Detailed Risk Assessments and Security Checks
- Identification and analysis of security risks and risk mitigation measures in the ICS/OT sector
- Detailed review and evaluation of your current security infrastructure
- Conducting detailed assessments, audits and security reviews in your ICS/OT environment to uncover any “security flaws”
- Plant walk-throughs / factory tours / inspections
- Interviews and surveys with persons responsible
- Technical review of documentation, OT architecture diagrams, network plans, etc.
- Review of your security policies and procedures, your information management system (ISMS), your GRC processes
- Observation of security practices and established operating processes
- Compilation and explanation of your individual OT security assessment report
- Evaluation of the findings, risk estimations, classification and prioritization
- Individual consultation on measures for risk mitigation
- e.g. proposals and best-practices for network/firewall concept (zoning, separation), IT/OT convergence, industrial DMZ, secure remote access, asset management, security monitoring and much more
- For operators of essential services (i.e. critical infrastructure) (KRITIS): carrying out an OT risk assessment (i.e. “information security audit”) in accordance with ENISA specifications “Security Measures for Operators of Essentials Services”
Sprechen Sie mich an.