aeSolutions June 2021: Importance of Implementing Secure PLC Coding, Incident Response Webinar, Maritime Cyber Training

The latest online content from aeSolutions, an integrated lifecycle

partner in process safety, industrial cybersecurity and automation.

The Importance of Implementing

Secure PLC Coding Practices

Historically, PLCs were never designed with security in mind since they have been historically air- gapped. With the demand to process operational data for advanced analytics, machine learning, predictive maintenance, and increased visibility into the process control environment increasing, PLCs are more exposed than ever, and attackers are now equipped with additional knowledge and tools[1] that exploit vulnerabilities in PLCs. It is no longer a safe assumption to hide behind the antiquated mindset that the ICS protocols are inherently protected since they use proprietary devices and protocols (security through obscurity). As with most new technology integrations, the initial focus has been on advancing the business use of the information without focusing on the increased attack surface that arises with the connectivity. Disconnected networks that house the critical process and safety PLCs are now at a higher risk of being compromised. It is more important than ever to begin to incorporate secure programming practices.

ICS Cybersecurity Incidents are Inevitable;

Plan Like You will Need to Respond!

WEBINAR June23rd: Down time due to any cause in industry typically results in lost revenue. Predictive maintenance and thorough startup/shutdown procedures ensure a quick turnaround when the inevitable run/maintain issue happens. Outages due to a cybersecurity incident can also be managed through careful planning and indeed should be in support of the business mission. However, unlike run/maintain issues, ICS cybersecurity incidents can be elusive and widespread compounding the time required to return to normal operation. Rash reactive response under duress can also lead to further complications and a delayed recovery. Adapting an old cliché, companies don’t plan to fail in response to an ICS cybersecurity incident, they just fail to plan.

This webinar will discuss the impact of IT/OT integration, ICS modernization, regulatory oversight and public sentiment on ICS Cybersecurity Incident Response Planning. We will also present an approach to address these issues through a structured and wholistic approach. Finally, we will observe some key takeaways from recent industry incidents to highlight the importance of planning like you are going to respond.

More Maritime Security Officer Cybersecurity Training Dates Added!

Focused on cybersecurity fundamentals for Facility Security Officers (FSO) and Vessel Security Officers (VSO). Participants will be instructed on relevant regulatory requirements, such as those established by the Maritime Transportation Security Act (MTSA), the US Coast Guard and the International Maritime Organization (IMO).

Learn More or Register for the Training

Blog s ......Whitepapers ......Articles

Stay up to date with all of our whitepapers and articles as they are published by signing up for our newsletter at the bottom of our web page.