Key challenge cited: “traditional IT security technologies are not designed for ICS and cause disruption in OT environments.” 

Industrial Control System and Operational Technology cybersecurityThe Industrial Control System and Operational Technology security community are experiencing cyberattacks that go beyond those seen historically. Given the impact to ICS/OT environments, fighting these attacks requires a different set of security skills, technologies, processes, and methods to manage the various risks and attack surfaces. This sets ICS apart from traditional IT environments. 

The SANS’ ‘State of ICS/OT Cybersecurity in 2022 and Beyond’ report presents the responses of 332 ICS/OT organizations representing a range of industrial verticals across the ICS/OT community. 

In this report, you will also learn more about: 

  • A shift in the responsibility for implementing security controls in ICS/OT 
  • A more dedicated focus on ICS operations 
  • A significant uptake in ICS-specific threat intelligence for active threat-hunt defense 
  • Continued adoption of MITRE ATT&CK for ICS framework 

OT/ICS practitioners shared their experience with the number of security incidents they’ve had in the past 12 months:

OT ICS Security Incidents in the Past 12 Month