When the term ‘The Internet of Things’ was first coined in the 90’s, it was used to describe a range of interconnected sensors gathering information about the real world. Today, as organizations digitize, they are connecting their operational technology (OT) environments, containing a wide array of sensor and devices, to the Enterprise IT networks.
The reality, according to a recent report by ZK Research is “55% have no or low confidence that they know all devices in their network.” Moreover, the devices in OT were never builtwith security in mind. These are devices such as:
- Programmable logic controllers (PLCs) which are commonly used to control a process such as oil refining, or a manufacturing line.
- Remote Terminal Units (RTUs) as the name implies tend to be outside the building in a remote area, such as an electric utility substation.
With these IoT devices lacking modern embedded software and security capabilities, segmentation will be the key technology to allow communication from operational assets to the rightful systems, and reduce risk of cyber security incidents like we saw with WannaCry and Norsk Hydro…