Wednesday, 23 September 2020 08:00

New OT cyber security specialist to protect Australian business interests

Laith Shahin, SEO, Laith Shahin, SEO,

SECURITY SOLUTION ANNOUNCEMENT: The founder of a new Australian-based OT cyber security consultancy has warned that security managers need to do more to protect against attacks on the nation’s critical infrastructure and industrial control systems.

Announcing the launch of OT-specialist firm Secolve, founder and CEO Laith Shahin said Australian businesses were not immune to the growing number of OT cyber attacks globally, most recently a Snake ransomware attack on a US Honda manufacturing plant and series of attacks on US power grids.

“Attacks on ICS are becoming increasingly organised, with nation states the biggest threat actors in the space. When we speak about ICS attacks, we are likely to be dealing with large enterprises with possibly millions of dollars in investments,” Shahin said.

Secolve will work with organisations to bridge the gap between security and OT, primarily focusing on industrial sectors such as mining, energy, manufacturing and utilities.

Shahin, deputy chair of the Australian Information Security Association Sydney branch, described Secolve as the next generation of cyber security, helping businesses to transition from legacy ICS systems to mature OT environments capable of withstanding increasingly sophisticated attacks.

“Australia’s OT security environment is relatively immature, with organisations often using propriety operating systems that haven’t been subjected to security hardening or testing,” he said.

Many organisations also avoided assessing the security of their industrial control systems because of the impact it could have on the business in terms of downtime or unavailability of critical systems.

“When it comes to OT, the priority is all about uptime and availability in comparison to the CIA triad that governs IT environments. But not adequately investing in security is a false economy and the consequences can be catastrophic, not just financially but also through potential loss of life, particularly in heavy industry sectors. In fact, a new Gartner report predicts the financial impact of cyber attacks resulting in fatalities will be more than US$50 billion by 2023,” Shahin said.

The convergence of IT and OT environments has seen an escalation of attacks, with attackers gaining access to OT systems through compromised IT networks.

“In many instances there is little alignment between IT and OT. Secolve’s goal is to step in and fill the gap by working closely with OT teams to understand the environment, and then collaborating closely with IT teams to increase the cyber security maturity around the OT setting,” Shahin said.

In an Australian-first, Secolve surveyed more than 2000 risk, compliance and security managers to measure awareness and preparedness for cyber attacks. The results highlighted a lack of understanding of OT systems, even among those working in related areas, with just 17 per cent of 737 respondents with OT, IT and risk responsibilities confident in their knowledge of OT operations.

The survey also found many businesses were not actively testing or upgrading their OT systems:

  • only one third of respondents with OT responsibilities said their business had implemented new OT technology in last two years;
  • just 31 per cent had used a third party to test their OT security; and
  • one in 10 businesses hadn’t undertaken any reviews or updates in the last two years.

Shahin said he was not surprised by the results.

“Working in the consulting cyber security space with some of Australia’s leading organisations across manufacturing, water and energy really highlighted to me a lack of OT awareness, and was the inspiration for creating a stand-alone OT specialist like Secolve,” he said.

Read 2155 times

Please join our community here and become a VIP.

Subscribe to ITWIRE UPDATE Newsletter here
JOIN our iTWireTV our YouTube Community here


The past year has seen a meteoric rise in ransomware incidents worldwide.

Over the past 12 months, SonicWall Capture Labs threat researchers have diligently tracked the meteoric rise in cyberattacks, as well as trends and activity across all threat vectors, including:

Encrypted threats
IoT malware
Zero-day attacks and more

These exclusive findings are now available via the 2022 SonicWall Cyber Threat Report, which ensures SMBs, government agencies, enterprises and other organizations have the actionable threat intelligence needed to combat the rising tide of cybercrime.

Click the button below to get the report.



It's all about Webinars.

Marketing budgets are now focused on Webinars combined with Lead Generation.

If you wish to promote a Webinar we recommend at least a 3 to 4 week campaign prior to your event.

The iTWire campaign will include extensive adverts on our News Site and prominent Newsletter promotion and Promotional News & Editorial. Plus a video interview of the key speaker on iTWire TV which will be used in Promotional Posts on the iTWire Home Page.

Now we are coming out of Lockdown iTWire will be focussed to assisting with your webinars and campaigns and assistance via part payments and extended terms, a Webinar Business Booster Pack and other supportive programs. We can also create your adverts and written content plus coordinate your video interview.

We look forward to discussing your campaign goals with you. Please click the button below.



Related items

Share News tips for the iTWire Journalists? Your tip will be anonymous