The Operational Technology (OT) domain has historically been an area of sensitivity primarily within the industrial (manufacturing, petrochemical and utility) markets. Recent compromises of OT have expanded the exposure to loss from this domain into more core corporate markets including pharmaceutical, finance and technology spaces. In order to effectively mitigate threats to this domain, a holistic countermeasure implementation program must be put in place and be managed as a core competency within the overall cybersecurity posture of an organization. Physical security controls must be a priority within this posture to effectively control access to the on-site assets that manage OT.
The article, Effectively Integrating Physical Security Technology into the Operational Technology (OT) Domain, written by Matthew Wharton, was recently published in Cyber Security – A Peer Reviewed Journal.
This compelling article introduces two key initiatives. The first is to apply physical security controls to protect OT, which may require an expansion of the locations at a site where these controls are deployed. The second is to treat physical security assets as OT so they fall under the same level of network segmentation, threat management, version control and access management as core OT assets.