Topics In Demand
Notification
New

No notification found.

What is Operational Technology (OT) Cybersecurity?
What is Operational Technology (OT) Cybersecurity?

January 28, 2022

525

0

Operational technology (OT) cybersecurity includes the processes that involve the discovery, monitoring, and remediation of network-connected OT devices affected by unusual behavior.

OT can be defined as the network-connected devices that monitor or control processes and events outside of Information Technology (IT). Some examples of OT devices are building sensors, HVAC systems, medical devices, life sciences devices, and manufacturing equipment to name a few.

Let’s take a closer look to better understand why properly securing these devices is crucial for any organization.

Why is OT Cybersecurity Important?

The increase of OT devices used in industries such as healthcare and life sciences has made OT cybersecurity more important. According to the 2019 Ponemon Cyber Security in Operational Technology Report, over 60% of respondents mention concern about an attack against operational technology (OT).

In healthcare technology management (HTM), patient outcomes rely on health monitoring that operates without disruption. And applications of OT assets in smart buildings that use wireless devices to monitor and control systems such as heating, ventilation, and air conditioning (HVAC) rely on strong OT cybersecurity to counter cyber threats.

In contrast to OT cybersecurity, IT teams focus less on device resilience and more on the integrity of information. Thus, IT teams and OT teams may have different priorities. With attackers looking at new entry points into a business, this makes for a real threat.

The problem with OT cybersecurity is that many machines are running outdated software, or they may lack after-market security patches. This gives hackers an even greater opportunity to compromise them or infect them with malware and disrupt operations. Windows vulnerabilities like BlueKeep and DejaBlue continue to be discovered in old Windows systems. In 2020, TrapX Security found a new malware campaign launching cyber attacks on devices running embedded Windows 7. According to the 2020 Global Risk Report by OT security firm CyberX, unsupported and unpatched operating systems including Windows XP, Windows 2000, and now Windows 7 account for 71% of networks they examined.

When an OT cybersecurity event occurs, the security team may have little to no context about the device. There may be some basic information available, such as IP and MAC address. But the OT device owner, location, usage, software version and latest maintenance record might be missing. When this happens, there’s a risk that the wrong remediation steps are taken, such as disconnecting a medical device. In an industry such as healthcare, it is critical that an authorized clinical engineer is dispatched to remediate the OT device. A patient’s health, patient health information, or a medical procedure might be at risk.


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


Nuvolo is a global leader in modern, cloud-based IWMS software. Our Connected Workplace solution is built on ServiceNow™ and offers a single platform to manage all people, physical locations, assets, and work, enabling all aspects of enterprise service management for an organization. It encompasses all the components required for an organization to plan, deliver, operate, and control the enterprise services offered to their employees and customers. Nuvolo is headquartered in Paramus, NJ, with a global workforce located throughout North America, Europe, and Asia. We are one of the largest and fastest-growing independent software vendors globally. The industries we serve include healthcare, life sciences, financial services, retail, government, higher education, and enterprise.

© Copyright nasscom. All Rights Reserved.