It’s logical: regain control of Industrial systems, with ‘Zero Trust’.

Alex Newman
12 min readJun 4, 2020

Industrial Control Systems (ICS) Security Experts would be naïve to believe that perimeter security, patching, and ‘air gaps’ are beneficial measures to maintain Resilience and Production Reliability in current Operational Technology (OT) environments.

Information Security is about to enter a Digital Transformation continuum, where the systemic obsolescence in current industrial architectures will act as a catalyst to overtake the security precedent of Information Technology (IT) Systems.

Photo by Robin Sommer on Unsplash

In practice, organisations with ICS cannot define their perimeter (or it has become infinite), patching operational technology is unfeasible (even undesirable), and ‘air gaps’ do not exist (they were often an illusion of isolation).

What is ‘Zero Trust’?

A security concept centred on the principle that organisations should not automatically digitally trust anything inside or outside its perimeters and instead must verify anything and everything trying to connect to its systems before granting access, an environment without trust.

--

--