Partner publication Control recently published an article underscoring the importance of robust cybersecurity measures for automation engineers, highlighting their role in protecting manufacturing enterprises and utilities from cyberattacks.
Automation engineers should be particularly interested in the vulnerabilities introduced by commonly used Windows-based PCs and server-based operating systems within process control networks. These systems, Control reported, are often isolated from the broader internet and still face risks from seemingly innocuous actions, such as charging a phone via USB or using removable drives.
The implementation of firewalls and email filters showcases a better-safe-than-sorry approach, but even these measures are not foolproof, as phishing and ransomware exploits continue to pose significant threats.
Furthermore, the article discusses the complexities of deploying security policies, such as Group Policy Objects and mechanical USB port blockers, which, while necessary, can inadvertently disrupt critical operations. Ethernet switch management, another crucial aspect for automation engineers, involves ensuring unused ports are blocked and managed switches are used to prevent unauthorized access.
However, these solutions can also lead to connectivity issues if not managed correctly.
