Tripwire State of Industrial Cybersecurity Report

Around the world, ICS security professionals in manufacturing, energy & utilities and transportation are working in fear from the potential effects of a cyberattack to their organizations.

A new study by Tripwire, conducted with Dimensional Research, revealed 93 percent are worried about cyberattacks causing an operational shutdown or customer-impacting downtime, while 66 percent acknowledge that a successful attack could have catastrophic consequences (i.e. an explosion).

Other key survey findings include:

  • 77 percent of organizations have made ICS cybersecurity investments over the past two years. However, 50 percent of Infosecurity professionals still feel that current investments are not enough to counter these threats and, of this 50 percent who felt current investments were not enough, 68 percent still believe it would take a significant attack in order for their organizations to invest more.
  • About half (49 percent) said that collaboration between IT and OT has improved over the past two years.
  • More indicated that IT is taking the lead on ICS security (44 percent) vs. OT (14 percent); 35 percent said it is evenly split between IT and OT.
  • More than three-fourths (79 percent) say there is a gap in training OT and IT staff on the unique needs and requirements for securing OT environments. Of those who made cybersecurity investments over two years (77 percent), education and training was the most common investment (82 percent).
  • Only 52% have more than 70% of their assets tracked in an asset inventory.
  • Almost one-third (31%) of organizations do not have a baseline of normal behavior for their operational technology (OT) devices and networks.
  • Less than half (39%) do not have a centralized log management solution in place for their OT devices.