ICS-SCADA Security

7.

Security Assessment and Testing in Operational Technology

7.1.

Asset Discovery and Inventory Management

7.1.1.

Asset Identification Methodologies

7.1.1.1.

Network-Based Discovery Techniques

7.1.1.2.

Configuration Management Database Integration

7.1.1.3.

Manual Asset Documentation

7.1.1.4.

Asset Classification and Categorization

7.1.2.

Passive Discovery Techniques

7.1.2.1.

Network Traffic Analysis

7.1.2.2.

Protocol Monitoring and Analysis

7.1.2.3.

SNMP-Based Discovery

7.1.2.4.

DNS and DHCP Log Analysis

7.1.3.

Active Scanning Considerations

7.1.3.1.

Operational Impact Assessment

7.1.3.2.

Safe Scanning Tool Selection

7.1.3.3.

Scanning Schedule Coordination

7.1.3.4.

Vendor Consultation Requirements

7.2.

Vulnerability Assessment Practices

7.2.1.

OT-Specific Vulnerability Scanning

7.2.1.1.

Scanning Tool Selection Criteria

7.2.1.2.

Operational Impact Minimization

7.2.1.3.

Vulnerability Database Utilization

7.2.1.4.

False Positive Management

7.2.2.

Safe Scanning Implementation

7.2.2.1.

Pre-Scanning Risk Assessment

7.2.2.2.

Stakeholder Coordination

7.2.2.3.

Scanning Window Scheduling

7.2.2.4.

Emergency Response Procedures

7.2.3.

Vulnerability Prioritization and Risk Assessment

7.2.3.1.

CVSS Scoring Adaptation for OT

7.2.3.2.

Business Impact Analysis

7.2.3.3.

Exploitability Assessment

7.2.3.4.

Remediation Planning

7.3.

Penetration Testing for Industrial Systems

7.3.1.

Rules of Engagement Development

7.3.1.1.

Scope Definition and Boundaries

7.3.1.2.

Stakeholder Approval Processes

7.3.1.3.

Emergency Contact Procedures

7.3.1.4.

Legal and Regulatory Considerations

7.3.2.

Non-Disruptive Testing Methodologies

7.3.2.1.

Simulation and Emulation Techniques

7.3.2.2.

Red Team Exercise Planning

7.3.2.3.

Social Engineering Assessment

7.3.2.4.

Physical Security Testing

7.3.3.

Tabletop Exercise Development

7.3.3.1.

Scenario Design and Development

7.3.3.2.

Cross-Functional Team Participation

7.3.3.3.

Exercise Facilitation Techniques

7.3.3.4.

Lessons Learned Documentation

7.4.

Architecture and Design Review

7.4.1.

Security Architecture Assessment

7.4.1.1.

Design Document Review

7.4.1.2.

Threat Modeling Exercises

7.4.1.3.

Security Control Gap Analysis

7.4.1.4.

Compliance Assessment

7.4.2.

Design Flaw Identification

7.4.2.1.

Single Point of Failure Analysis

7.4.2.2.

Attack Surface Assessment

7.4.2.3.

Trust Boundary Analysis

7.4.2.4.

Data Flow Security Review

7.4.3.

Remediation Planning and Implementation

7.4.3.1.

Risk-Based Prioritization

7.4.3.2.

Cost-Benefit Analysis

7.4.3.3.

Implementation Timeline Development

7.4.3.4.

Progress Monitoring and Reporting

Previous

6. ICS and SCADA Security Controls and Defense-in-Depth

Go to top

Next

8. Industrial Control System Security Standards and Frameworks