Industrial Security, Telemetry Security
Our Specialist Knowledge
Industrial telemetry systems are going through a renaissance. Where once, there was propriety stand-alone RS-485 bus topologies, such as MODBUS and Fieldbus, with the PLC controller connected through dial-up modems on Public Switched Telephone Network, (PSTN) lines. These systems are now fully integrated interconnected IP networks, connected through 'always on' broadband with real-time event monitoring.
These systems, monitoring and controlling crucial plant and often national infrastructure are increasingly becoming the target of Hackavist. These individuals see the challenges of disrupting something tangible, far more mischievous than simply distributing an email virus. Of course there are also those who would look to exploit vulnerabilities in these systems for far more sinister and unmanageable agendas.
Securing these systems physically, and monitoring through IDS, CCTV and access control mechanisms is obviously important, and will mitigate against a local forced attack. However, equally important is to secure logically, against a remotely orchestrated network intrusion.
Our joint expertise and understanding of security and SCADA systems, protocols and equipment makes us uniquely placed to offer the best solutions and advice regarding security strategy, securing, integrating and threat analysis of these systems.
The old paradigms of security by obscurity can no longer be an option for SCADA security. These systems are now clearly in the sights, of not just the mischievous, but the dangerous.
The type of industrial security services we can offer include
- Assist in the production of a SCADA security policy
- Production of information critically matrix, utilising Integration, Availability, Confidentiality, (IAC) risk analysis; quantitative and qualitative
- Conduct a site assessment of assets and topology and produce set of recommendations detailing physical and logical boundaries
- Advice on and production of firewall rules and access control lists (ACL) for trusted and un-trusted industrial networks, detailing ports to be locked, whilst still maintaining access for support and planned preventive maintenance (PPM)
- Set-up of Virtual Private Network, (VPN) and Internet Protocol Security, (IPSec) tunnels for remote secure monitoring
- Advise on password management strategy and distributed user authentication
Our Security Services
- Security management
- Information risk management
- Survey
- Design architects
- Integration
- Networks
- Documentation
- Witness testing
- Training & Mentoring
- Industrial Security
