Digital security incidents involving operational technology (OT) can have big impacts on the physical world. Why are these OT security incidents happening? A lack of understanding of how the different elements of DevSecOps fit together can contribute. This also shows the importance of crossover between engineering and cybersecurity.
In March 2021, for instance, Fortinet found over 90% of organizations with OT assets admitted to having suffered at least one security incident in the past year. 12% said that their employers had faced a minimum of 10 incidents in that period. Those events disrupted work for more than half of respondents, the study found. Meanwhile, public safety became an issue in 45% of cases.
Facing IT-OT Challenges with DevSecOps
One problem facing OT security is the convergence of industrial environments with information technology (IT) assets. Both IT and OT suffer from similar types of security threats in some respects. Unwanted access, password reuse, malware attacks and other problems can hit both. But the two often have conflicting needs due to the nature of their business. OT sees availability as a means of preventing physical danger and ensuring public safety. Meanwhile, IT puts secrecy first in the ongoing fight against data breaches.
IT and OT don’t always know where their counterparts stand. Nor do they have a reference point to start to understand each other. This lack of teamwork complicates the task of extending security across both. In response, attackers might exploit a lack of in ..
Support the originator by clicking the read the rest link below.
