GE Strengthens OT Environments with IEC Cyber Security Standards
Leading industrial control solutions now compliant with IEC 62443-2-4 standards for enhanced security
Longmont, CO—April 25, 2016—GE Oil & Gas (NYSE: GE) today announced its cyber security hardening capabilities and solutions are compliant with IEC 62443-2-4 standards, the leading international security program for Industrial Automation and Control Systems (IACS). GE’s solutions now compliant with this security standard include SecurityST* Mark* Vle Solution and Commissioning Services, which incorporate the Cyber Asset Protection (CAP) Software Update Subscription and SecurityST Appliance.
As modern infrastructure becomes more complex with centralized control systems and Industrial Internet connectivity, securing assets and networks is more important than ever. GE’s compliance with IEC 62443-2-4 standards ensures customers’ confidence that plant-level systems and network architectures are built with cyber security and operational reliability in mind. Today’s threat landscape demands that industrial organizations implement the strictest policies and protections for their control systems and operational technology (OT) assets.
IEC 62443 standards are specific to industrial automation control systems within OT environments. By hardening OT environments, risks such as unauthorized access to control systems, false commands to operating equipment, and read/write of proprietary device data can be minimized. IEC 62443-2-4 defines a standard set of security services for integration and maintenance activities, enabling asset owners to select the most appropriate services or capabilities for their sites. As a result, GE can tailor its service offerings around these standard activities.
GE’s compliance with IEC 62443-2-4 supports industrial control security for capabilities like solution staffing, solution hardening, network security, user security, application security, Security Information and Event Management (SIEM), patch management and backup/restore capability.
"With increasing connectivity in industrial environments, organizations must prioritize cyber security to protect infrastructure and services from malicious actors," said Terry Knight, General Manager Control Solutions, GE Oil & Gas. "By meeting IEC 62443-2-4 standard requirements, GE helps customers build OT resilience and fulfill a holistic risk mitigation strategy."
As the industrial world becomes more digitally connected, GE is committed to a culture of security to protect our systems, products and the energy industry’s operations.
GE (NYSE: GE) imagines things others don’t, builds things others can’t and delivers outcomes that make the world work better. GE brings together the physical and digital worlds in ways no other company can. In its labs and factories and on the ground with customers, GE is inventing the next industrial era to move, power, build and cure the world. www.ge.com
About GE Oil & Gas
GE Oil & Gas works on the things that matter in the oil and gas industry. In collaboration with our customers, we push the boundaries of technology to bring energy to the world. From extraction to transportation to end use, we address today's toughest challenges in order to fuel the future. Follow GE Oil & Gas on Twitter @GE_OilandGas.