ASSESS
Our Solutions We Offer
Onsite Visual Inspection Program
The specialized solution provides a quick analysis of the current state of cybersecurity in the customer’s industrial environment under examination. The outputs of the solution reflect and classify the organization’s resilience against current cyber threats that may arise from the physical environment.
The program for technical visual inspection of the industrial environment represents an innovative solution focused on performing a quick and efficient analysis of the current state of cybersecurity in customer’s industrial premises. The service specializes in identifying and assessing risks arising from the physical aspects of the environment, which can be a source of potential cyber threats.
Benefits
Security Assessment of a Selected Site: During the assessment, security weaknesses are identified through visual inspection, including an examination of operator stations and associated technologies. If appropriate, this also includes a structured interview with a pre-selected employee.
Enhancement of Security for Critical OT Systems: Identification of physical vulnerabilities in industrial technologies, which could lead to potential cybersecurity risks.
Establishment of a Security Strategy: Based on analytical outputs can be provided essential information and recommendations that can be integrated into the existing cybersecurity strategy for maximum protection of industrial and control systems (ICS), or they can serve as a basis for its creation and adjustment.
NIS 2 Cyber Security Assessment
The newly formulated service is focused on providing an analysis of the security of industrial technologies (OT) in accordance with the new EU legislation for cyber security, known as the NIS2 Directive. This service offers customers a detailed assessment of the current state of OT cyber security, including management of industrial control systems (ICS – SCADA, DCS, PLC, IED, RTU etc.), thus reflecting the organization’s ability to withstand modern cyber threats. The main content includes the review and analysis of existing documentation (security policies, procedures, architectural diagrams, functional and operational manuals, etc.), followed by a guided workshop aimed at specifying information from key security areas defined by the Czech proposal of the new Cyber Security Act based on the NIS2 Directive.
Benefits
Compliance with the new Cybersecurity Act: Supports compliance with the new Cybersecurity Act, which ensures assessment and subsequent enhancement of the cybersecurity of industrial systems to the level required by law.
Optimization of Response Time to Cyber Incidents: Identification of weaknesses in customer processes and technologies in terms of detection and response to cyber incidents and proposing optimization of this process.
Establishing a Security Strategy: Based on analytical outputs be provided important information and recommendations that can be integrated into the existing cyber strategy for maximum protection of industrial and control systems (ICS) or can serve as a basis for its creation and setting.
Organisational Assessment according to IEC 62443
This solution provides to customer an orientation determination of the state of OT cybersecurity processes of industrial control systems (ICS – SCADA, DCS, PLC, IED, RTU etc.), thus reflecting the organization’s resilience against contemporary cyber threats. The primary task is to assess the existing documentation (policies, procedures, architectural drawings, functional and operational manuals, etc.) followed by a controlled workshop to specify information from 16 key security domains introduced by the IEC 62443-2-1 standard, such as supplier management, system maintenance, network security, physical and environmental security, personnel security, and more.
Benefits
Compliance with Leading Industrial Standards: Support for compliance with prestigious international cybersecurity standards, ensuring assessment and subsequent enhancement of cybersecurity of industrial systems to a high expert level.
Optimization of Response Time to Cyber Incidents: Identification of vulnerabilities in customer processes and technologies with respect to detection and response to cyber incidents and proposing optimization of this process.
Establishment of a Security Strategy: Based on analytical outputs can be provided essential information and recommendations that can be integrated into the existing cybersecurity strategy for maximum protection of industrial and control systems (ICS), or they can serve as a basis for its creation and adjustment.
Cyber Risk Assessment of OT systems
This service is dedicated to conducting an in-depth OT Cyber Risk Assessment, providing a comprehensive evaluation of an organization’s operational technology (OT) cybersecurity risks. This assessment encompasses all aspects of OT, including industrial control systems (ICS) such as SCADA, DCS, PLC, IED, RTU. Cyber Risk assessment is by default aligned with industry best practices presented by standard IEC624432, but for the customer’s request can be ensured also for another applicable risk assessment standard (e.g., EBIOS, ISO27005, ANSSI etc.). The primary focus is to identify and analyse potential worst-case scenarios which can arise from cyber threats and vulnerabilities of OT systems and related processes. The service involves the review and analysis of existing system documentation, like technical and operational manuals, operational practices, architecture drawings etc. A key component of the assessment is a collaborative workshop with key stakeholders to delve into specific risk areas and tailor the assessment to the organization’s unique context.
Benefits
Compliance with the new Cybersecurity Act: Supports compliance with the new Cybersecurity Act, which ensures assessment and subsequent enhancement of the cybersecurity of industrial systems to the level required by law.
Risk Management and Mitigation: Provides a solid foundation for developing or refining risk management strategies, ensuring that cybersecurity efforts are focused on areas of highest risk.
Strategic Cybersecurity Investment: Enables informed decision-making for cybersecurity investments, ensuring that resources are allocated effectively to areas of greatest need and impact.
Vulnerability Assessment of Operational Technology (OT) Systems
This specialized service is designed to conduct a comprehensive Vulnerability Assessment of Operational Technology (OT) Systems, aligning with current cybersecurity best practices and regulatory requirements. The objective is to identify, analyse, and prioritize vulnerabilities in the OT environment, thereby enhancing the resilience of these systems against cyber threats. The assessment process includes a thorough examination of the OT infrastructure, encompassing both hardware and software components, and evaluates their susceptibility to cyber-attacks.
Benefits
Enhanced Understanding of Cyber Risks: Provides a clear understanding of existing vulnerabilities in OT systems and their potential impact, enabling informed decision-making.
Proactive Threat Mitigation: Helps in proactively identifying and addressing vulnerabilities before they can be exploited by malicious actors.
Foundation for Continuous Security Improvement: Establishes a baseline for ongoing security assessments and continuous improvement in the organization's cybersecurity posture.
Robustification Assessment of OT Systems
The top class „Robustification of OT Systems“ solution is a is specifically tailored service to enhance the robustness and resilience of Operational Technology (OT) systems within an organization. This service focuses on strengthening these systems against cyber threats and ensuring their reliable operation in the face of potential system availability issues. The objective is to identify a series of fragility gaps in critical industrial system´s architecture and based on that define robust security measures that fortify OT systems. The process involves a comprehensive assessment of the current state of OT system in terms of known fragility weaknesses, communication with vendors and/or system integrators and definition of implementation actions leading to strengthen overall robustness of selected critical systems.
Benefits
Increased Resilience to Cyber Threats: Strengthening OT systems enhances their ability to resist and recover from cyber-attacks as well as from usual availability issues, thereby reducing the risk of operational disruptions.
Enhanced Operational Continuity: Robust OT systems ensure a higher level of operational reliability and continuity, critical for industrial environments.
Improved Overall Cybersecurity Posture: The robustification of OT systems contributes to a stronger overall cybersecurity posture for the organization, protecting against evolving cyber threats. This service is essential for organizations relying on OT systems for their critical operations, ensuring that these systems are not only secure but also robust and resilient in the face of an increasingly sophisticated cyber threat landscape.
