INDUSTRIAL SECURITY INCIDENT MANAGER: A NEW LEVEL OF INDUSTRIAL CYBERSECURITY
Modern industrial facilities are high-powered automated enterprises that control trans port, manufacture, resource allocation, and mining operations 24/7/365. It is of very high priority to ensure their safety, since an attack against such systems would not only put expensive equipment out of operation, but may also lead to man-made disasters. The scale of possible consequences unites specialists in various ﬁelds: engineers, information technologies and information security experts, businessmen, and equipment manufacture. They develop industry standards and regulations and conduct security audits of their systems.
ISIM detects vulnerabilities and hacker attacks on an industrial network. It does not a affect the client’s technological process, network, or equipment as it has a one-way connection. This guarantees data is transferred one direction only, from an ICS to the incident management system.
ISIM gathers and analyzes the network traffic copy discovering attack patterns and creating security incidents. If events look like steps in a hacker attack, ISIM unites them and presents as an attack chain.
It visualizes attacks on the network topology and equipment map. A saved network copy can be used at any moment to conduct a retrospective analysis and investigate an incident.
ISIM mitigates such security risks as unauthorized connection, password brute force, unauthorized control instructions, and equipment ﬁrmware spooﬁng. It also detects internal threats, such as hazardous staff operations, conﬁguration errors, etc.
For more information, drop us a line at firstname.lastname@example.org