Industrial operations are facing heightened cybersecurity risks from organized crime groups and nation-state-backed attackers, who target critical infrastructure with sophisticated techniques.

Examples of major OT cyber attacks

Petrochemical

Petrochemical

  • Manipulation of safety instrumented system
  • False positive trip shut down operations, false negative could have led to disaster

Attack vector: SIS manipulation

Event Monitoring: Detecting lateral movement and changes in safety parameters

aluminium

Aluminum

  • Enterprise-wide outbreak of ransomware
  • • Production downtime, reverting to manual procedures & workarounds

Attack vector: E-mail compromise

Event Monitoring: Lateral movement, unusual binaries

logistics

Logistics

  • Enterprise-wide outbreak of ransomware
  • Operations downtime, reverting to manual procedures & work

Attack vector: E-mail compromise

Event Monitoring: Lateral movement, unusual binaries

Today's industrial companies must navigate a range of challenges, including distributed systems, complex assets, insufficient security visibility, and a lack of in-house expertise. Failure to address these vulnerabilities can lead to significant consequences, such as production downtime, environmental damage, public safety risks, and a loss of trust from customers and stakeholders.

While foundational security controls like firewalls and antivirus software are essential, they often fall short of detecting advanced threats. This is where advanced mechanisms like security event monitoring become crucial, providing the ability to detect and respond to threats that bypass basic defenses.
red-circle-with-icon

ABB Ability™ Cyber Security Event Monitoring

ABB Ability™ Cyber Security Event Monitoring detects and addresses cyber risks that foundational security measures don't address. It leverages ABB’s global network of industrial cyber security experts to monitor, detect, and respond to threats in real-time.

ABB Ability™ Cyber Security Event Monitoring is Engineered to Outrun. It helps industrial companies run at high performance and become more productive, efficient and sustainable so they can outperform.

 

Non-intrusive Event Collection

  • Collect, aggregate and process event data from over 60 industrial device types— without risk to production.
  • Eliminates the need for your operators to manually retrieve, parse and investigate logs, allowing security teams to focus on investigation and response procedures.

 

Purpose-built detection rules

  • The provided detection rules are exclusively developed by ABB for industrial systems to improve threat detection while generating an exceptionally low level of false alerts.

Integration with your SOC

  • Start monitoring your systems quickly by integrating ABB event monitoring with your Security Operations Center (SOC)
features-benefits-graphic
 

Flexible SIEM deployment

  • Works with new or existing instances of IBM Qradar SIEM or Splunk Enterprise Security deployed either on-premises or in the cloud.
  • The seamless integration between event collection, detection rules and SIEM platform simplifies deployment, workflow, and maintenance.

 

Multi-system support

  • Monitor multiple DCS systems within the same SIEM instance without you worrying about duplicated IP addresses or other network-related complications unique to industrial systems.

 

Compliance Assistance

  • Your security teams quickly meet internal and external compliance requirements by leveraging pre-designed reports, saving time and effort, and reducing the risk of failing to meet regulations.

Industrial Cyber Experts

  • Expand your focus by leveraging ABB’s dedicated industrial cyber experts to monitor your systems, part or full time, through a Service Contract.
  • Once a threat has been identified, you receive notice about the threat together with the recommended mitigation steps tailored to your process.

Service levels tailored to your needs

1. IBM QRadar SIEM or Splunk Enterprise Security 2. Professional installation included 3. Available in selected countries only

  1. IBM QRadar SIEM or Splunk Enterprise Security
  2. Professional installation included
  3. Available in selected countries only

Success story

success-story

Why ABB

Industrial firms need a cyber security partner with deep expertise in both control systems and cyber security to protect their operations from increasingly sophisticated threats. ABB brings unparalleled global industrial cyber security expertise, with decades of experience in control systems and a proven track record in safeguarding complex industrial environments. ABB’s cyber security solutions seamlessly integrate with our control systems, ensuring robust protection without disrupting operations.

With years of investment in R&D, ABB delivers cutting-edge security solutions that incorporate OT-specific detection rules tailored to the unique needs of industrial environments. Our scalable and customizable approach allows ABB to design a cyber security strategy that fits your operational needs, providing comprehensive threat monitoring to keep your systems secure and running efficiently.

cyber-security-circle-graphic
 
  • Contact us

    Submit your inquiry and we will contact you

    Contact us
Select region / language