National Infrastructure Cybersecurity Key to Minimising UK Economic Risk (New Study)
A significant cyberattack across the UK’s critical national infrastructure could have far-reaching and significant economic impacts for Britain according to a study carried out by the Cambridge Centre for Risk Studies at the University of Cambridge Judge Business School. The report, developed in conjunction with Lockheed Martin, Integrated Infrastructure: Cyber Resiliency in Society, models the potential impact of a coordinated and sustained cyberattack on one of the UK’s regional power distribution networks and the likely short and long term costs to the UK economy.
Additional Event Information
2017 ICS Cyber Security Delegate List
As we draw closer to ICS Cyber Security 2017 - we wanted to share a list of organisations that will be in attendance.
Industrial OT-IT Convergence: Is It Really Inevitable?
At last year’s Cyber Security for ICS Europe conference, one of the liveliest topics of discussion considered the widespread segregation of IT (information technology) and OT (operational technology) departments, and the prospects for convergence.
As the list of questions surrounding this issue grows, many experts involved in ICS are doing what they can to guide others towards convergence before the risks become overwhelming. This article offers a few of those perspectives ahead of the 2016 event.
Top 10 Cyber Trends Affecting the CNI Sector
Anthony Leather, Senior Consultant for Aerospace, Defense and Security at Frost & Sullivan, presents the top 10 cyber threats facing critical national infrastructure based on detailed analysis of the most recent incidents. According to Leather, the cyber threat will be the number one risk for the next 20 years. Governments and industry must engage with the cyber threat now in a more strategic and meaningful way than has so far been achieved.
Infoposter: Top 10 Cyber Trends in ICS
View the recent research findings from ICS Cyber Security 2015 knowledge partner Frost & Sullivan in this single infoposter.
Security wake-up call for European critical infrastructure
From the 'cyber attack' on Ukraine assets to power generation problems in the UK, incidents this year have already underscored the potential damage that an unexpected incident can place on a nation’s critical national infrastructure and calls into question whether enough is being done when it comes to resilience and emergency measures. Read more on how Europe is being reshaped to respond to the threats...
Critical Infrastructure - Why the lack of debate?
There was much talk about defence in the run up to last year’s UK General Election. Today, the issues surrounding Trident, border security and the developing issues in the Middle East remain points of public contention. However, there still seems to be no debate about the United Kingdom’s defence and internal protection of its infrastructure and assets. National Security expert Malcolm Warr discusses the elephant in the room...
Industrial Control Systems and Process Control Networks Cybersecurity Assessment
As industrial control systems (ICS) and process control network (PCN) environments become more connected, “security by obscurity” is no longer an adequate strategy. Sophisticated adversaries have begun to take notice of vulnerabilities found in today’s operational environments. The ICS/PCN Cybersecurity Assessment evaluates technology and network defense processes to measure the overall corporate risk, identify risk mitigation opportunities, and improve control system security.
28 Solutions to the Cross-Sector ICS Nightmare
In February 2017, two researchers at the Georgia Institute of Technology simulated a cyber attack on a water treatment plant. Using ransomware, the academics managed to access programmable logic controllers (PLCs) to shut off valves, increase the chlorine content of water and show false information on computer displays.
The ICS world is riddled with weaknesses that are ready to be exploited by switched-on wrongdoers for currency and chaos. In this analysis we look at five of the most dangerous roots of ICS breach and how to best prevent them.
Additional Event Information
The ICS Threat Matrix: “Software only as safe as the last patch”
2016 saw cyber criminals continue to become ever smarter, more efficient and increasingly successful at penetrating industrial networks. Industrial control systems (ICS) operators reported more security incidents to their governing authorities than in any year to date. In this video, we talk to cyber security experts about the biggest problems they perceive in the arena now and in the near future, for the critical infrastructure that underpins so much of daily life.
Guide to Implementing the Top 20 Critical Controls for ICS Cybersecurity [Lockheed Martin]
The US State Department in conjunction with the SANS Institute has previously demonstrated more than 94% reduction in "measured" security risk through the rigorous automation and measurement of the Top 20 Critical Controls.
What does this mean for your unique control systems environment?
Find out how The Top 20 Critical Controls map to real-world business value across critical infrastructure operations including:
- Operational uptime and efficiency
- Improved situational awareness
- Cyber risk mitigation
- Resource relief and scalability of tools
- Audit success
8 truths the ICS Cyber Security Summit must address
A controversial confession...
From the perils of information legislation to bad advice from self-proclaimed experts, the field of cybersecurity for critical national infrastructure is peppered with pitfalls. Here, Defence IQ examines 8 hard truths that the ICS Cyber Security Summit hopes to discuss to better educate the community on both the dangers and the opportunities impacting this field.
State sponsored hacking highlights public-private security gap [Defence Industry Bulletin]
The April 2015 issue of Defence Industry Bulletin takes a look at the recent revelations made about state-sponsored cyber activities and what this level of threat means for governments and private companies tasked with protecting critical national infrastructure. Are these partnerships working or does more need to be done?...
Digital Danger: How Do You Build An Effective Cyber Strategy For Oil & Gas?
From the technical to the cultural, there a many risks associated with digitizing upstream oil processes. As David Joy, Senior Project Integration at Weatherford explains in the following interview, Cyber threats exists that can be managed if you stay ahead of them – read below to find out the elements that go into building and maintaining a robust and proactive cyber security strategy: Highlight the range of technological and cultural risks associated with going digital. Technological risks: Company intellectual property, trade secrets, etc. typically are more accessible to a larger audience when stored and accessed via digital methods. Digital surveillance and gathering/storage of personal data is pushing the limits of individual privacy concerns, and increasing the corporate liability for privacy breaches. Cultural risks: Global staff possesses varying degrees of knowledge about cyber-security, the importance of safeguarding company intellectual property, etc. –
Risk of environmental cyber attacks demands “enhanced monitoring”
Much has been made of the hacking threat in recent weeks where it concerns the loss of business and intellectual property, but there is a risk that such attention can take the focus off the other – and arguably more vital – side of the spectrum; namely, the physical and environmental risks posed by miscreant or state-led cyber attacks. We explore the potential disasters waiting in the wings for operators in the High Hazard industry, while an anonymous insider clarifies what needs to be kept in mind when it comes to protecting these systems or forming an emergency action plan to respond...