As the threat landscape continues to evolve, and bad actors continue to advance and escalate their attack methods, there’s growing concern around protection of the nation’s critical infrastructure.
This focus on bolstering cyber aspects of our critical infrastructure is, of course, nothing new, as we’ve seen plenty written and said about the potential for debilitating campaigns carried out against the grid in its many permutations for more than a decade. In fact, as far back as 2003 we began seeing credible reports that foreign nation states may have been actively working to target the U.S. power grid. With a highly influential set of elections happening this week, we’re all aware of reports that previous returns may have been influenced by electronic tampering. (Because our national voting systems are another form of critical infrastructure.)
The reality is that organizations across the public and private sectors have been working hard for a long time to ensure that our backbone networks are being actively protected against compromise. At the same time, the growing adoption of smart-grid technologies and other valuable innovations aimed at driving down costs and improving efficiency continue to widen potential exposure. So, this issue isn’t going anywhere; in fact, it only stands to become more important as such systems are increasingly automated.
As such, the Department of Homeland Security has designated the month of November to raising awareness and appreciation around the critical systems that we rely on every day – including our power, transportation, water supply, Internet and communications networks and so much more – that, if attacked, could lead to catastrophic and potentially life-threatening outcomes.
Much of this attention is being directly focused on making sure that the layered IT security defenses that have been adopted by critical infrastructure providers to help thwart electronic attacks is always in place and functioning properly. Driven by the complexity of such cyber controls, this is no easy task.
Here at Bay Dynamics, we’re focused on providing detailed visibility into that IT security tooling to help protect operations, as well as consumer data, by optimizing and improving existing endpoint, cloud and email and data protections. In that sense, the analysis, visualization and remediation of existing controls that we provide allows our customers to help “watch the watchers”. This is also where Bay Dynamics’ partnership with Symantec has an important impact.
Symantec’s Information Centric Analytics (ICA), platform powered by Bay Dynamics’ advanced user and entity behavior analytics (UEBA) capabilities, ensures that the security operations teams leveraging numerous layers of security systems and policies have the ability to identify and prioritize potential threats, and remain armed with the right information to enact preventative actions before attacks can be advanced or executed.
Constantly improving the cyber security systems used to defend our critical infrastructure is a very important responsibility and we’re proud to have an influential role in that larger process. For more information on Critical Infrastructure Security and Resilience month visit: https://www.dhs.gov/cisr-month.