Cyber security tackling the risks with new solutions and co-operation Miikka Pönniö

Transcription

1 Siemens Osakeyhtiö Cyber security tackling the risks with new solutions and co-operation Miikka Pönniö Restricted Siemens Osakeyhtiö All Rights Reserved. siemens.fi/answers

2 Cyber security in Industrial Control Systems Trend Modern industrial control systems (ICS) offer new functionalities, which, if stay unused and unmanaged, can increase the risk of being affected by vulnerabilities or attacks. Assess Within industries there are a lot of innovations and developments built around connectivity. Ever-growing amounts of data is collected from different sources in order to enhance productivity and empower business decisions. This rapidly expanding data interconnectivity, coupled with the rising number and complexity of cyber-attacks targeting ICS systems, poses new challenges in securing the industrial control systems. Implement Manage Restricted Siemens Osakeyhtiö All Rights Reserved.

3 Siemens Plant Security Services - Secure Your Production and Intellectual Property with Siemens Services On-Demand Incident Handling Risk & Vulnerability Assessment Addresses all aspects Network Security Monitoring Managed Plant Perimeter Next-Generation Firewall Security Assessment for Plants Automation Network design and validation Quarterly Firewall Rule Review Patch & Vulnerability Management Support Managed Anti-Virus Solution Managed Application Control Solution Mitagation Risk Management Identification Mitigation Operation Risk Classification Awareness Host Security Network Security Monitoring Incident Response Operator Security Awareness Training Mitigation Implement Mitigation Design Policies, Processes, & Procedures Consulting Microsoft OS Patch Deployment Disaster Recovery Support: System Backup Network Security Monitoring Component Design & Deployment Anti-Virus Agent Deployment Anti-Virus Agent Deployment Anti-Virus Server Deployment Plant Perimeter Next-Generation FW Design & Deployment Network Security Consulting Restricted Siemens Osakeyhtiö All Rights Reserved. Automation Network implementation Clean Slate Validation AD Group Policy Design & Deployment Windows Local Policy Design & Deployment

4 Siemens Plant Security Services - SIEM - Security Information and Event Management service & Next Generation Firewall Technical implementation modules Industrial Security Services Customer Site CSOC Reporting Technological concept Implementation project Activation of service center Continuous monitoring & monthly reports Incident response Forensic analysis Next Generation Firewall Log Management Secured Connection Data Analytics Data Mgmt. Security Management Central management of all information Creation of events, alarms and reports Forensic analysis support Event Correlation Advanced data analysis and correlation Security Expertise Log Management Storage of raw log data Security Management Event Correlation Log Management Data acquisition from various sources Provision of normalized logs to security management Restricted / Siemens Osakeyhtiö All Rights Reserved.

5 Industrial Security Siemens has a comprehensive organization to handle all aspects of Industrial Security R&D Marketing Service & Support Security Network Establish a Security Network to react quickly in case of emergency drive and coordinate all security relevant topics External Partners Product Management Standardization & Regulations Anti-malware / Security companies Governmental Departments CERTs Security Network of Software OEMs Customers Restricted / Siemens Osakeyhtiö All Rights Reserved.

6 Thank you! Siemens Osakeyhtiö Miikka Pönniö Restricted Siemens Osakeyhtiö All rights reserved Unrestricted Siemens AG All rights reserved