Incident Response (IR) teams tasked with preparing for and responding to incidents in industrial environments face a unique set of challenges associated with operational technology (OT). Some traditional IT computer incident response principles and actions can be applied in industrial environments with some careful adjustments, while other actions may be ineffective, inefficient, or even dangerous in OT environments. That is why implementing an ICS-specific response plan is a critical step for incident response preparedness in OT environments.
This whitepaper provides insight into how to do effective incident response for industrial control systems (ICS) that is based on years of collective experience supporting OT defenders. You’ll learn:
- How OT incident response compares to IT incident response
- What phases of incident response are different in industrial environments
- How to prepare for effective OT incident response
- What tools are available to enable OT incident response planning and activation
