“SIs are responsible for system designs, and like it or not, security is a part of every system.”
– Jeff Shearer, Principal Security Architect for Rockwell Automation.
For the last several months, we’ve had the privilege of working with Jeff Shearer, one of a handful of genuine security experts with deep knowledge of industrial control systems. Jeff brings an outlook to security that is very much in line with Avid’s philosophy: it’s not just about avoiding problems. It’s a part of a holistic approach to understanding and documenting all automation assets, an approach that can uncover opportunities to improve performance, save money, and reduce risk of all kinds. You can read more at Automation World magazine this month: Justifying Cybersecurity: 3 Ways That Pay for Themselves. This is a part of the Control System Integrator Association’s (CSIA) guest blog series. We highly recommend the entire series.
We understand the importance of adopting security best practices in everything we do. We must protect our own systems and other assets in order to protect our customers. Just as security does not exist in a vacuum, efforts to improve security are best accomplished as part of overall system design and maintenance. Why not make security a part of a comprehensive system audit? In addition to finding ways to prevent attacks, you may also uncover processing bottlenecks, network loading issues, issues with spare parts, and much more. For the vast majority of system owners, an audit will end up saving much more than the cost. Peace of mind is just frosting on the cake.
What topic would you like to see us tackle in our next Automation World post? Feel free to let us know in the comments below.