Improving the information security of Automated Process Control System (APCS)

Result

78%

of APCS workstations 

work on an account with limited rights

01
2

working hours 

are necessary for the information security reaction to APCS incidents


 

02
223

workstations of automated process control systems


 

were put into the protected segment

03
91%

 of APCS  workstations

are managed using Microsoft System Center Configuration Manager

04

Task

To increase the level of information security of the control system segment (Automated process control systems).

Technology

During the implementation of the project, Security information and event management (SIEM) technologies, Active Directory, Microsoft System Center Configuration Manager, Remote Desktop Services, Windows AppLocker, Microsoft Defender, Virtual routing and forwarding (VRF) were used. Some workstations are transferred to Windows 10 / Windows 7.

Решение

Previously APCS networks were integrated with corporate networks, which increased the risk of cyber attacks. In order to avoid possible process shutdowns, the enterprise’s corporate networks and industrial control system industrial networks were separated, a separate IT infrastructure and services of the automatic control system domain were deployed, and the workstations themselves were transferred to the secure segment.