EGP declines vs. USD at Thursday's close    Euro area inflation rises to 2.0% in October '24 – flash estimates    IF YOU LOVE SOMEONE WHO SMOKES, GIVE THEM THE FACTS    Asian stocks slide as chip sector weakens    Egypt's Minister of Environment highlights biodiversity issues at COP16    Egypt's Agriculture Minister meets Syrian, Bahraini counterparts to boost cooperation in Amman    Al-Qassam Brigades targets Israeli vehicles in eastern Gaza    ACUD, DP World, and GAFI sign MoU to develop free zone in New Capital    Egyptian government encourages increased mutual investment with Bahrain: Finance Minister    A Tale of Two Cities: Alexandria hosts 2nd edition of exhibition celebrating Greek, Egyptian cultural ties    Egypt, Djibouti leaders discuss strengthening ties, regional issues    Egypt's FM affirms commitment to Sahel security, offers support to Niger    Egyptian banking sector support underprivileged communities in Alexandria – CBE    Afghanistan signs $163m deal for cement plant    US tightens tech investment rules for China    Biden unveils $3b investment to strengthen US port infrastructure    Military Production, Environment Ministers inaugurate banana fiber recycling plant    Luxor Museum to host exhibition on 19th century antiquities inspection tours    Nourhan Kamal Wins 2024 Helmi Sharawy Award for African Studies    Egypt observes Intl. E-waste Day, highlights recycling efforts    Egypt's military capabilities sufficient to defend country: Al-Sisi    Al-Sisi emphasises water security is Egypt's top priority amid Nile River concerns    Cairo Opera House hosts grand opening of Arab Music Festival, Conference    Grand Egyptian Museum ready for partial trial run on October 16: PM    Colombia unveils $40b investment plan for climate transition    Kabaddi: Ancient Indian sport gaining popularity in Egypt    Ecuador's drought forces further power cuts    Al-Sisi orders sports system overhaul after Paris Olympics    Basketball Africa League Future Pros returns for 2nd season    Egypt joins Africa's FEDA    Paris Olympic gold '24 medals hit record value    A minute of silence for Egyptian sports    Paris Olympics opening draws record viewers    Who leads the economic portfolios in Egypt's new Cabinet?    Financial literacy becomes extremely important – EGX official    Motaz Azaiza mural in Manchester tribute to Palestinian journalists    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    Egypt records 36 new deaths from Covid-19, highest since mid June    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Understaffing, underinvestment, and human errors put ICS security at risk
Published in Amwal Al Ghad on 16 - 10 - 2018

In line with their commitment to increase awareness around sophisticated cyberthreats landscape at GITEX Technology Week 2018, Kaspersky Lab's State of Industrial Cybersecurity 2018 survey highlighted the different opinions industrial and energy enterprises, besides transport and logistics firms, have regarding negative effects of cyberattacks on their industrial networks.
However, when it comes to the issues affecting their ability to keep networks secure there are three key concerns they can agree on-understaffing, underinvestment by senior management and the human factor.
With over 40 percent of ICS computers in the Middle East region facing attacks every 6 months, these cybersecurity gaps in critical infrastructure can significantly increase the risks for organisations. Algeria (66.2 percent), Morocco (60.4 percent), Egypt (57.6 percent), and Saudi Arabia (48.4 percent) are amongst the top countries that face attacks on its ICS systems.
Different fears
Depending on the industry, organizations have different assessments concerning the damage caused to their business by cyberthreats. For transport and logistics firms that build their business based on a service model, the most negative impact is losing customer confidence. But for the majority of manufacturing enterprises and energy companies, their biggest concern is compromising the quality of production due to a cyberattack.
Under-resourced and under-skilled
The task of protecting industrial networks often falls to those providing corporate information security. Globally, in 40 percent of manufacturing organisations, ICS protection is the responsibility of corporate IT security officers.
Within transport and logistics companies, over half of those surveyed (58 percent) confirm that ICS safety is provided by a dedicated team working full-time to combat threats.
Industrial organisations, especially those with complex technological processes, need highly specialised, qualified employees to fill the gap. For example, in the energy sector, where national critical infrastructure is managed with the help of ICS, the main challenge when it comes to security management (61 percent) is hiring employees with the relevant skills.
Lack of top management involvement causes underfunding
In many enterprises, IT security is a priority for senior management, but in more than half (54 percent) of manufacturing companies globally, top management is little- if at all- involved in ICS protection issues, which results in underinvestment.
Indeed, two-thirds (66 percent) do not have a dedicated budget for providing security of critical infrastructure. And this position remains unchanged, even in the event or risk of an incident, with 17 percent of manufacturing organisations not considering this a sufficient enough reason to invest in ICS security.
The human factor is an evergreen problem in ICS security
The consequences of employee errors pose a critical threat to half of all organisations worldwide and in all sectors (49 percent). This is not surprising, given that after malware and ransomware, it is the most common reason for security incidents in ICS (27 percent).
According to a new report from Kaspersky Lab and B2B International, almost (25 percent) data breaches in Middle East, Turkey and Africa in the past year have led to people losing their jobs.
Fortunately, companies are aware of this problem and are trying to solve it by training personnel and creating rules of behavior on critical infrastructure objects. their research shows that 82 percent of organisations around the world have already implemented training for employees, contractors, and vendors.
Whatever the most feared consequences for industrial organizations, the only way to prevent or lessen the effect of an attack is to put in place robust safety measures and procedures for ICS networks.
Monitoring and timely responses to incidents on industrial networks should become key IT security priorities, along with educating and arming staff on how to minimise the risks to their business.
“Recent malware such as Industroyer and Triton have far exploited employee weaknesses, proving to be malicious threats to organizations and making it more evident that the cyberthreats landscape is evolving at an unprecedented pace,” he added.
“Incidents caused by actions of employees can lead to data breach and failure of business processes, as well asresult in huge financial losses and reputation damage. Keeping this in mind, GITEX serves as an ideal platform to focus our efforts in building awareness around this critical issue," said Amir Kanaan, Managing Director for the Middle East, Turkey, and Africa Kaspersky Lab.
“Enterprises across the region have started to pay a bit more attention to ICS cybersecurity issues, and are evaluating the industrial segments of their networks, training employees, etc. It is a good sign, because it's highly important for businesses to take proactive measures in order to avoid firefighting in future,” he added.
About Kaspersky Lab
Kaspersky Lab is a global cybersecurity company celebrating its 20 year anniversary in 2017. Kaspersky Lab's deep threat intelligence and security expertise is constantly transforming into next generation security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe.
The company's comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them.


Clic here to read the story from its source.