Digital Security: Audit of security of the industrial systems (APCS, SCADA)

Today for automation of production processes automated control systems are usually used (an APCS, SCADA, Smart Grid). At the same time the similar systems are vulnerable, as well as any other; they can also become the purpose for malefactors, but risks at the same time, are much higher, up to violation of continuity of production process and technology accidents. For risk minimization in the industrial Digital Security systems offers new service in audit of security of the industrial systems.

The technique of audit developed by Digital Security includes the complex multilevel analysis of security of the industrial systems. Audit is booked by specialists manually and if necessary using the automated work benches taking into account features of each separate system. In a work progress detailed recommendations about elimination revealed in the tested system of vulnerabilities are developed.

Medvedovsky Ilya, director of Digital Security: "Our company and the research center DSecRG always specialized in search and the analysis of vulnerabilities in applications, critical for business: ERP systems, bank clients, payment applications, databases. The output to the market of service in audit of security of each application class at us is usually preceded by the large-scale and rather long researches conducted by our research center DSecRG. Respectively, the last year we actively were engaged in the industrial systems both within research activity of DSecRG, and within audits of objects of our customers. Epidemic of Stuxnet and the requirement of our regular customers of steel for us the decisive factor which literally forced us to select in the shortest possible time security audit of an APCS and SCADA of systems in the separate direction within our department of audit of security and to offer this service to the market. We understand that owing to inertness of the market today very few people think of security of the technology systems, and we are one of pioneers in this area in Russia and the CIS countries. The similar situation a few years ago was also in security audit area bank clients and ERP systems where today our company takes the leading positions and where it does not make sense to someone to explain vital need of carrying out regular audit any more. We believe that in the next several years the similar situation waits and for the direction connected with audit of security of the technology systems. This direction in our company was headed by Volobuyev Pavel who has the wide experience in the field of security of an APCS got by it during the work with the companies from Fortune 500".