With cyber incidents and reported vulnerabilities on the rise, industrial cybersecurity leaders must deploy proactive industrial endpoint detection and response (EDR) across the entire process control network. Failure to reduce industrial endpoint attack surfaces (e.g. insecure configurations, missing patches, vulnerabilities) increases the risk of malicious changes or unintended misconfigurations.
This paper will examine how EDR should extend to proprietary endpoints, what security controls have the greatest effect on reducing risk for these cyber assets, and what best practices apply.