Improving the information security of Automated Process Control System (APCS)

Result

78%

of ICS workstations

use an account with limited rights

01
2

business hours

are managed using Microsoft System Center Configuration Managerfor the information security to respond to the ICS incidents

02
223

ICS workstations

were put into the secure segment

03
91%

of ICS workstations

are managed using Microsoft System Center Configuration Manager

04

Objective

Enhance information security of industrial control systems (ICS).

Technology

Security information and event management (SIEM), Active Directory, Microsoft System Center Configuration Manager, Remote Desktop Services, Windows AppLocker, Microsoft Defender, Virtual routing and forwarding (VRF) were used during the project execution. Some workstations were switched to Windows 10 / Windows 7.

Solution

Previously, the ICS networks were integrated with corporate networks, thus increasing the risk of cyberattacks. To avoid potential process interruption, the enterprise-level corporate networks and industrial control networks were separated, a separate IT infrastructure and services of the ICS domain were deployed, and the workstations were moved to the secure segment.