In my twenties, I was determined to get a motorcycle. My determination coupled with my pragmatism, drove me to take a motorcycle riding course so that I was best prepared for this life step. The one thing I remember them saying in class was it wasn’t a matter of IF but WHEN you would be involved in some sort of incident compromising your safety and how preparation was a key factor. Fast forward to present times, the relevance of these words rings true to my work in cyber security for Industrial Control Systems.
Protecting critical assets is recognized as a high priority in the energy industry. But protecting the assets is only one step to establishing a strong security posture. Having a plan in place for when, not if, a cyber incident occurs, is just as critical with the continually changing cyber landscape. We need to be able to answer the question, how resilient is my operation to a cyber incident? The answer to this is found in running incident response exercises focused on three areas.
- Define key stakeholders –Who would lead the incident? What are the defined roles of key functions?
- Test your assumptions – How long could you operate with key systems disabled? How would you engage law enforcement?
- Exercise, measure and repeat – How do you measure? How do you improve?
Responding to these questions is the first step to creating systematic ways to continually improve your incident response plan.
Planning for incident response can seem overwhelming, but there are simple first steps to take. Let GE’s proven expertise in cyber security assist you in your part of planning. Learn more about our solutions and contact us today.