According to a critical infrastructure cyberattack report, the energy sector is the primary focus of threat actors, with a staggering 39% of attacks — more than three times higher than the next most frequently targeted sectors, critical manufacturing (11%) and transportation (10%).
Securing Data and Device Transfer
EnergyCo is responsible for generating and distributing power and fossil fuel products nationwide. Their operations depend on constant data and device transfers, often facilitated by employees and contractors. Their air-gapped systems are continually modified with system updates, maintenance, and upgrades using data downloaded from employee’s and contractor’s portable devices, including CDs, USB flash drives, laptops, external hard drives, memory cards, PDAs, and other removable media.
To mitigate the risk of malware infiltrating EnergyCo's systems through these devices, the company embraced OPSWAT's zero-trust philosophy, which enables strict control over devices, data, and industrial control systems (ICS). This strategic approach not only prepared them to meet the continuously evolving NERC CIP requirements, especially concerning Transient Cyber Assets (TCAs), Removable Media (RM), and reliability standards but also positioned EnergyCo to proactively address emerging legislative developments like the Bulk Power Executive Order (#13929).
OPSWAT's Solution: MetaDefender Kiosk and MetaDefender Managed File Transfer
OPSWAT, known for safeguarding 98% of America's nuclear facilities, emerged as EnergyCo's security partner. This partnership came on the recommendation of a nuclear facility with an impeccable OPSWAT record. EnergyCo sought to replicate the high level of security enjoyed by their nuclear counterpart, leading to the deployment of OPSWAT's Cross-Domain solution, encompassing MetaDefender Kiosks and MetaDefender Managed File Transfer.
MetaDefender Kiosks, strategically positioned at guarded entry points across ten locations, facilitate controlled access to EnergyCo's facilities.
Digital Perimeter Control
Securely manage file and device transfers, even across varying security levels, systems, and physical transfer points.
Enforced Secure Data Transfer Processes
Stringent enforcement of secure file transfer procedures, continuous malware scans, and the addition of digital signatures to ensure files remain untainted during transit or at rest.
Breach Prevention
Actively monitor and control sensitive data at every transfer point throughout EnergyCo's network.
EnergyCo integrated MetaDefender Managed File Transfer to bolster the security and efficient retrieval of files within the organization. EnergyCo has enhanced file security and retrieval efficiency through the integration of MetaDefender Managed File Transfer. This solution adeptly combats zero-day and unknown threats, incorporating essential MFT features and cutting-edge OPSWAT prevention technologies. It ensures the dependable, managed, and secure transfer of files across low to high-security networks.
Native MFT Capabilities
MetaDefender Managed File Transfer enables users to transfer large files automatically, implement data-at-rest encryption, provide role based access, and ensure regulatory compliance and audit trails.
Prevent from Unknown Zero-day Exploits
Deep CDR disarms active objects and unknown exploits in over 150 file types delivering safe and usable files.
Prevents Malware Outbreaks
Recurring file analysis by Multiscanning, to alert of malware outbreaks.
Powerful Zero-day Malware Detection
Multiscanning, with 30+ industry-leading antimalware engines, combined with heuristics and AI/ML, ensures improved detection of malware.
Prevents Installation of Vulnerable Applications
File-based vulnerability assessment detects and correlates executable files with 3M+ hashes of vulnerabilities from 2.5K vendors.
Helps to Comply With Privacy Regulations
Proactive DLP detects, redacts, or blocks sensitive data in over 70 different file types.
Advance the Detection of Unknown Malware
Adaptive sandbox detects malicious behavior through rapid and in-depth file analysis, uncovering detection evasion and unknown threats.
In their pursuit of defense-in-depth cybersecurity, EnergyCo also turned to the OPSWAT Academy Critical Infrastructure Protection (CIP) Certification Program. This initiative empowered their IT/OT staff to be well-versed in best practices, ensuring the efficient use of OPSWAT solutions for maximum protection against malicious threats.
Controlling the Risk: A Unified and Consistent Security Process
EnergyCo's proactive cybersecurity approach sets a new standard for the industry. As the energy sector continues to evolve, organizations like EnergyCo must prioritize security to protect their operations and adapt to the changing regulatory landscape. Together, OPSWAT's MetaDefender Kiosk and MetaDefender Managed File Transfer showcase how cutting-edge technology can fortify critical infrastructure and secure it against emerging threats.
To find out more on how OPSWAT's MetaDefender technology can benefit your critical infrastructure, reach out to an OPSWAT expert today.
