A continuous OT cybersecurity risk analysis and Mitigation process
Hanssen, Geir Kjetil; Thieme, Christoph Alexander; Bjarkø, Andrea Vik; Lundteigen, Mary Ann; Bernsmed, Karin Elisabeth; Jaatun, Martin Gilje
Chapter
Published version
Permanent lenke
https://hdl.handle.net/11250/3103209Utgivelsesdato
2023Metadata
Vis full innførselSamlinger
Originalversjon
10.3850/978-981-18-8071-1_P413-cdSammendrag
Operational Technology (OT) systems are becoming increasingly software-driven and connected. This creates new digitalization opportunities but can also increase the risk of cyber security breaches than can have severe consequences. Through a close dialogue with Norwegian actors in the oil- and gas industry and insight into the IEC 62443 standard we propose a process model for continuous risk assessment and mitigation. This paper explains the phases and details of the model and discusses its limitations and further work. A continuous OT cybersecurity risk analysis and Mitigation process