In OT cybersecurity, the last few years have been a wild ride. In 2015, only the most progressive industrial organizations recognized the threat OT cyber risks pose to industrial safety and reliability. By 2018, most industrial organizations had launched OT security programs. Then, like a scene right out of the Clint Eastwood classic, The Good, the Bad, and the Ugly, OT asset owners were caught in the crossfire, as, like gunslingers, OT security vendors popped up and competed to find their fortunes.
However, despite the chaos in the OT security world, much good has been achieved. For example, many industrial organizations improved their understanding of their OT cyber assets and current risk profiles. However, some bad – and even some ugly – remain.
- The Good: Boards of directors and business leaders have more knowledge of OT cyber risks. Funding OT security programs is easier. Programs are moving from tire-kicking to solution viability testing.
- The Bad: The industry’s reception to initial tools/solutions has been mixed. Vendors continue to confuse OT security teams by noisily repeating well-worn but seldom proven mantras – 100% visibility! Single pane of glass! Meanwhile, OT teams struggle to identify which of the existing OT security solutions are viable and which are “all hat, no cattle.”
- The Ugly: Many of the products currently available will ultimately fail to deliver on their promises. Basics are missing. Scalability challenges exist. Vendor promises remain unfulfilled.
This presentation provides an insightful look at the current state of OT cybersecurity. It focuses on strategies owner operators and IT and OT security teams can use to cut through the noise. It also provides guidance on how to assess the current state of their program, what they should focus on in the next year, and what they should be prepared to achieve in the next 3-5 years.