Diagnosis of the maturity of cybersecurity in the SCADA network of the client. It allows:
Develop a business case for security Define the scope of industrial cybersecurity Define policies and procedures Implement risk management Define the inventory of assets Develop a security plan Perform a vulnerability analysis Define mitigation controls
Technical features: Methodology of security assessment based on Frameworks such as NERC CIP, NIST 800-82, NIST 800-53, IEC 62443
"Inventory Survey Vulnerabilities reported in the NVD with respect to inventory Design recommendations based on NIST 800-82 (or at the customer's choice) SAL (Security Assurance Level) Generation Creation of questions based on the design, SAL and NIST 800-82 (or the one that the client wishes to use) to make a diagnosis of the level of maturity of the security."