TheWaterboy
Lifetime Supporting Member + Moderator
Though I am resistant, I am getting pressure to install some sort of vulnerability monitoring on the PLC network so that reports can be generated to make other feel better about it. I have the IT side well covered with proper AV and routine automated assessment for patches etc. But for the OT side which always contains old stuff that is sensitive to standard IT kinds of interrogation (I'm talking to you Altivar) there are limited options.
I recently got a quote for a hardware/software combo that gets its info passively using a mirrored switch port to a dedicated device that listens in on all conversations. It seemed like a good idea till I got the quote which, like everything that priced based on level of fear, was an order of magnitude more than is reasonable.
Is anyone using such a thing that they can recommend?
I recently got a quote for a hardware/software combo that gets its info passively using a mirrored switch port to a dedicated device that listens in on all conversations. It seemed like a good idea till I got the quote which, like everything that priced based on level of fear, was an order of magnitude more than is reasonable.
Is anyone using such a thing that they can recommend?