ICS Asset Identification
It’s More Than Just Security
Without a solid understanding of the assets on your ICS network, it’s impossible to develop and implement a strategy to manage risk and ensure reliable operations. Asset identification was the No. 1 concern of 338 ICS security professionals participating in the SANS 2019 State of OT/ICS Cybersecurity Survey.
Historically, asset identification has been associated with time-consuming and costly efforts to identify and maintain an accurate inventory, with more than half of operators spending 20–80% of their time just finding and validating plant information. Despite this operational focus and perhaps due to mismatched expectations, this critical and fundamental step is not always the board’s top priority for the CISO.
Download this Tenable sponsored SANS whitepaper where you will get recommendations and guidance covering:
- How to articulate not just security ROI, but business ROI—such as reducing mean time to recovery (MTTR)—to senior management and board members to obtain the resources needed to start an asset identification program
- How asset identification can support operations beyond cybersecurity
- How to get quick wins by leveraging information you already have to bootstrap an asset identification program
- What techniques you can use for ongoing asset identification maintenance with limited human resources