Control system security is a process of due diligence to security principles. The purpose of
this paper is to try to summarize the ten most important design and process principles that,
while not guaranteed to secure a system, will ensure that due diligence has been followed to
make it as secure as practical. These are:
- Governance
- Security Awareness and Training
- Policies and Procedures
- Change Management
- Security Architecture
- Remote Access
- Vulnerability and Risk Assessments
- Incident Response
- Configuration & Patch Management
- Monitoring
No comments:
Post a Comment