Desktop users connected over networks to control systems are also connecting to Internet. Number of firms struggling to get their arms around managing the risk better - many have had various personnel involved with different automation/process controls platfoms installed by silos of engineers. Now solutions going from proprietary islands to using commodity systems platforms with interconnectivity with the business networks (reporting, remote access, boss wants to see live status from home PC, etc).. being in a corp infosec corp security group - still not playing the kind of role we need to for better risk management - i.e. defensive model, risk based placement in the model, reporting/visibility to board, etc. With regulatory preasure, board level visiblity, etc- the silo walls will have to come down more.. just can't react our way through it successfully otherwise.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11351/32716#32716