By Bryan Barnett, product manager, Rockwell Automation
An open and unsegmented network is a gift to cyber attackers.
Once an attacker finds and exploits the most vulnerable point of entry, it could turn into a potential "kid in a candy shop" scenario. They may be able to pivot to more easily access a larger part of the network and potentially anything connected to it — from product designs or recipes, to machine controls, to company finances.
And it’s not only external threats that pose a danger on an unsegmented network. Internal threats, whether it’s a disgruntled employee or human error like an incorrect system change, also can wreak havoc when there are no network boundaries or access limitations.
This is why network segmentation should be part of every company’s industrial security strategy.
Network segmentation separates your network into multiple smaller networks and allows you to establish zones of trust. This can help limit the access of outside security threats and contain any damage they cause.
It also can help give employees and business partners access to only the data, assets or applications that they need.