New managed cyber security service offering launched for protecting industrial control system environments

Siemens introduces a comprehensive security service, aiming at control system asset owners in process and discrete industries. Video: Galina Antova and Roger Hill explain threat developments driving the launch.

December 10, 2013

Siemens Industry is rolling out its new Managed Security Service in the U.S., aimed at providing continuous protection to production environments. The offering includes assessment of security posture, implementation of recommended security measures, and transitions into ongoing defense against rapidly evolving cyber security threats in ICS (industrial control system) environments. The new offering will first be introduced in the U.S. followed by Europe and Asia.

The Industrial Security Services group expands on the existing Siemens security portfolio by providing holistic protection to manufacturing sites. Siemens says its approach is to partner with customers to help them build sustainable industrial security programs, by leveraging expertise in automation and industrial cyber security.

“Global cyber threats are rapidly evolving, and it also takes continuous and comprehensive action to protect production environments,” says Jagannath Rao, president of Industry Customer Services.  “This new managed service will allow customers to stay focused on their core business while entrusting the implementation of their security program to Siemens as a knowledgeable partner.”

Raj Batra, president of Siemens Industry Automation adds, “Companies are understanding that cyber security commands the attention of those at the helm of the enterprise because of its sheer gravity and magnitude. With that C-level focus, the rest of the enterprise quickly follows suit, but they need help, and that’s where vendors like Siemens come in.”

Siemens stresses that the specific requirements for security of an ICS environment differ from the enterprise requirements of corporate IT. In a production environment, availability is a key security goal. To ensure uninterrupted production and maximized uptime requires comprehensive protection of the people, processes and equipment. The impacts of a successful attack can be serious, and include health, safety, and ICS environmental impacts along with manipulation of data, IP theft, sabotage of production, and plant down time.

In stressing the importance of the service aspect of the offering, Siemens points out the challenges of establishing an in-house program, such as lack of qualified individuals to design, implement, and respond to incidents; rapid increases in number of industrial security threats and attacks; lack of global threat intelligence to enable pro-active defensive measures; insufficient data to make business decision based upon risk; and emerging government rules and regulations. The new service is designed to help customers move away from point solutions for security, to a comprehensive program delivered through a managed security service, making security an ongoing life cycle.

Siemens Managed Security Service

https://www.siemens.com/industrial-security-services

Edited by Peter Welander, pwelander@cfemedia.com