With cyber incidents and reported vulnerabilities on the rise, industrial cybersecurity leaders must deploy proactive industrial endpoint detection and response (EDR) across the entire process control network – including the proprietary industrial control systems and smart field instruments. Failure to reduce industrial endpoint attack surfaces (e.g. insecure configurations, missing patches, vulnerabilities) increases the risk from malicious changes or unintended misconfigurations.

This paper will examine how EDR should extend to proprietary endpoints, what security controls have the greatest effect on reducing risk for these cyber assets, and what best practices apply.

Capture (2)