Aaron Ross, APAC Manager of Technical Services at Paessler, tells us without 360-degree visibility those responsible for safeguarding the sanctity of an organization’s data are flying blind. He says: “CIOs trying to solve the visibility issue are frustrated with too many complex, reactive solutions, which makes them vulnerable to sophisticated threats and attacks, as well as network downtime.”

360-degree visibility is a fundamental cybersecurity and IT risk management strategy that will help to protect critical infrastructure assets and sensitive information. But the increasing complexity of distributed enterprise networks makes this extremely challenging. Digital Transformation is increasing the complexity due to IT infrastructures becoming borderless. The key issue here is that you cannot protect critical infrastructure assets you cannot see.

According to a report by Deloitte – The Value Of Visibility – Cybersecurity Risk Management Examination, implementing a sound cybersecurity and IT risk management program is essential to protecting brands and can give organizations a jump in addressing mounting regulatory requirements.

This includes the Australian…

Read More…

NIST announces the publication of NISTIR 8183 Revision 1, Cybersecurity Framework Version 1.1 Manufacturing Profile. This revision of the CSF Manufacturing Profile includes the sub-category enhancements established in NIST’s Framework for Improving Critical Infrastructure Cybersecurity Version 1.1; these updates include managing cybersecurity within the supply chain, self-assessing cybersecurity risk, vulnerability disclosure, system integrity, and more comprehensive controls for identity management. Additional changes include updating language to change references from “security levels” to “impact levels.”

The Manufacturing Profile was developed for manufacturers managing cybersecurity risk and is aligned with manufacturing sector goals and industry best practices. The Manufacturing Profile provides a voluntary, risk-based approach for managing cybersecurity activities and reducing cyber risk to manufacturing systems. The Manufacturing Profile is meant to enhance but not replace current cybersecurity standards and industry guidelines that the manufacturer is embracing.

Read More…

The rise of supply chain cyberthreats in the wake of COVID-19 have made a solid risk management plan even more essential than it always has been.

Supply chain cyberattacks put organizations at significant risk — risk that can disrupt their operations and damage their reputations.

Supply chain cyberattacks are on the rise and hackers are targeting every company in the supply chain ecosystem from the end-user organization to the software providers to the suppliers, said Mark Atwood, managing vice president of supply chain research at Gartner Inc.

COVID-19 has just ratcheted up a trend that was already happening.

In 2019, 40% of manufacturers had operations that were affected by a cyber incident, according to a report from Deloitte released on May 6. And from March to May of this year, there was an increase in supply chain attacks related to COVID-19, the report’s authors noted.

While definitive numbers may be hard to pinpoint, the trend is clear.

“Bad actors will act wherever they see an opportunity,” according to the Gartner supply chain cybersecurity report, co-written by Atwood. “Supply chains, which extend the envelope of enterprise risks to all business ecosystem…

Read More…

It might be critical, but infrastructure in the United States has remained stubbornly difficult to protect from cyber and physical attacks. Now the Cybersecurity and Infrastructure Security Agency has a new five-year plan for an important subset of critical infrastructure, namely industrial control systems. With details of the plan, Federal Drive with Tom Temin turned to the deputy assistant director of cybersecurity at CISA, Richard Driggers.

Read More…

The discussion around state-sponsored cyber attacks on Australia has once again launched to the fore in the country following comments by the Prime Minister Scott Morrison on June 19. According to the new remarks, Australian institutions of all kinds have fallen victim to cyber attacks from a sophisticated state based cyber-actor over at least the course of the last several months, raising alarm about the vulnerability of the country’s critical infrastructure.

The attacks are taking place against all levels of governments as well as services and businesses in Australia, according to Morrison, with their frequency having increased “over many months”.

“I’m here today to advise you that, based on advice provided to me by our cyber-experts, Australian organisations are currently being targeted by a sophisticated state-based cyber-actor,” Morrison said at a press conference. He added that such attacks have been targeting organizations “across a range of sectors, including all levels of government, industry, political organisations, education, health, essential service providers and operators of other critical infrastructure”.

Although identified as being…

Read More…

Read More…

Their Q&A session covers the various issues faced by infrastructure projects carried out in different parts of the world.

Read the #interview: http://ow.ly/HDi030nJHzc

Присоеденяйтесь к официальной группе ИСАР в Facebook