Cybersecurity for Critical Infrastructure

Sales

Frank Koren

Support

Garrett Luebker

Downloads

More

Cybersecurity for Critical Infrastructure

  • Assessment services
  • >
  • Assessment services
  • Design and build
  • Cybersecurity Operations Center (CSOC)
  • Life cycle management

Assessment services

The United States Nuclear Regulatory Commission (NRC) requires nuclear facilities meet a variety of mandates and regulations, including NEI 08-09 for cybersecurity. To help ensure the facility complies with industry requirements, we assist by conducting a baseline assessment of your current system to understand and address vulnerabilities. Our assessment services enables our customers to meet NRC or specific industry requirements by including compliance gap analysis, external penetration testing, physical security assessment, application security assessment and configuration security assessment.

Design and build

We develop a plan to deploy an optimal solution for each customer’s needs and budget. Plans include:

  • Commercial off the shelf (COTS) products integrated with our own intellectual property
  • Cybersecurity applied enterprise-wide or with a single plant-wide system
  • Log forwarding via diode or firewall
  • Network intrusion detection or passive vulnerability scanning
  • Alarm forwarding to a fleet-wide Security Information and Event Management (SIEM) service or service providers, such as our Cyber Security Operations Center (CSOC).

Cybersecurity Operations Center (CSOC)

The Collins Aerospace CSOC is enabled by diodes on site and connected by our privately-owned network with a secure VPN tunnel. It monitors all traffic on your network and is manned 24/7/365 by certified analysts. Our analysts perform the critical, but time-consuming tasks of log analysis and ongoing alert monitoring, enabling critical infrastructure operations to comply with requirements while getting the highest return on investment.

 

Download CSOC data sheet

Life cycle management

When done in-house, keeping a cybersecurity system up to date and performing optimally can quickly consume resources, time and budget. Your personnel will also need to develop an increasingly complex skill set to manage your system. To avoid this timely and expensive process, a life cycle management (LCM) solution can be the most efficient and reliable way to avoid disruptive events and costly fines.

Monitoring

We monitor vulnerability publications from vendors and independent sources and use tools to identify needed patches in all system components.

Patch validation

Software patches for ongoing vulnerability remediation are an important aspect of maintaining an integrated software-based system that complies with NEI 08-09 requirements. We evaluate and validate all patches on a recurring basis for applicability, usability and viability. Regression and soak testing help negate impact on system performance.

On-site support

To seamlessly implement all updates, one of our engineers works alongside site personnel. They perform system-wide vulnerability management, performance optimization, preventative maintenance and COTS software patches and updates.

Chat balloon - Click corresponding link to view contactsContacts

Sales

Frank Koren

Support

Garrett Luebker