SANS ICS Security Summit 2023
ICS/OT Secure Remote Access
Speaker: Gus Serino, Principal Industrial Hunter, Dragos
While it’s preferable to prohibit remote access into an OT network, that’s often not the practical choice. This talk will dive a little deeper into some of the considerations around designing and implementing a secure remote access solution. I will present on the de facto remote access standard of a jump server in a DMZ network zone and 6 critical features that should be followed in that architecture. I will then cover the use of commercial tools for remote access and provide guidance on their selection and configuration enhance the security of that solution. I will discuss some guidance and best practices on jump server configuration. I will talk about where and how to implement security monitoring for remote access connections. In addition to that, I will cover various additional key aspects to secure remote access for ICS/OT environments. The content of this talk leverages insights from ICS/OT pentesters and what configurations make their jobs more challenging.
View upcoming Summits: http://www.sans.org/u/DuS
