Hardening Your SCADA System in the Wake of Volt Typhoon

Understanding how to defend against pivot attacks and lateral movement by adversaries is an instrumental aspect of a SCADA system architecture and security program.

This presentation will provide an overview of the  

recently declassified persistent threat referred to as Volt Typhoon and illustrate how to defend against it with a security methodology based on protection with distributed Electronic Security Perimeters (ESP). Attack methods will be explained as well as the principles of  defensible design that can defend against them. The hardening process will be presented within an  overall Risk-to-Resiliency framework.

Related topics will include an exploration of the ISA62443 assessment methodology and how it can be employed in conjunction with the ESP protection model.