The critical need for enhanced IT/OT network segmentation
Veracity Industrial Networks recently contributed to an Industrial Cyber article that discussed how evolving cyber attacks are requiring organizations to anticipate future threats and adopt new technologies. Segmentation for both IT and OT networks is becoming more important thanks to the many high-profile cyber attacks on the operational sector.
Industrial network segmentation is defined by the author as dividing a large network into smaller, controlled segments, improving security by limiting unauthorized access and containing threats. This article also discusses how network segmentation can be enhanced through artificial intelligence (AI) and machine learning capabilities.
Experts weigh in:
- Roman Arutyunov of Xage Security suggests that critical industries like oil refineries need deeper levels of segmentation (or micro-segmentation) for effective safeguarding.
- Andrew Ginter from Waterfall Security Solutions emphasizes the independence of OT networks from IT for continued operations during threats.
- Our own Jason Weber of Veracity Industrial Networks points out the difficulty in maintaining segmentation due to IT-focused tools and a lack of trained personnel. He suggests software-defined networking (SDN) for simplification.
- Zane Blomgren from Belden criticizes poor network designs in sectors that grow over time, leading to management challenges and potential security risks.
Five future-proofing strategies:
- Transition from traditional perimeter-based security to an identity-centric, zero-trust approach.
- Adapt to cyber threats that misuse valid credentials, emphasizing limiting access to prevent lateral movement within systems.
- Prevent attack propagation through network engineering at critical boundaries, like IT/OT and OT/Internet interfaces.
- Advocate for a defense-in-depth strategy: train people, harden systems, and focus on detection and remediation.
- Consider cloud services and digital twins to necessitate more comprehensive asset management and security.
To get started, organizations should prioritize vital assets and adopt an incremental approach to cybersecurity to ensure effective outcomes. With the critical nature of industries like energy, transportation, and manufacturing, not to mention those that are highly regulated like nuclear and pharmaceuticals, a highly effective cyber security strategy is no longer an option but a requirement. Training and hardening systems are central to a defense-in-depth strategy, and SDN can simplify network management.
In closing, the industrial sector must remain proactive and innovative in its approach to cybersecurity. Expert insights and actionable strategies provide a comprehensive guide for organizations aiming to bolster their cybersecurity measures.
To read more, please see the full article from Industrial Cyber.