OT Cybersecurity

OT (Operational Technology) networks are increasingly frequent targets of cyber attacks: unlike IT, an incident on an industrial network can halt production, damage machinery or endanger the physical safety of operators. Althera designs and implements cybersecurity architectures specific to ICS/SCADA environments, following the IEC 62443 standard and NIS2 requirements.

We address the entire attack surface: from physical OT network segmentation with dedicated VLANs and demarcation firewalls, to 802.1X authentication on every port of industrial switches to prevent unauthorised connections. We manage internal PKI infrastructures for issuing X.509 certificates to all field devices (PLCs, HMIs, gateways), enabling mutual TLS for OPC-UA and MQTT communication.

We install and configure IDS/IPS systems specialised for industrial traffic (Modbus, PROFINET, EtherNet/IP), capable of detecting protocol anomalies, unauthorised write attempts or network scans. Everything is integrated into a SIEM that correlates OT and IT events, providing complete visibility in a single console.