IT managers in datacenters seldom face the actual threat of a physical break-in. Due to diligent design, multi-layer controlled access, and 24x7 human presence, it’s just not a threat vector that causes concern.? Strong physical security, biometrics, constant surveillance, 24x7 staffing, all provide substantial barriers to physical intrusions.
Remote OT assets and facilities are often in isolated, minimally secured locations that have limited or no real-time surveillance capabilities.
In addition, remote OT assets are often serviced by “rolling a truck”, manned by 3rd party service providers, or by vendor personnel that have full physical access to networks and devices and may overtly or inadvertently through human error introduce malware.
For all these reasons, threats from a physical presence – in addition to the usual network or application level cyberthreats - are a realistic concern. In order to adequately address this, a security solution must have the capability to contain any breaches to the local OTR network and prevent further access and exploitation of other OTR sites or up-stream plant / control facilities.