Ugh, Penetration Tests: what’s even the point?
There is no common understanding of what a penetration test should be. At worst it is just paying somebody to run a vulnerability scanner against your Internet-facing systems, at best it is a set of realistic attacks against your cyber, physical and human attack surface, based on a thorough threat assessment and risk analysis. Neither is there any common understanding of why penetration tests should be run, beyond the usual “PCI DSS says so”.
Where? Oslo Spektrum
When? 23 – 24 May, 2022
I will talk about these issues, highlighted by some of my favourite (and least favourite) moments from past pentest engagements. Oh, and I will demonstrate my invisibility jacket.
Sectra Network Alert
During the spring of 2022 we have launched a new product called Sectra Network Alert! This new solution will help you find loopholes in the security isolation layers by continuously performing network testing. We will showcase this new product in our stand — make sure to stop by for a demo! You can read more about this new product here.
Secure remote working
In our stand we will also demonstrate our approved and unique solution Sectra Mobile VPN. It is based on patented technology and was developed for the mobile society of today and tomorrow. Sectra’s VPN-technology is developed to work just as well on mobile devices as desktops – regardless of operating system – and helps the organization to exchange information and work remotely without compromising on security.
Managed detection and response
We ensure the visibility required for early risk and threat detection so that the continuity of your operations is not jeopardized. With a few network sensors and well-chosen log sources, we can ensure that in just a matter of days you will achieve visibility and management of security risks that authorities demand for critical infrastructure. Our security analysts and incident responders will be available for your operations in our round-the-clock security operation center (SOC) that specializes in ICS/SCADA.
Network monitoring and detection
With this detection technology your industrial control system (ICS) network traffic will be identified and analyzed to minimize risks that could constitute a threat against maintaining continuity in operations. This capability detects deviations in the networks by using a monitoring service that reacts proactively to potential threats and risks. Therefore, measures can be taken before the deviations can lead to serious consequences.
Log monitoring and detection
Security-critical log events are with this detection technology collected from various critical systems in operations (e.g. from IT/OT networks, switches, firewalls and servers). All information on security-critical events—suspicious login attempts, for example—are grouped, and a picture of a potential threat or incident in progress can be rapidly obtained by correlating data from many different sources.
From protected locations in a 24/7 security operations center (SOC), all the information from the different detection capabilities is gathered and analyzed. The traffic is first analyzed in advanced systems, then Sectra’s security analysts take over in the event of an incident to dig deeper and deal with the incident so that operations can quickly return to normal.
We assist you in your evaluation of the incident and contribute expertise, experience and analysis methods. Sectra’s team of analysts and incident responders are always available by telephone.
Sectra risk and security assessment
Sectra risk and security assessment provides a good overview of strengths and weaknesses in your organization’s ability to detect, manage and protect against security related risks. Sectra will help in identifying risks that may affect the ability to deliver critical services, and lists actionable recommendations to help you mitigate the risks.
Our recommendations include:
- Physical and IT/OT-related security measures
- Organizational measures
- Improvements to processes and policies
We understand the value of balancing security against asset value and will support you in adequately mitigating risk without overinvesting.
Sectra has more than 40 years of experience in secure communications and cybersecurity. As a leading managed security service provider (MSSP) for critical security in energy and water supply, and the process industry, we provide Managed Detection and Response in close partnership with our customers, adapted to their needs and resources.
Sectra works closely together with our customers to design a balanced security approach over time, adapted to the risk level and risk appetite of the operations. Together with our customers, we will face the new normal.