Security of SCADA and industrial IT/OT

Audit, refactoring, development and implementation of SCADA information security systems and industrial control systems

We perform security assessments, tests and audits of SCADA and other industrial systems. Based on audit recommendations, we implement physical and logical security and safety controls, and ensure the continuity of technological processes.


Industrial IT and OT security services

serviceIndustrial IT/OT infrastructure and SCADA security audit

We identify security IT and OT threats and vulnerabilities. We evaluate physical and logical security, access control, passwords, source code, encryption, video surveillance, intrusion prevention systems, etc. Manual analysis of SCADA systems. We develop recommendations for security improvement. Learn more.
serviceImplementation and improvement of the industrial IT/OT security

We provide assessment recommendations and security audits for SCADA and other industrial systems as separate projects. We provide seamless refactoring, develop and safely implement physical and logical security controls into production environments. Complete reporting on implementation.
serviceDisaster Recovery and Business Continuity Management

We implement comprehensive continuity programmes including quality assurance systems, backup and recovery measures, training, testing, advanced change management, incident monitoring and incident response.

Standards, frameworks and methodologies

  1. ISO/IEC 27001, VDA ISA, ENX TISAX®
  2. ISA99, ISA/IEC 62443
  3. North American Electric Reliability Corporation (NERC) Reliability and Security Guidelines
  4. NIST SP 800-82 Guide to Industrial Control Systems (ICS) Security, NIST Framework for Improving Critical Infrastructure Cybersecurity
  5. DHS guidelines for critical infrastructure protection and the Critical Infrastructure Protection framework

Vendors and special tools

  • We work with Siemens PLCs using Step7 and TIA Portal
  • with Schneider Electric equipment using Concept, UnityPro, and SoMachine
  • with Mitsubishi using GX Works
  • with Omron using CXOne
  • with Carel using 1tool
  • with Wago using CoDeSys

Service summary

⏳ Duration of project or delivery 

Several months to several years, depending on the scope and complexity of the project, the level of security required, etc.

🎁 Can it be free or have a testing period?

Use our specialised online calculator https://service.h-x.technology/ICS-calc and get a free consultation. 

💼 What type of business needs it?

Energy, utilities, transportation, manufacturing, healthcare, and any business that relies on industrial control systems.

💡 When is this service needed?

When you become aware of vulnerabilities in your systems, face new security requirements, or the potential consequences become unbearable.

📈 Your profit

Prevented or reduced financial impact of downtime and operational disruptions, or other security incidents.

⚙️ Our methods and tools

Network segmentation, access control, vulnerability assessment and management, IDS, IPS, SIEM, training programs, etc.

📑 Deliverables

Security risk assessment report, system hardening recommendations, policies, procedures, implementation plans, incident response plan, training materials, etc.

Check out our additional services and business cases. Send the form below to request SCADA or industrial IT/OT security services. Get a free consultation.

REQUEST A QUOTE

Business cases of projects we completed

Audit of smart contracts and blockchain
Business Automation
Information security incident response and investigation
Managed security and compliance (ISO 27001, etc.)
Security analysis of software source code
Security assessment: audits and penetration tests
Security Operations Center cases