- Project Name:
- OT Risk and Vulnerability Assessment
- Project Details:
- Country:
- Trinidad and Tobago
- Location in Country:
- Point Lisas Industrial Estate
- Start Date:
- 2022-10
- Duration:
- 6 Months
- Professional Resources:
- 6
Business Objectives 
Our Role 
Results - Identified worst credible scenario that would occur on each plant should there be a malware event and a ransomware event. Score carded the security postures of all facilities using foundational controls as per industry standards
- Provided detailed recommendations to close gaps based on vulnerabilities discovered
- A major energy company wanted their ammonia and methanol plant assets to be risk assessed against cyber incidents inclusive of ransomware on the DCS. The nine plants were spread across several acres of the industrial estate, and each was independently operated with its own control room. There were recently installed common pathways for a historian architecture that was connected to the corporate LAN.
- Using the first plant as a pilot during a turnaround, develop the [1] cyber risk ranking on the corporate risk matrix and [2] identify cybersecurity vulnerabilities with the corresponding gaps in their security countermeasures. Use of industry best practices were applied such as IEC 62443 and NIST 800-82.R2. A risk profile, security posture rating, recommendations to close gaps and an updated PCN architecture diagram was produced for each plant.