In the SANS State of ICS/OT Cybersecurity 2024 report, 530 professionals working in critical infrastructure sectors were asked which technologies they have in their OT environments and what they were planning to add in the next year and a half. The two lists highlight which technologies are widely deployed and what areas security teams are going to focus on next.
As for technologies currently in use, access controls (81%); backup and recovery tools (74.4%); endpoint detection and response tools such as traditional antivirus (73%); implementing segmentation between control systems and higher risk networks (66%); and securing remote access by deploying multi-factor authentication (65%) were the top five. These categories have seen “massive jumps in implementation,” SANS said in the report. Just 53% of respondents reported using EDR in 2019, which comes out to a 20% increase in 2024.
“We often describe ICS/OT as the ‘M&M’ model: hard shell, gooey center. This is why we focus a lot on…