Operational technology (OT) describes environments comprising of Industrial Control Systems (ICS). These include Industrial Automated Control Systems (IACS), Supervisory Control and Data Acquisition (SCADA) and Process Control Networks (PCN). Cyber risks pertaining to these environments pose a great threat to all of us. The ramifications of cyber-attacks in these domains could lead to calamitous and catastrophic outcomes.
OT has a high inherent risk as compared to IT systems due to weak access control across physical & logical regions, high functionality-dependent design principles, and complexity of personnel involved in various project stages.
Various vulnerabilities have been exploited by hackers worldwide, resulting in loss of public reputation, equipment damage, leakage of sensitive data and information, and even the lives of citizens. Typical contributing factors of vulnerabilities are:
Critical Infrastructure such as Power, Water treatment, Aviation, Maritime and Transportation are some examples of where Operational Technology form the backbone of their operations.
TÜV SÜD’s experts have a wealth of experience working with clients on complying OT system with regulatory and industry best standards. We have previously worked with Singapore regulatory agencies (CSA/EMA/PUB), and also collaborate with standards bodies SAC and ESG SDO on CCOP and other cyber security frameworks & industry standards. TÜV SÜD can bridge the gap between CII operators and regulatory agencies as we have a strong understanding of what CSA and sectorial CII regulators are looking for in terms of the CCOP compliance.
Organisations can secure OT with: