Industrial control systems that use inexpensive Internet protocol equipment are at an increased risk for cyberattacks, according to William Wagner of Taft. This applies especially to manufacturers and utility operators. “It is important to note that approximately 90 percent of the nation’s critical infrastructures are privately owned and operated, which makes ensuring their security from cyberattacks vitally important,” he says. Industries at high risk include electric, water and wastewater, oil and natural gas, transportation, chemical, pharmaceutical, and pulp and paper.
“Widely available, low-cost Ethernet and Internet protocol devices are now replacing proprietary solutions, which increases the possibility of cybersecurity vulnerabilities and incidents,” says Wagner. According to the National Institute of Standards and Technology, a “defense-in-depth” strategy is advised for securing against cyberattacks, involving “multiple layered security mechanisms so that the impact of a failure in any one mechanism is minimized.”
