Seven Steps to Effectively Defend Industrial Control Systems

This document details tactics to better defend industrial control systems, which in 2015 experienced 295 documented intrusion incidents. According to the article, if these steps had been taken, 98 percent of the Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) handled in fiscal years 2014 and 2015 would have been avoided. The seven strategies outlined include implementing application whitelisting, implementing secure remote access, ensuring proper configuration and patch management, reducing attack surface area, building a defendable environment, managing authentication, and actively monitoring and responding to threats.

View Source