The National Infrastructure Advisory Council has issued a report that says while both government and the private sector have resources to secure critical infrastructure against targeted cyberattacks, they are not properly organized, harnessed or focused. Edgard Capdevielle, CEO at Nozomi commented below.
Edgard Capdevielle, CEO at Nozomi:
“The National Infrastructure Advisory Council (NIAC) report on Securing Critical Assets brings needed attention to the urgency of securing critical infrastructure. One way operators of power, water, transportation and other vital sectors can immediately improve their readiness, is to implement technology that provides real-time visibility to their cybersecurity threats and risks. This is in alignment with the report’s recommendation that operators implement best-in-class scanning tools and assessment practices.”
Edgard says, “The challenge regarding scanning and visibility tools is that they need to be designed from the ground up for the industrial environment. Traditional IT tools won’t work – they run the risk of bringing down the very systems they are trying to protect. Fortunately, today passive OT monitoring and threat detection tools are available that pose no risk to critical infrastructure systems. They have the benefit of both rapidly identifying any existing threats on a system, identifying new threats as they arise, and providing tools and insights to stop and contain threats. Our further recommendations are that organizations align their cybersecurity program with the NIST cybersecurity framework (NIST CSF) and invest in upgrading the cybersecurity skills of their workforce.”