TALKING

From the pillars of safeguarding digital assets against cyberthreats to the best approach to critical infrastructure , Daniele Mancini , EMEA Field CISO at Fortinet , outlines the challenges faced by organisations and how Fortinet is empowering its clients to manage unforeseen risks , be compliant and implement a security-oriented culture .

What are the pivotal industries classified as critical infrastructure ?

Critical infrastructure industries comprise an extensive array of sectors that are indispensable for the operation and safety of a country . These sectors are crucial in ensuring public safety , economic stability

The energy sector has an important role because it serves as an ‘ enabling function ’ for all other critical infrastructure sectors . The energy sector consists of a network of assets and resources , including electricity , natural gas and oil . about by Digital Transformation , these obstacles are constantly evolving .

Secondly , the scope of cyberthreats targeting critical infrastructure has grown beyond individual hackers or small groups . State-sponsored hackers , criminal groups and hacktivist groups that utilise advanced methods and resources are formidable adversaries .

The constantly evolving threat landscapes poses additional challenges to critical infrastructures that store exceedingly sensitive data and are oftentimes stuck on outdated operating systems .

Critical infrastructures are exposed to a diverse range of cybersecurity risks and vulnerabilities , which have the potential to cause significant disruptions to the operation , availability and integrity of vital services and systems . As such , safeguarding these sectors is of utmost importance .

What are the primary challenges faced by organisations within critical infrastructure when safeguarding their assets against cyberthreats and how are these challenges evolving ?

Firstly , as a result of the interconnectedness of modern infrastructure , the growing sophistication of threat actors and the expansion of the attack surface brought

As these infrastructures rapidly migrate to the cloud and implement mobile and Internet of Things ( IoT ) technologies , the attack surface expands . A combination of IoT devices and outdated technology lacking strong security make critical infrastructure systems attractive targets .

Due to this vulnerability , we have noticed a surge in advanced persistent threats ( APTs ) within critical infrastructure systems in recent years . APTs are covert , persistent attacks that are designed to compromise critical infrastructure systems and gain control . By compromising operational technology , exfiltrating confidential data , or disrupting vital services , these attacks pose a major threat to critical infrastructure security .

34 INTELLIGENTCIO EUROPE www . intelligentcio . com