SCADA Archives - Secudea bv

Cybersecurity testing for ICS – pitfalls and wins

Secudea — Mon, 08 Aug 2022 22:49:43 +0000

This is a (long overdue) followup post of the talk I gave at the SANS ICS Summit in 2021 – a recording of this talk can be found on youtube: https://www.youtube.com/watch?v=Qpl8eI8Tn0s I suggest you to...

The post Cybersecurity testing for ICS – pitfalls and wins appeared first on Secudea bv.

Resources to get into #ICS security

Secudea — Mon, 08 Aug 2022 21:28:34 +0000

Recently I received some questions on what resources I would recommend within the ICS security space to learn more about this. So the question was more specifically about discussion groups, courses, books, certificates and so...

The post Resources to get into #ICS security appeared first on Secudea bv.

using IEC62443-2-4 to reach a more secure ICS – Vendor validation

Secudea — Tue, 05 Jan 2021 19:27:59 +0000

Every ICS environment will sooner or later have to deal with updates, upgrades or additions to the control system environment. Nowadays it is important to include security within such projects, although that is still sometimes...

The post using IEC62443-2-4 to reach a more secure ICS – Vendor validation appeared first on Secudea bv.

Remote access for ICS – additional views

Secudea — Mon, 30 Nov 2020 10:31:57 +0000

Through the past few months, more and more ways of providing remote access surfaced within organizations as people were forced to work from home because of the Covid-19 pandemic. This was also the case for...

The post Remote access for ICS – additional views appeared first on Secudea bv.

Security testing for ICS Owners – Back to Basics …

Secudea — Mon, 28 Oct 2019 14:55:09 +0000

Why “Back to basics” regarding security testing? Well… during several previous security assessments that I have performed, I have run into a lot of the issues mentioned within the presentation I have given on this...

The post Security testing for ICS Owners – Back to Basics … appeared first on Secudea bv.

Operator Jail breakout

Secudea — Mon, 28 Oct 2019 11:49:06 +0000

In 2018, I gave a presentation at the CS3STHLM conference together with Frank Lycops on Operator Jail breakouts. Operator Jails are meant to prevent process operators from having access to the underlying operating system (OS),...

The post Operator Jail breakout appeared first on Secudea bv.

Collaboration Network extended

Secudea — Mon, 01 Apr 2019 12:00:53 +0000

After having established a good and close cooperation between Secudea, Onrix and Asvalis, it was time to expand the portfolio of combined services. This is why the collaboration network has been extended with Corelan Consulting...

The post Collaboration Network extended appeared first on Secudea bv.

Upcoming talk @CS3STHLM – Operator Jail Breakouts

Secudea — Thu, 06 Sep 2018 12:53:37 +0000

In a few weeks I’ll be giving a talk together with Frank Lycops ( https://asvalis.com) on the hidden dangers of Operator Jail breakouts, how to test these issues, and how to prevent them. The talk will...

The post Upcoming talk @CS3STHLM – Operator Jail Breakouts appeared first on Secudea bv.

DIY insider threat presentation CS3sthlm – elaboration on questions received

Secudea — Sat, 11 Nov 2017 12:00:24 +0000

During my presentation at the CS3sthlm conference (DIY insider threat detection/prevention within ICS environments), I’ve received some questions on this topic. Within this post I’ll elaborate a bit more on these. A majority of the...

The post DIY insider threat presentation CS3sthlm – elaboration on questions received appeared first on Secudea bv.

DIY insider threat detection/prevention within ICS environments

Secudea — Fri, 10 Nov 2017 19:00:34 +0000

This is a summary of the talk I gave during the CS3sthlm conference in October (link to topic: https://cs3sthlm.se/program/presentations/dieter-sarrazyn/) The goal of the presentation was to help people and organisation in setting up an internal...

The post DIY insider threat detection/prevention within ICS environments appeared first on Secudea bv.