维护您的ICS网络安全计划——获得支持、沟通风险并确保长期成功.pdf

《维护您的ICS网络安全计划——获得支持、沟通风险并确保长期成功.pdf》由会员分享，可在线阅读，更多相关《维护您的ICS网络安全计划——获得支持、沟通风险并确保长期成功.pdf（28页珍藏版）》请在三个皮匠报告上搜索。

1、CybersecuritySustaining Your ICS Cyber ProgramGaining Support,Communicating Risk,and Ensuring Long-Term Success Blake GilsonUpstream Oil&GasManufacturingMidstreamPipelineFuels/TerminalsLube OpsUnconventionalDeep WaterLNG/ConventionalRefining/ChemicalsResearch LabsResearchProtect the perimeter of the

2、 ICSThe perimeter of the ICS is a critical layer of our defense in depth strategyProtecting&monitoring is a key enabler to maintain a strong cyber postureEnable visibility within the ICS Detect within the ICS to enable visibility into key infrastructureSupplement local monitoring with central monito

3、ring capabilities Monitorkey data centrallyData aggregation enables event correlation&fleet monitoringCollect key data sources&refine alerts to enable value added investigationsInvestigatethrough partnerships Site Engineering&Operations teams critical for investigationsPartnership with IT&OT subject

4、 matter experts is key to unlocking value A p p r o a c h t o I C S C y b e rService Management FoundationL e s s o n s f ro m E x xo n M o b i l s A p p r o a c hDedicated OT cybersecurity program&rolesIntegrated security with operationsCross-functional OT and IT teamsCentralized framework,local ex

5、ecutionData-driven security improvementsCybersecurity as a cultural priority5F ra m i n g Yo u r P ro g r a mWhy do we have an OT/ICS Cyber Program?Safety?Cybersecurity?Operations?Stop the threats?About new developing risk management area?Backdoor/BreachBackdoor/BreachSteal/Break SomethingSteal/Brea

6、k SomethingLogic Bomb to Impact OTCyber Physical AttackCyber EspionageCyber PrepositionI T /OT C y b e r T h r e a t O v e r l a pBow-tie analysis as bases for OT controls understandingVisual control relationship to eventPossibly effective engineering,operations or leadershipRisk EventB o w-T i e A