SCADA/PCN Assessment

Service Description

The goal of a SCADA/PCN assessment is to assess the opportunity for an attacker to penetrate the SCADA/PCN network both through external, interconnected networks and applications as well as internally from within the environment.

Consultants utilise active exploitation techniques to identify and validate all potential vulnerabilities across all systems within scope that may result from poor or improper system configuration, known and / or unknown hardware or software flaws, and operational weaknesses in process or technical countermeasures.

Experienced consultants are able to provide the client with an evaluation of the security of their SCADA/PCN network and the supporting or interconnected infrastructure against best practice criteria, industry standards and regulatory requirements.

Consultants follow a bespoke methodology when performing assessments.  

The methodology utilises common and consistent methods that build upon recognised industry standards for security assessments, such as CESG CHECK, the Open Source Security Testing Methodology Manual (OSSTMM), the Open Web Application Security Project (OWASP) and the Council of Registered Ethical Security Testers (CREST). The approach also takes into account specific vendor and industry information and requirements such as NERC CIP.

To obtain a quote or arrange to speak with a security testing consultant about your specific requirement e-mail info@activityim.com