Digitalization and Security in the Energy SectorWe all know that our world is becoming ever more connected. Billions of intelligent devices and machines are generating massive amounts of data that creates enormous potential for businesses and other organizations to optimize their operations and obtain important efficiencies. Digitalization creates not only these important opportunities, but also significant challenges. In particular, greater connectivity presents the potential for risk if not recognized and managed.
The Benefits from Digitalization are Great – Security Must Keep Pace
It is with growing concern that hackers are increasingly targeting operational technology (OT), essential for availability, production and safety of critical infrastructure. Attacks against OT have ballooned from 5% to 30% in the last few years. Energy companies make up a majority of these attacks – a spike driven by aging assets, outdated security practices and increased connectivity.
The attached provides a high-level overview of both the benefits and challenges from digitalization in the energy sector. This study covers topics such as:
- The new risk frontier in the energy sector and what the industry must do to prepare.
- The relationship between connectivity, transparency and insight.
- Why security analytics are an essential part of any organization.
The State of Cybersecurity in the Oil & Gas Industry: United StatesA survey last year of managers in the U.S. oil and gas industry reveals that the deployment of cybersecurity measures isn’t keeping pace with the growth of digitalization in their sector’s operations. The Ponemon Institute, in its The State of Cybersecurity in the Oil & Gas Industry: United States, found that just 35 percent of respondents rated their organization’s operational technology (OT) cyber readiness as high.
Additional key findings in this first-of-a-kind study related to cyber readiness, risks and challenges include:
- 59 percent believe there is a greater risk in the OT environment than the IT environment;
- 61 percent said their organization has difficulty mitigating cyber risks across the oil and gas value chain;
- Only 41 percent of respondents said they continually monitor OT infrastructure to prioritize threats and attacks;
- 65 percent of respondents say the top cybersecurity threat is the negligent or careless insider and 15 percent of respondents say it is the malicious or criminal insider – underscoring the need for advanced monitoring solutions and critical safety zones to identify atypical behavior among personnel;
- 61 percent say their organizations’ industrial control systems protection and security is inadequate.
Can Digitalization and Cybersecurity Co-Exist? A Tabletop Discussion with Industry ExpertsFrom mega attacks to risk ownership to certification, standards and regulations. Hear first-hand from cybersecurity experts at ARC Advisory Group, NXP Semiconductor, Siemens and Tenable, Inc. about how to best build your cybersecurity posture.
360 Degrees of ProtectionThe convergence of software, data and connected devices, commonly referred to as the Internet of Things, brings unprecedented opportunities to industrial companies like real time operations optimization and prescriptive analytics. This sweeping technological transformation also introduces a wide array of security threats that require a layered defense approach to detect, respond and remediate at all levels of operations.
A Deeper Look at Layered Protection
To ensure comprehensive protection of production environments, all levels must be protected simultaneously, from field automation to corporate management systems. Siemens helps industrial companies build layered defenses with a comprehensive security solution that addresses the three pillars of industrial control systems: system and software integrity, network security and plant security. Our methodology:
- Capitalizes on Siemens operational technology expertise
- Integrates recommendations from leading security standards (e.g. IEC 62443, RMF, ISO 27000)
- Ensures systems integrity through integrated security features in drives, controllers, HMI systems, process automation and motion control systems
- Protects against unauthorized network activity via encrypted communication, VPN, firewalls, cell protection, DMZ, and remote traffic monitoring via intrusion detection systems
- Secures physical access to plant and critical components via access control and asset protection services
Industrial Automation Meets IT SecuritySecurity requirements for industrial control systems differ significantly from the requirements of corporate IT. Designing and implementing a secure industrial network requires core competencies in both cyber security and industrial automation. Siemens pairs depth of expertise in these disciplines with an understanding of specific customer business objectives, operating requirements, and security posture. Armed with best practices in architecture, design and management developed across thousands of global client deployments, Siemens helps customers keep their network from becoming their weakest link.
An Agile Security Partner
We customize a security roadmap for each client
- Building upon a best practice foundation in critical infrastructure industries
- We evaluate network infrastructure and overall security posture
- Vulnerabilities that arise from procedural, behavioral and technical gaps are documented
- We assess how gaps impact operational vulnerability, and recommend how to close them
- Clients receive comprehensive guidance for secure network design & deployments
- We help deliver and adapt the plan to stay ahead of the threat landscape
Secure Communications Equipment
The combined security intelligence and modular design of Siemens switching and routing equipment enable clients to address complex interconnected network topologies, and prevent disruption of mission critical applications.
Our integrated software enables secure access management and authentication of distributed devices, as well as continuous network monitoring and threat detection to prevent network intrusions in real-time.
Stay Ahead of Attacks with Preventive Security Services
The Siemens Cyber Security Operation Centers (CSOCs) proactively monitor global threat activity on a continuous basis, and provide a broad range of services including:
- Intrusion detection and notification
- Remote incident analysis and incident management
- Artifact analysis, forensics and malware signature validation
- Security advisories for industrial products
- Security hygiene including security updates, perimeter firewall audits, managed anti-virus, patch/vulnerability management, asset configuration management
The CSOCs translate security intelligence into the real-time actions, enabling clients to stay focused on running their operations.