SCADA and Critical Infrastructure Penetration Tests
Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) are systems controls for the Operational Technology aspect of industrial processes.
Many sectors use ICS and SCADA systems, the most common being the industrial and critical infrastructure sectors.
The special nature of ICS and SCADA networks requires a different approach to secure them.
Most critical networks are air-gapped networks, which shift the focus of a penetration test in new directions, such as social engineering or support VPN channel hijacking.
Critical networks are rarely patched, as a result of strict instructions from the manufacturer and challenges with the maintenance periods within those systems. This allows a penetration tester to launch attacks otherwise outdated, or to attack the ICS interfaces directly.
Cipher Security enjoys extensive experience conducting SCADA penetration tests, focusing especially on critical infrastructure networks.
We perform all penetration tests in compliance with comprehensive precautionary measures, ensuring minimal risk or exposure to the infrastructure under test.
Our SCADA Services