TP Research Industrial Secure Remote Access Survey

https://storage.tally.so/97e3c2ee-e7ea-4d10-83cd-ffb133a9fc7a/center-720H90_TPresearch_baner-for-survey_20220921.png

1. This is an anonymous survey. Your company or personal details will NOT be included in any public results. However, if you would like to participate in the drawing for an awesome library of cybersecurity books, we will need some information in order to enter you into the draw and send you your prize, as well as send you a copy of the final report.

1. This is an anonymous survey. Your company or personal details will NOT be included in any public results. However, if you would like to participate in the drawing for an awesome library of cybersecurity books, we will need some information in order to enter you into the draw and send you your prize, as well as send you a copy of the final report.

I would love a copy of the report and the chance at winning the library!

Just the survey, please

2. Which of the following best described the principal industry of your organization?

3. What is your primary region?

4. What size is the workforce at your organization, including employees, contractors, and consultants?

5. What is your current role in the organization?

6. On average, how many users connect to your OT/ICS environment per day?

7. What are the top 3 business reasons for connecting your OT/ICS environment?

Cost reduction

Increase productivity - ease and speed for access

Need/want to collect data from OT/ICS devices

Allowing third parties to access OT/ICS devices

Real-time "over the shoulder" training

Other

8. How concerned are you about remote access threats to your OT/ICS systems?

9. How would you rate your organization's current methods and approach to securing any connection into you OT/ICS environment?

10. What do you consider the biggest risk from remote connections into your OT/ICS environment? (select all that apply)

Advanced Persistent Threats (APTs)

Inadequate change management

Misconfiguration / unintentional shutdown

Ransomware/Malware proliferation

Threat to operational safety

Unauthorized data exfiltration

Other

11. Which industrial Remote Access exposures are you most concerned about? (select all that apply)

Insufficient user education and awareness

Lack of visibility and passive network monitoring of remote user activity

Lack of SRA platform reliability

Weak access control, resulting in credentials/permissions abuse

Unauthorized access to systems or data

Monitoring and manipulation of data beyond authorized task

Outdated operating systems

Weak policies and enforcement

Other

12. What tactics and solutions have you implemented to lower the risk of external users connecting to your OT/ICS environment? (select all that apply)

Multifactor Authentication (MFA)

Network Segmentation (Firewalls,VLANs, other)

Airgapping OT/ICS devices

Device Posturing/Health Checks

Identity & Access Management

EDR/EPP/XDR

Defense in depth

Alignment with to Zero Trust principles

Other

13. What are the primary objectives you are looking to achieve from securing the access to your OT/ICS environment? (Select all that apply)

Compliance with industry standards

Lowered risk of impact to operational safety

Prevent cyber incident/ransomware

Lower cost of maintenance and support

Improved end user experience

Other

14. Which Industrial Cybersecurity standard(s) or framework(s) has your organization adopted? (select all that apply)

None

Don’t know

NIST SP 800-82

NIST SP 800-53

NERC CIP

IEC 62443

CIS CONTROLS

MITRE ATT&CK FOR ICS

Other