To find out how organizations are dealing with this risk, SANS has just completed an in-depth survey to determine their risk awareness and security practices. Respondents indicate a variety of concerns, chief among them being malware such as Stuxnet and its related strains, insider threat, and hacktivism/sponsored attacks.
The survey also shows that operators are taking steps toward broader protection capabilities: More than 50% have patching and update practices. Those that use protections are doing so through access controls, monitoring and log analysis of their network devices, firewalls, and computer assets running the control systems. Unfortunately, at this time they seem unable to monitor the PLCs, terminal units and connections to field equipment due to lack of native security in the control systems themselves.
2015 Energy Industry Cybersecurity Report
Strategic Cybersecurity: A Toolkit for Prioritizing, Coordinating, and Transforming Your Cybersecurity Program