Detailed Risk Assessments and Security Checks

  • Identification and analysis of security risks and risk mitigation measures in the ICS/OT sector
  • Detailed review and evaluation of your current security infrastructure
  • Conducting detailed assessments, audits and security reviews in your ICS/OT environment to uncover any “security flaws”
  • Plant walk-throughs / factory tours / inspections
  • Interviews and surveys with persons responsible
  • Technical review of documentation, OT architecture diagrams, network plans, etc.
  • Review of your security policies and procedures, your information management system (ISMS), your GRC processes
  • Observation of security practices and established operating processes
  • Compilation and explanation of your individual OT security assessment report
  • Evaluation of the findings, risk estimations, classification and prioritization
  • Individual consultation on measures for risk mitigation
    • e.g. proposals and best-practices for network/firewall concept (zoning, separation), IT/OT convergence, industrial DMZ, secure remote access, asset management, security monitoring and much more
  • For operators of essential services (i.e. critical infrastructure) (KRITIS): carrying out an OT risk assessment (i.e. “information security audit”) in accordance with ENISA specifications “Security Measures for Operators of Essentials Services”

Sprechen Sie mich an.

Hubertus Storck | Senior OT Security Architect and Consultant
Hubertus Storck | OT Security Expert