Industrial control systems (ICS) have been a primary target for malicious actors for quite some time now. For security warriors in charge of protecting these critical systems, it would be a significant advantage to get into the mind of their attackers and understand the angles that they’re looking to take to compromise these systems—that’s where threat profiling comes in.
While not many security practitioners are leveraging this “dark art” primarily due to the homogenous environments they work in, it’s very different for those working in ICS, according to Sergio Caltagirone, vice president of threat intelligence at Dragos.
“You have these very heterogeneous environments,” he told InfoSec Insider during a video interview shot at the RSA Conference in San Francisco. “One threat profile is going to be radically different for one company versus another.”
In the full video interview below, InfoSec Insider caught up with Caltagirone, who shared how infosec pros in the ICS world can get started with threat profiling.