Wednesday, 12 October 2011 09:22 18251 Commenthttp%3A%2F%2Fblog.q1labs.com%2F2011%2F10%2F12%2Fcritical-infrastructure-security-its-about-more-than-just-stuxnet%2FCritical+Infrastructure+Security%3A+It%27s+About+More+Than+Just+Stuxnet.2011-10-12+14%3A22%3A07Heather+Howlandhttp%3A%2F%2Fblog.q1labs.com%2F%3Fp%3D1825

Posted by Heather Howland in Critical Infrastructure, Security Intelligence

Last week we held a webcast with our partner Accuvant and talked a bit about the state of critical infrastructure security and how security intelligence can help build a comprehensive security program – specifically in the energy and utilities industry.

Chris Poulin, Q1 Labs’ CSO, kicked it off with a creative view of the smart grid, electricity transmission and distribution systems to set the tone with a few interesting takeaways. While smart meters may not necessarily be prevalent yet, those that are deployed need to be logged and properly monitored. The advancements related to smart grid highlight the vulnerabilities and security concerns looming over our entire critical infrastructure, as the energy supply chain becomes more exposed and interconnected.

David Swift from Accuvant brought up some of the top concerns IT security professionals in the energy and utilities sector have when approaching APTs, zero day attacks, and overall compliance mandates. While sometimes we get caught up in the complexities of discovering attacks, David reinforced that for starters we need to keep a close eye on logs. Track firewall denys, IDS/IPS events, Geo IP data, etc. Patterns discovered from AV alerts or repeated, large, IM file downloads can be the key to discovering slow moving, but significant threats to an enterprise.

If you missed the live webcast, watch the highlight clip above and download the full on-demand webcast. Attending RSA Europe? Chris will be presenting live – When Refrigerators Attack! Securing the Critical Infrastructure – on 10/12 at 4:40 pm in the Windsor Suite (East Wing).