Report: Industrial Firms Overconfident on Security
A new global report finds that industrial organizations are overestimating the security of their remote access systems. The study highlights rising vendor risks and major visibility gaps in operational technology (OT) networks, prompting a shift toward unified access platforms.
The convergence of IT and Operational Technology (OT) has dissolved the "air gap" that once isolated sensitive industrial systems, introducing new efficiencies alongside significant security challenges. This integration means that threats to IT networks can now traverse into OT environments, which can have physical consequences, including equipment damage, production shutdowns, and even risks to human safety. A key vulnerability is third-party remote access, often required by vendors for maintenance and support. These external parties frequently use their own IT-centric tools, which may lack adequate security controls for sensitive OT systems and can create unmonitored pathways into the network. This issue is compounded by poor credential hygiene and the failure to revoke access after a project is completed. Many industrial organizations suffer from "tool sprawl," using a multitude of remote access solutions. One analysis found that 55% of organizations use four or more different remote access tools, with some using as many as 16. This fragmentation creates significant visibility gaps and complicates security management, as many of these tools lack essential features like multi-factor authentication or session recording. This overconfidence is starkly contrasted by the reality of cyber incidents. One survey revealed that while 90% of federal OT leaders increased their focus on cybersecurity, 68% still experienced an OT cyber-incident in the past year. Furthermore, a study of over 250 industrial sites found that 92% have significant cyber exposures related to remote services, with potential losses reaching up to $1.5 million per site. The move toward unified access platforms aims to address these challenges by providing a single, centralized view for managing and monitoring all remote access to OT systems. This approach enhances security by enforcing consistent policies, enabling better oversight of third-party activities, and reducing the overall attack surface. Adopting a Zero Trust model is becoming essential for protecting critical OT operations. This security framework operates on the principle of "never trust, always verify," requiring strict identity verification for every person and device trying to access resources on the network, regardless of whether they are inside or outside the network perimeter.
