Harnessing the Power of Vital OT Endpoint Information for Security, Resilience and Performance
HTML-код
- Опубликовано: 14 июн 2023
- SANS ICS Security Summit 2023
Deeper Data, Better Protection: Harnessing the Power of Vital OT Endpoint Information for Security, Resilience and Performance
Speaker: Gabriel Authier, Chief Product Officer, Industrial Defender
Let's discuss what it takes for OT owners and operators to shift their cybersecurity mindset from "checking items off a list" to one focused on "what actions will enhance business continuity, increase resilience, minimize downtime, and support safety." If you’re attending SANS Summit, you likely already have a good understanding of the leading frameworks and best practices, whether you're required by regulation or not. But how can we go beyond getting a passing grade on any given framework to focus on the safer, more secure outcomes? The key is deeper insights into our OT systems and assets. By gaining a deeper understanding of the state of our operations, we can better identify threats, risks and prioritize a plan to address them. There's a wealth of valuable data available within our OT infrastructure, at the endpoint level, that significantly enhances the maintaining, protecting, and troubleshooting of industrial operations. It eliminates guesswork and prolonged investigations when an issue arises, and shines light on risks so we can proactively avoid them. During this presentation, we'll explore real-world examples of how industrial organizations have advanced their security journey by maturing their OT data management. We'll go beyond “meeting requirements” and discuss the ways that deeper OT asset data play a crucial role in safety, security and resilience across industrial sectors. We'll delve into specific scenarios such as:
Knowing you have an issue in the environment, but not knowing where to go to fix it
How one operator identified an issue by comparing historical context
How an operator discovered a highly risky attack surface exposure within an asset that had been overlooked
How enriched endpoint information can assist SOCs in responding to incidents and aid in forensic investigations.
View upcoming Summits: www.sans.org/u/DuS
