EVRAZ uses solutions of Cisco for data protection

On February 2, 2018 the EVRAZ company announced implementation of a pilot project on segmentation of industrial and corporate networks and upgrade of security perimeter based on solutions of Cisco. In 2017-2018 the project on scaling of the tested solution on all enterprises of the company is begun.

General digitalization and evolution of cyberthreats in the field of industrial networks and management systems explain the increased need for effective remedies of protection of information resources that special is relevant for the mining and metallurgical industry where pay to questions cybersecurity special attention. It is more and more devices and applications get access to network and, as a result, create more vectors for the attacks. At the same time operational data on parameters of the current technology processes for acceptance of the weighed management decisions are required for business.

The "Evraz of NTMK" entering into EVRAZ Group. Photo:pravdaurfo.ru

To reduce risk of penetration of malefactors into IT infrastructure, to EVRAZ companies it was decided to carry out segmentation of industrial and corporate networks. Separation of users and resources into the isolated groups allows to control data exchange between these groups or to block it if it is required by security policy. Besides, the crucial systems can be isolated from other sections of network. Tracing information flows and actions of the users having access to resources of industrial network (actuators, controllers, stations of operators of an APCS, etc.) it is possible to raise the security level technology and business processes.

The basis of the project was formed by architecture of a uniform industrial Ethernet network. Joint development of Cisco and Rockwell Automation companies – CPwE (Converged Plantwide Ethernet). Using CPwE not only the reliable and failsafe, but also safe network was constructed. It considers specifics of operation of the equipment and conforms to requirements of the Russian legislation in the field of information security support of an APCS.

"Cyber attacks to crucial production facilities can cause serious consequences. The solutions Cisco help to counteract tools of malefactors. Feature of the project – in its complexity as technologies serve as for protection of corporate information, and data of industrial network, unauthorized access to which can turn back failure of contractual commitments on production and delivery of products, harming of life and to health of employees of the company or environmental disaster". Dmitry Koronov, business development manager of Cisco

The data security is ensured by the system of predotvrashcheniye of invasions Cisco FirePOWER (NGIPS). Using the intelligent automation equipment, the multifunction protective equipment accumulates information on everything that happens in network. In real time Cisco FirePOWER displays data on how technology processes in what volume products what versions of OS, servers and programs work what client applications are started are made are organized that is done by users, etc. of Cisco FirePOWER will recognize a large number of industrial flows. It allows to detect and block attacks on industrial equipment and also to differentiate data streams between corporate and industrial networks, thereby implementing segmentation of network.

"Digital transformation creates the need for integration of systems and flexible work with Big Data that extends also to production processes. There is a need of protection of the critical systems, and this project allowed to increase the cybersecurity level of the company significantly. In target architecture we managed to consider specifics of production and to sustain reasonable balance between availability and data security". Artem Natrusov, vice president of EVRAZ company for IT

Deployment of systems was performed by technical specialists of Evraztekhnika company. The help in development and project implementation rendered "Ural Center of Security Systems" and Cisco companies. In process of growth of requirements network infrastructure can be scaled.