TechBizWebTechBizWeb

    Subscribe to Updates

    Get the latest news about Technology and Business from all around the web..

    What's Hot

    Deutsche Bank Sees Bitcoin Touch $28,000 By 2022 End, But Warns of Risks Ahead

    July 1, 2022

    The halftime show

    July 1, 2022

    Grayscale Goes to Court After SEC Rejects its Proposed ETF Bid

    July 1, 2022
    Facebook Twitter Instagram
    • About Us
    • Privacy Policy
    • Guest Post
    • Terms
    • Contact
    Facebook Twitter Instagram
    TechBizWebTechBizWeb
    Subscribe
    • Home
    • Technology

      Elon Musk’s “Teslas in Tunnels” Las Vegas project is still happening, and here’s the first station

      July 1, 2022

      Meta warns employees of “serious times” in internal memo listing key product bets

      July 1, 2022

      The Supreme Court just took away an EPA tool to fight climate change — what happens next?

      July 1, 2022

      New York denies air permit to Bitcoin mining power plant

      July 1, 2022

      GM’s reportedly only making about 12 Hummer EVs a day

      July 1, 2022
    • Business
    • Cyber Security

      Auston Davis named CISO at Versant Health

      June 30, 2022

      Lessons learned from slew of recent data breaches

      June 30, 2022

      Cybersecurity from the inside out — Guarding against insider threats

      June 30, 2022

      We need the Foreign Intelligence Surveillance Act more than ever

      June 30, 2022

      IC3 issues warning on deepfake use in remote work applications

      June 29, 2022
    • Blockchain
    • Vulnerabilities
    • Social Engineering
    • Malware
    • Cyber Security Alerts
    TechBizWebTechBizWeb
    Home»Cyber Security»5 New Year’s Resolutions for Your IoT Security Strategy
    Cyber Security

    5 New Year’s Resolutions for Your IoT Security Strategy

    January 30, 2019Updated:January 30, 2019No Comments5 Mins Read
    Facebook Twitter Pinterest LinkedIn Tumblr WhatsApp
    Share
    Facebook Twitter LinkedIn Pinterest Email


    A new year has arrived, and with it comes the opportunity to make all kinds of transformations to help your business. No matter how you navigated the dangerous threat landscape during the past years, it’s time for all of us in operational technology (OT) security to make firm decisions to do or not do something for the safety of our business and environment.

    This year, we will see more breaches where bad actors target OT due to the rise of Internet of Things (IoT) devices being deployed in industrial environments and critical infrastructures. That’s because many OT networks were either designed without any security or without adequate protections in place. Plus, the overall attack surface is getting broader each day as organizations continue to converge their IT and OT environments. 

    I spend a lot of time on factory floors and in Security Operation Centers (SOCs), and you’d be surprised how many shared challenges these practitioners have in common. Here is what they should focus on in 2019: 

    1. Understand that Operational Technology Security Risks Are Business Risks. Understand and communicate risks. They can damage an organization’s reputation and can cause significant operational problems, such as production downtime, compliance penalties and environment safety. Business-level oversight and executive leadership can help to establish a culture of collaboration between IT and OT for the common good of the business. Improving an organization’s security posture depends on how effectively both sides can work with each other to improve mutual understanding and increase reliability and security of critical infrastructure.

    2. Monitor User Activities. It’s important to detect both successful and unsuccessful authentication attempts to the Industrial Control System (ICS) network from users or systems in the corporate IT network. If an attacker gains access to your network through a compromised system, they will attempt to cross over to the ICS network to target the critical infrastructure. By monitoring both successful and unsuccessful login attempts, you can identity anomalies, taking things such as time of day, frequency and other suspicious behaviors into account.

    It’s also important to monitor remote connections from users, vendors, or system integrators. Anyone using Remote Desktop Protocol (RDP) has access to all the capabilities a device allows. Likewise, VPNs provide remote access to ICS networks. If remote access capabilities are not adequately monitored and controlled, unauthorized users can gain access to a system or the entire ICS network.

    Lastly, look for credentials stored in logs and configuration files. Unprotected passwords and other credentials means giving hackers complete control of your systems and allowing them to move through the interconnected networks and expose more systems to the attack. To protect against this, files should either be modified to store credentials securely, or when not possible, access should be restricted (least privilege) and/or monitored. 

    3. Check for Changes in Firewalls, Routers and Switches. Properly configured firewalls can be used to protect control systems from unauthorized access, but rule sets need to be monitored and reviewed to provide continuous, adequate protection. Protecting control systems from unwanted access and possible attacks requires real-time monitoring of firewalls to rapidly detect and initiate response to cyber incidents.

    Network devices such as routers and switches on the ICS network should not be overlooked. These devices serve as the first line of defense because they permit or deny communications between the ICS network and the corporate network. With proper and accurate logs from routers and switches, unwanted network access can be detected quickly in order to mitigate a security incident. 

    Look at new devices to understand their role and impact on the entire environment. Having visibility into each device or equipment in your environment will help you understand if a system is infected with malware and using the network to propagate from system to system. Flag unsecure protocols used for exchanging critical information. 

    4. Flag Unsecure Protocols Used for Exchanging Critical Information. Protocols such as Telnet, HTTP, FTP or Windows File Sharing are not secure by default, meaning they don’t protect corporate data and can have damaging business consequences that are difficult and expensive to amend. For example, content often lives on FTP servers for years, making it relatively easy for unauthorized individuals to access sensitive information undetected. 

    5. Consider Adopting Machine Learning. There’s a growing concern among security professionals that bad actors could use machine learning technologies to cause unprecedented security challenges. Given the growing amount of data, an increase in the number of cyber threats and the rapid pace of technological change, security analysts could benefit from using machine learning to work through the overwhelming amount of data they need to sort through. The future of cybersecurity will require human and machine collaboration – fusing proper human judgement with machine learning capabilities. 

    With the new year underway, it’s time for CISOs to see their security resolutions through from the factory floor, SOCs and across the entire enterprise.

    Seema leads product marketing for Splunk’s emerging markets group and is responsible for Splunk’s Internet of Things (IoT) and Business Analytics solutions. In this role, she works closely with Splunk customers to help them understand how valuable insights from machine data can be applied to solve real-world business problems. Prior to Splunk, Seema served in product marketing roles at DataStax, Birst, and Actuate (OpenText). She has a Bachelors in Engineering from the University of Pune, India and a Masters in Computer Science from USC. Please don’t ask her to do basic math.

    Previous Columns by Seema Haji:
    Tags:



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

    Related Posts

    Auston Davis named CISO at Versant Health

    June 30, 2022 Cyber Security

    Lessons learned from slew of recent data breaches

    June 30, 2022 Cyber Security

    Cybersecurity from the inside out — Guarding against insider threats

    June 30, 2022 Cyber Security

    We need the Foreign Intelligence Surveillance Act more than ever

    June 30, 2022 Cyber Security

    IC3 issues warning on deepfake use in remote work applications

    June 29, 2022 Cyber Security

    Kurt John named Chief Security Officer at Expedia

    June 29, 2022 Cyber Security
    Editors Picks

    The halftime show

    July 1, 2022

    Grayscale Goes to Court After SEC Rejects its Proposed ETF Bid

    July 1, 2022

    Xi Jinping insists Hong Kong must be governed by patriots on 25th anniversary of handover

    July 1, 2022

    Elon Musk’s “Teslas in Tunnels” Las Vegas project is still happening, and here’s the first station

    July 1, 2022
    Trending Now

    The Supreme Court just took away an EPA tool to fight climate change — what happens next?

    By techbizweb

    MAS Faults Three Arrows Capital for Sharing False Information

    By techbizweb

    France ready to bypass Hungary for global corporate tax deal

    By techbizweb

    https://www.nationalsportsacademy.com

    slot gacor hari ini

    http://www.inadesfo.org/

    http://www.eueomgbissau.org/

    http://www.congo-mai-mai.net/

    http://www.angelesdelafrontera.org/

    http://fifaworldcup2018schedule.com/

    http://tony4gtrmcr.co.uk/

    http://www.standrewsagreement.org/

    http://www.bob-russell.co.uk/

    http://davidmulholland.co.uk/

    http://railwayhotelenniskillen.com/

    http://www.fantasysportstrades.com/

    http://www.rainleaf-flooring.com

    http://mothersagainstguns.org/

    http://ma-coc.org/

    slot online

    http://www.paradoxmag.com/situs-judi-slot-online-gampang-menang-2021/

    http://www.paradoxmag.com/situs-judi-slot-online-terbaru-2021/

    http://slot-terbaru.net/

    Slot Gacor

    Slot Online

    Situs Slot Gacor

    http://www.appdexterity.com/

    https://cars4kids-deutschland.de/

    https://www.stretchingculture.com/

    https://www.b-123-hp.com/slot-gacor/

    https://denzstaffing.nl/

    https://ezbbqcooking.com/slot-gacor/

    https://www.mbahelp24.com/slot-gacor

    https://minhtanstore.com/slot-jackpot-terbesar/

    https://njbpusupplierdiversity.com/slot-gacor-gampang-menang/

    https://www.floridaspecialtycropfoundation.org/slot-gampang-menang/

    https://childrenscornerpreschool.org/slot-gacor-gampang-menang/

    https://cryptoquoter.com/slot-online-terbaik/

    https://alorkantho24.com/slot-gacor/

    https://ellas.xyz/slot-gacor/

    https://it.dougamatome.xyz/slot-online/

    https://www.daltercume.com/slot-gacor/

    https://josi-ana.dougamatome.xyz/slot88/

    https://josi-ana.dougamatome.xyz/slot-gacor/

    https://fastobserver.com/slot-jackpot-terbesar/

    https://www.planetexperts.com/slot-gacor/

    https://bfsolution.group/slot-bet-kecil/

    https://rustleva.co/slot/

    https://bfsolution.group/slot-bet-kecil/

    https://www.hotelcalimareal.com/togel-online/

    https://anime-game.dougamatome.xyz/slot-gacor-gampang-menang/

    https://anime-game.dougamatome.xyz/togel-online/

    https://bourbonbarrelfoods.com/slot/

    http://suneo39.wp.xdomain.jp/slot/

    https://techbizweb.com/slot-gacor/

    https://www.generalcatalyst.com/18-daftar-slot-gacor-terbaik-gampang-menang-jackpot-hari-ini/

    https://www.hotelcalimareal.com/slot-online/

    https://www.blockgates.io/slot-gacor/

    https://l12.com.br/slot-gacor/

    slot paling gacor

    https://www.donalds-hobby.com/slot-online/

    https://thecryptodirt.com/slot-gacor-hari-ini/

    http://iseta.edu.ar/aulavirtual/app/upload/users/1/1205/my_files/sbobet.html

    http://escuelavirtual.mincit.gov.co/app/upload/users/1/194/my_files/slot.html

    https://www.dev.medecinesfax.org/courses/JUDICASINO/document/slot.html

    http://www.e-archivos.org/cursos/courses/JUDICASINO/document/slot-gacor.html

    http://iesma.com.br/ead/main/upload/users/4/447/my_files/slot.html

    https://www.fundacoop.org/chamilo/app/upload/users/1/1185/my_files/slot.html

    https://fata-aatf.org/eskola/main/upload/users/3/31/my_files/slot.html

    https://uancv.edu.pe/ofinvestigacion/app/upload/users/3/328/my_files/slot-terlengkap.html

    https://micost.edu.my/EL/app/upload/users/2/209/my_files/slot-gacor.html

    https://www.academiacoderdojo.ro/elearningdev/app/upload/users/2/2442/my_files/slot-online.html

    http://campus-cidci.ulg.ac.be/courses/JUDICASINO/document/slot-termurah.html

    https://www.escueladerobotica.misiones.gob.ar/aula-ste/courses/LIVECASINO/document/slot-tergacor.html

    http://ccdipeepccqqfar.usac.edu.gt/chamilo/app/upload/users/3/358/my_files/slot-online.html

    https://cunori.edu.gt/campus/app/upload/users/7/7334/my_files/slot-online.html

    http://u-rus.com.ar/aula/app/upload/users/1/1322/my_files/slot.html

    http://icrodarisoveria.edu.it/chamilo/app/upload/users/1/1855/my_files/slot.html

    https://iestpliliagutierrez.edu.pe/clarolgm/courses/CASINO/document/slot.html

    http://pva.cobach.edu.mx/app/upload/users/7/7379/my_files/slot.html

    http://www.imb-pc-online.edu.gt/PL/app/upload/users/3/373/my_files/slot.html

    http://avcs.upeu.edu.pe/main/upload/users/3333/my_files/slot.html

    https://chamilo.fca.uas.edu.mx/app/upload/users/1/11186/my_files/slot-online/

    TechBizWeb
    Facebook Twitter Instagram Pinterest Vimeo YouTube
    • Home
    • Guest Post
    • About Us
    • Privacy Policy
    • Our Authors
    • Terms and Conditions
    • Contact
    © 2022 Tech Biz Web. Developed by Sawah Dev.

    Type above and press Enter to search. Press Esc to cancel.