Cybersecurity Risk Management: Prepare for the Unthinkable

PB 25 Rockwell newlogo 400

August 10, 2021

By Nir Sasson, Network Security Consultant, Avnet, a Rockwell Automation company

In cyber risk management, there are two important corner stones:

  1.    1. To conceive the scenarios.
  2.    2. To find a way to minimize the damage in each scenario.

When no one thinks to plan for what to do in the worst-case scenario, trouble strikes. What if you only think of avoiding the “unthinkable” and not what to do if it does happen?  

I like to consider what happened to the Titanic. 

Risk management is more than avoiding the worst 

At the time of the Titanic, one would assume that avoiding a collision with an iceberg was the standard procedure. Therefore, the crew created scenarios and defensive measures were planned and implemented.

The ship’s captain followed the procedure: placed two skilled lookouts at the horizon to provide the expected 20 minutes warning. But, because of low visibility, they were only able to give a minute of warning. With so little time, the collision was unavoidable.

No one had prepared for this scenario. There was no “collision with an iceberg procedure,” only “avoid collision with iceberg procedure”. And so, the story goes; we all know what happened to the Titanic.

The power of risk mitigation

In cybersecurity risk management, the goal is to be prepared for the unthinkable scenario and find the optimal defense measure to minimize the damage. Essentially, to know what to do when you can’t avoid the iceberg. 

Let’s look at an example. A cyberattack approaches the organizational IT/OT systems. The CISO faces a choice: repel the cyberattack or adopt a more elaborate way of managing the risk.

Step one is figuring out what we call the “starting conditions”. Can the attack be avoided? Or does it have to be mitigated?  

Prevailing over cyberattacks requires intelligence methodologies of deception (heard of honeypots?) and many more. But maybe it is better to lure the cyberattack to “penetrate” the cyber perimeter defenses and let the attacker be deceived and think his attack commences as he planned. Then defend from inside the organization. In that case, it would be best to assume that the “starting condition” is that the attack is inevitable – the attacker is getting through the firewall.

In this case, it would be best to perform the procedure planned for mitigation, not avoidance. Let the cyberattack commence and try to minimize the impact. 

It is not a trivial way of thinking. The initial instinct is to make it stop, especially if your whole business is on the line. That is why it is so important to have a risk management expert or team experienced in mapping out scenarios and next steps. This requires people who can think on the fly, ask the right questions and problem solve. 

Security assessment

Given the vastness of today’s threat landscape, no single security product, technology or methodology will suffice at blocking the unthinkable from happening. 

A security assessment should be the starting point for any security policy implementation. It will help you understand your current security posture regarding your software, networks, control system, policies, procedures and employee behaviors. It also will identify the mitigation techniques needed to bring your operation to an acceptable risk state. 

Rockwell Automation works with companies to provide the expertise and skills needed to identify cybersecurity risks.

Source

Related Articles


Changing Scene

  • Tri-Mach Announces the Purchase of an Additional 45,000 sq ft. Facility

    Tri-Mach Announces the Purchase of an Additional 45,000 sq ft. Facility

    Recently, Tri-Mach Inc. was thrilled to announce the addition of a new 45,000 sq ft. facility. Located at 285 Union St., Elmira, ON, this facility expands Tri-Mach’s capabilities, allowing them to better serve the growing needs of their customers. Positioning for growth, this additional facility will allow Tri-Mach to continue taking on large-scale projects, enhance product performance testing, and provide equipment storage for their customers. Read More…

  • HELUKABEL Group Builds New Facility for Automation Cable Solutions

    HELUKABEL Group Builds New Facility for Automation Cable Solutions

    The HELUKABEL Group recently announced it is going to build a new facility in Haan, Germany that will house its robotic dress pack and drag chain system subsidiaries under one roof. The new building will also serve as the headquarters of HELUKABEL’s Rhine-Ruhr sales branch, and is planned to be completed by 2025. Robotec Systems’ core business is robotic dress pack solutions and has been a HELUKABEL subsidiary since 2012 operating out of Duisburg, a suburb of Duesseldorf in northwest Germany. Read More…


Sponsored Content
Fire Protection for Lithium-ion Battery Energy Storage Systems

Lithium-ion storage facilities contain high-energy batteries combined with highly flammable electrolytes. In addition, they are prone to quick ignition and explosion in a worst-case scenario. Such fires can have a significant financial impact on organizations. Rapid detection of electrolyte gas particles and extinguishing are the key to a successful fire protection concept. Since December 2019, Siemens has been offering a VdS-certified fire protection concept for stationary Li-ion battery storage systems.

Click HERE to learn more.


For a Multiplied Value Unified

PB-62-Excelpro-MultipliedValue-400.jpg

During the last few years, the Excelpro Group has welcomed AIA Automation, Envitech Automation and Conrad Lavoie Electrical, all of which have become ‘Member of the Excelpro Group’.

It was with great excitement that in November of 2022, Excelpro announced that these three companies officially became Excelpro. This decision is part of a strategy to enhance the Excelpro Group’s brand in its market.

These companies already collaborate on various client projects. This merger brings together the complementary strengths of the employees and ensures a global synergy of the activities throughout the Group.

Read More


Service Wire Co. Announces New Titles for Key Executives

Bruce Kesler and Mark Gatewood have been given new titles and responsibilities for Service Wire Co.

Bruce Kesler has assumed the role of Senior Director – Business Development. Bruce will be responsible for Service Wire’s largest strategic accounts and our growing Strategic Accounts Team.

Mark Gatewood has been promoted to the role of Vice President – Sales & Marketing. In this role, Gatewood will lead the efforts of Service Wire Company’s entire sales and marketing organization in all market verticals.

Read More


Modern Niagara Partners with Global Sustainability Platform Worldfavor

Worldfavor is a global sustainability platform, digitizing and automating the collection, calculation, aggregation and visualization for analysis and reporting of ESG data. Now, Worldfavor is proud to welcome Modern Niagara as a new customer. Modern Niagara is the first Canadian construction company to partner with Worldfavor.

“Worldfavor was founded to be the best platform for sharing, accessing and gaining insights from corporate ESG information. Worldfavor’s mission is to make sustainability mainstream and with that we offer solutions to accelerate sustainability through the value chain. Modern Niagara is the first Canadian construction company to partner with Worldfavor. 

Read More


JMP Parent Company, CONVERGIX Acquires AGR Automation, Expanding Global Reach

Convergix Automation Solutions has completed the acquisition of AGR Automation (“AGR”), a UK-based provider of custom, high-performance automation design and systems integration primarily to the life sciences industry.

Following Convergix’s acquisitions of JMP Solutions in August 2021 and Classic Design in February 2022, AGR marks the third investment in Crestview’s strategy to build Convergix into a diversified automation solutions provider targeting the global $500+ billion market, with a particular focus on the $70 billion global systems integration and connectivity segments. Financial terms of the transaction were not disclosed.

Read More


Latest Articles