Published on November 9, 2023, 5:10 am
Operational Technology (OT) facilities face unique challenges when it comes to cybersecurity. With constant market demands, regulatory requirements, and vulnerabilities, equipment and operators have to operate around the clock. However, security practitioners often struggle to ensure a robust cybersecurity posture for OT networks due to various factors.
While IT networks have made significant progress in addressing rising ransomware attacks, OT facilities tend to lag behind. This is mainly because they rely on multi-facility networks that incorporate both modern and legacy devices. Insufficient segmentation is a common issue in OT networks, which means that if a hacker breaches one area of the network, they may gain access to critical data from all other zones and even remote facilities.
To address these concerns, the Cybersecurity Code-of-Practice (CCoP 2.0) was introduced by the Cyber Security Agency of Singapore (CSA) starting from July 4, 2022. CCoP 2.0 aims to elevate cybersecurity capabilities in Critical Information Infrastructure (CII) sectors in response to the evolving cyber threat landscape.
One notable partnership working towards securing OT facilities and ensuring compliance with CCoP 2.0 is between Radiflow, a cybersecurity vendor, and ST Engineering. By leveraging zone segmentation technology such as ST Engineering’s 5000 series Data Diode integrated with Radiflow’s OT IDS, attackers can be isolated following a breach. This prevents them from accessing data from other facilities or segmented networks.
Goh Eng Choon, President of Cyber at ST Engineering, highlighted that this integration provides comprehensive visibility into an organization’s OT assets, topology, system behavior,cyberattacks,and breaches to OT cybersecurity policies.
Radiflow is also updating its risk management tool called Cyber Industrial Automated Risk Analysis (CIARA) to support the CCOP v2 standard specifically. This tool enables utilities to incorporate a digital image of their OT network and automatically assess their level of compliance with the standard. It also generates compliance status reports and helps organizations plan their roadmap to achieve full compliance. Cybersecurity teams can use CIARA to simulate virtual cyber breach attacks, calculate threat likelihood, and assess production loss scenarios.
Ilan Barda, Co-founder & CEO of Radiflow, emphasized that protecting multi-facility organizations is crucial for profitability and compliance with regulations like Singapore’s CCOP. The partnership between Radiflow and ST Engineering aims to ensure secure data transfer between OT zones while maintaining the necessary “air-gap” between physically separated source and destination networks.
In conclusion, the collaboration between Radiflow and ST Engineering enhances OT network segmentation and compliance with the CCoP 2.0 standard. By leveraging zone segregation technology and risk management tools like CIARA, OT facilities can better protect themselves against cyber threats and meet regulatory requirements in a constantly evolving digital landscape.