Mr. Mateo Martinez, the Industrial Cibersecurity Center Coordinator in Uruguay, ( CCI Coordinators Team), helps us to get in context of the state of the industrial cybersecurity in his country, and to do so, he shares with us his impressions.
He describes the level of sensitivity of industrial organizations in his country according to the following percentages:
He also affirms that the trend of recent years has been an exponentially grown.
Uruguay counts with local and national public bodies promoting an adequate legal framework, in order to ensure the progressive incorporation of industrial cybersecurity measures in national presence companies (mainly critical infrastructure). The main organizations are:
- Ministry of National Defense
- Ministry of Industry
Currently (first half 2016) there is no specific legislation governing industrial cybersecurity in organizations from Uruguay.
Analysing the most widely adopted industrial cybersecurity measures by Uruguayan organizations to protect industrial automation systems, Mateo Martinez highlights the application of:
- Industrial cybersecurity consulting / advisory
- Ethical hacking
- Implementation of safety management systems
- Internal security audits
- Development of continuity and / or contingency plans
- SIEM (Security information and event management)
- Log correlation
The CCI Coordinator in Uruguay characterizes the industrial cybersecurity situation in his country with the following SWOT analysis:
- Lack of specific industry cybersecurity legislation
- Lack of events and forums on industrial cybersecurity
- Lack of specific CERTs
- Awareness, especially regarding industrial critical infrastructures
- Shortage of local industrial cybersecurity professionals working for manufacturers
- Shortage of specific industrial cybersecurity risk management tools
- Increased of cibersecurity demand for Industry 4.0 and the Internet of things
- Advantage with the lessons learned from smart grid cibersecurity.
- Strategic position in the industrial cyber security sector