Q + A + Q + A + Q + A + Q + A + Q + A + Q + A + Q + A +
ANDREA CARCANO –
NOZOMI NETWORKS
CO-FOUNDER
As IT and OT and even IoT worlds converge, anyone who is
sceptical of the need for secure cyber and physical systems
should consider the results of a critical infrastructure executive
survey that Nozomi Networks recently conducted with Newsweek
Vantage. Almost all of the 415 executives surveyed say their
organisation has suffered at least one security incident in the past 12
months and half have experienced two or more. Nearly a quarter say
the time between compromise and discovery exceeded 24 hours.
Just as worrying, employees are regarded as the biggest human source
of vulnerability – bigger even than cyber-criminal groups. Former
employees are also a security risk. These statistics contradict the
common belief that terrorists and state actors are the biggest risk.
More than half of the breaches reported are cyber incursions into
IT systems, but physical incursions into IT and OT systems are very
common too, and this is why it’s important to approach security from
both a cyber and a physical perspective.
Our survey found the more integrated IT, OT, IoT and physical
systems are, the greater the degree of security, but because they
are so integrated, these systems are more
vulnerable to attack. Executives have to
balance the need for efficiency with the
imperative for security.
Furthermore, too many organisations are
under the impression that their approach
to IT, OT and physical system security is
adequate, until they find that it isn’t. More
than a third of executives say that an actual
cyberbreach caused them to develop a
holistic approach to their organisation’s
cyber/physical security.
In response to cyber-physical threats, two
thirds have integrated some of their IT, OT
and physical systems, and the process is
continuing. A fifth have integrated all their
systems. But here’s the thing, executives see
the main advantages of integration as more
responsiveness and better decision-making.
“
THE M
ORGANIS
OBSTA
CULTUR
DIFFER
OPINION
IT AND
WHAT N
BE SEC
www.intelligentcio.com