Clearly, there is a great deal of work to be done to ensure that industrial companies are best protected as possible against the increasing risk of cyber security breaches in their ICS environments. Industrial cyber incidents happen frequently – over half of the sample had experienced at least one incident in the last 12 months. But despite awareness of and claimed readiness for infractions, companies are often underestimating both the source and impact of such incidents. It’s essential that steps are taken to identify the risks to ICS environments, with the rigorous policies and procedures put in place to manage those risks so that the company is in the best possible position to secure its operational technology.