Critical Infrastructure and ICS Cybersecurity Issues

In this podcast, Dan Scali, senior manager for Mandiant consulting and Grady Summers, FireEye Chief Technology Officer, discuss key issues in critical infrastructure and industrial control systems. Bank data centers, nuclear power plants, and water plants make up this niche area of information security that’s quickly gained increased importance with recent high profile breaches. Dan covers some of the vulnerabilities these organizations have, including lack of network segmentation and patching, and how this allows everything from crimeware to nation state attacks to threaten the integrity of critical systems. Organizations of all sizes need a pragmatic approach to security by adopting holistic security programs, employing enterprise wide monitoring, and ensuring they have incident response plans in place. Dan discusses some of the ways Mandiant consultants are helping these organizations in these areas including program development and non-invasive ICS health checks.