June: Physical And Human Security Perimeter
Walk-around the OT electronic security perimeter has been an issue even in the illusory days of the airgap. Removable media and portable computing devices are the second most frequent attack path for malware and other attack code reaching OT. This month you will review and update your policies in this area.
The physical security of cyber assets is also a concern. Your OT environment likely will have numerous different physical security environments. Manned and unmanned. Nearby and remote. Physically secured or reliant on your team to see something, say something. This month you will walk through these scenarios.
The goal is not to make you a physical security expert, just like we wouldn’t expect a physical security professional to be a cyber security expert. You will interact with the physical security team to ensure the appropriate physical security is in place for OT systems that could be used to attack other parts of OT and the underlying physical process.
Week 23: Identify How Updates, Information, & Applications Are Brought Into The OT Environment
Many OT security professionals have busted the airgap myth by asking questions on how software or firmware updates, schedules, recipes, anti-virus signatures, or applications are brought into the OT environment. They often are brought in through the approved OT...
Week 24: Review And Update The Removable Media And Portable Computer Policy
In a perfect world, all removable media and portable computers connected to OT would be dedicated to OT. They would only be connected and used on OT. Never on IT or any other network. One way to achieve this is to deploy data transfer servers in an OT DMZ that can...
Week 25: Evaluate Physical Security Of OT Cyber Assets At Manned Sites
You probably aren’t a physical security expert. I’m not. We should rely on people with domain expertise to design and evaluate physical security. Your task this week is to evaluate the physical security assumptions and plan at OT manned sites and areas. What are...
Week 26: Cyber Security At Unmanned Sites
Good security practice requires user authentication on all systems and applications. It also requires users to logout or be locked out when they physically leave the area or leave the cyber asset idle for too long. Many OT environments and cyber assets don’t follow...