A continuous OT cybersecurity risk analysis and mitigation process

Abstract

Operational Technology (OT) systems are becoming increasingly software-driven and connected. This creates new digitalization opportunities but can also increase the risk of cyber security breaches than can have severe consequences. Through a close dialogue with Norwegian actors in the oil- and gas industry and insight into the IEC 62443 standard we propose a process model for continuous risk assessment and mitigation. This paper explains the phases and details of the model and discusses its limitations and further work.

Read publication

Client

Research Council of Norway (RCN) / 326717

Language

English

Author(s)

Affiliation

SINTEF Digital / Software Engineering, Safety and Security
Norwegian University of Science and Technology

Year

2023

Publisher

Research Publishing Services

Book

ESREL 2023 - Proceedings of the 33rd European Safety and Reliability Conference : The Future of Safety in the Reconnected World, 3 – 7 September 2023, University of Southampton, United Kingdom

ISBN

978-981-18-8071-1

Page(s)

3190 - 3197

DOI

https://doi.org/10.3850/978-981-18-8071-1_p413-cd

Read fulltext

https://hdl.handle.net/11250/3103209

View this publication at Cristin

Contact us

Our services

Career

Sustainability

Management and board

Institutes

Other units

About us

Follow us