EDITOR’S QUESTION
/////////////////
The fewest number say integration was motivated by the need for
stronger security.
Overall, there seem to be three major obstacles to implementing a
holistic approach to securing IT, OT and physical systems: cultural,
technical and external forces. The main organisational obstacle is
cultural – a difference in opinions from IT and OT on what needs to
be secured.
Technical obstacles to a holistic approach include the differences in
IT and OT operation environments, discrepancies in IT and OT skill
requirements and the differences in the security threats faced on
both sides.
AIN
ATIONAL
CLE IS
AL – A
ENCE IN
S FROM
OT ON
EEDS TO
URED.
Finally, a significant external obstacle to
a holistic approach to securing IT and OT
systems is a lack of adherence to standards.
There are not enough appropriate industry
measurements to help ensure the performance
claims of competing security products, and
what’s more, there is a lack of established IT
standards compounded by a shortcoming of
awareness when it comes to OT standards.
Admittedly, without a crisis, it’s often hard to
change. It can be difficult to alter habits of
thought and traditional business practices. But
it doesn’t have to take a catastrophe to spur
organisations to change. Critical infrastructure
organisations in particular are facing mounting
risks to their IT, OT and physical systems. Now
is the time to push for change, to put them
in the best position to deal with a security
incident before it occurs. •
INTELLIGENTCIO
35