Source: Information Security Forum
11 May 2018

The Information Security Forum (ISF), the trusted source that senior security professionals and board members turn to for strategic and practical guidance on information security and risk management, today released Industrial Control Systems: Securing the systems that control physical environments, the organization’s latest report which prepares information security managers and practitioners to evaluate Industrial Control Systems (ICS) information security problems and protect ICS environments.

In conjunction with the release of this report, the ISF is launching the ISF ICS Security Program, a flexible and collaborative program to help organizations address the problems they are facing and to make effective, sustainable improvements to information security arrangements in their ICS environments.

The significant concerns about cyber risk raised during research – along with well-publicized cyber security incidents and an increase in media coverage of ICS security vulnerabilities – clearly demonstrates the urgency that organizations should now attach to improving information security across both ICS environments and the Industrial Internet of Things (IIoT). With many organizations heavily reliant on ICS to support business operations, the potential impact of getting information security wrong can be catastrophic. Costs can be extensive, corporate reputation severely damaged and lives can be put at risk. However, many of these same organizations are grappling with fast-changing, interconnected and complex ICS environments. At a time of increasing yet unclear levels of risk, business leaders are questioning the effectiveness of ICS security arrangements.

“In today’s modern, interconnected world, the potential impact of inadequately securing ICS can be catastrophic, with lives at stake, extensive costs and corporate reputations on the line. As a result, senior business managers and boards are under growing pressure to improve and maintain the security of ICS environments,” said Steve Durbin, Managing Director, ISF. “To improve the effectiveness of ICS security, organizations should implement a tailored, collaborative and risk-based approach. The ICS Security Program detailed in Industrial Control Systems: Securing the systems that control physical environments presents a practical and structured method for enabling actions that deliver advantages over adversaries and competitors alike.”

Read Full Article