Industrial Automation and Control System Security Trends in 2024 and 2025 Outlook
Key Trends in 2024: Improved visibility and ongoing monitoring: There’s […]
Share This Article:
Key Trends in 2024:
- Improved visibility and ongoing monitoring: There’s been a growing emphasis on visibility and ongoing monitoring. Anchoram has noticed that clients are eager to invest in tools that offer a complete view of their network and assets. This helps them keep track of asset details, identify older devices and prioritise risks based on how they affect operations. Having this solid groundwork is essential for looking into disruptions and boosting security, and it aligns well with guidelines like the SANS ICS Top Five
- Attack Surface Management: As zero trust and defence-in-depth strategies gain traction, clients are increasingly looking to push security beyond the usual boundaries. This means being proactive about potential threats across networks, systems, and devices, and making sure strong security measures are in place.
- Governance and Information Sharing: Governance frameworks are tightening up, and the sharing of information is vitally important to security programs. This shift is all about reducing operational risk and reacting quickly to incidents. From our work with clients on the Security of Critical Infrastructure Act, we see this as a major priority.
- AI and Machine Learning: The use of AI and machine learning in industrial control systems has really taken off, allowing for things like predictive maintenance, spotting anomalies, and improving decision-making. We have noticed that the lines between traditional control systems are starting to blur, as there is a growing need to use these technologies for data analytics.
- Improved Standards: The pace of improvements in industrial security standards has increased, boosting interoperability and offering a systematic way to ensure safety in these settings.
Predictions for 2025 in key sectors
Anchoram is stepping up its support for clients in key markets, especially with the upcoming shifts in the Energy and Rail sectors expected in 2025.
As an example, the Australian Energy Market Operator (AEMO) has laid out some important plans to boost its cyber security efforts.
Here’s a quick rundown of the main initiatives:
- NEM-Wide Cyber Incident Response Plan: AEMO is working on a response plan for cyber incidents across the National Electricity Market (NEM). This approach will improve the response time and provide effective action against any cyber threats.
- Support for Energy Businesses: AEMO will provide guidance via best practices and resources to energy businesses. This is a great initiative and will ensure that resources are provided to strengthen defences.
- Expert Cyber Security Advice: AEMO plans to offer specialised cyber security guidance and advice to both government and industry participants. This approach will help to shape policies and strategies that will improve security in the energy sector.
- Distribution of Critical Cyber Security Information: AEMO will keep market participants in the loop by sharing vital cyber security information about potential threats and ways to manage them.
- Implementation of the ISF Rule: AEMO will put the Improved Security Framework (ISF) rule into action, with several key milestones set between 30 June 2024 and 2 December 2025. This rule aims to improve system security procurement frameworks and boost the transparency of security needs.
These initiatives are part of AEMO’s larger strategy to ensure that Australia’s energy system remains secure, reliable and cost-effective as it moves towards a net-zero emissions future.
Focusing on improved standards in 2025, the rail industry will see some major updates with the Technical Specification TS 50701 as it shifts to the new IEC 63452 standard.
Here’s what to expect:
- Improved Cybersecurity Framework: The IEC 63452 standard will roll out a more comprehensive cybersecurity framework tailored for railway systems. This will focus on ongoing monitoring and assurance, helping operators tackle new threats more effectively.
- Organised Vulnerability Management: The re-vamped standard will streamline vulnerability management, ensuring that security weaknesses are identified and addressed promptly to safeguard essential infrastructure.
- Enhanced Risk Management: IEC 63452 will provide in-depth methods for assessing risks, going beyond the general guidelines of TS 50701. It will categorise different parts of the railway system based on their security requirements, enabling more focused and effective security strategies.
- Merging Safety and Security: The new standard will bring together safety and security management, promoting a unified approach to engineering these elements for better system integrity and reliability.
- Adherence to IEC 62443: The standard will continue to comply with IEC 62443-2-1:2010, offering security models, concepts, and a risk assessment process specifically designed for the railway sector.
- Lifecycle Management: IEC 63452 will align with the reliability, availability, maintainability and safety (RAMS) lifecycle as detailed in the IEC 62278 series, ensuring coordination among various stakeholders and providing clear security expectations.
These updates aim to provide a comprehensive approach to managing cybersecurity within railway systems, addressing today’s challenges and ensuring the protection of critical infrastructure.
2025 is going to be another year of change for Industrial Automation and Control Systems cyber security. Anchoram Consulting stands ready to offer expert guidance and advanced solutions to assist organisations. Our commitment to integrity ensures that your business is not only protected – but also empowered – to thrive in the face of emerging threats.
For expert advice, contact Anchoram Consulting today!
Key Trends in 2024: Improved visibility and ongoing monitoring: There’s […]
Share This Article:
Categories
Subscribe
Subscribe to our newsletter and get the latest news and information from Anchoram.