Industrial Control Systems

Industrial control systems are at the heart of many businesses. Privileged Access Management is a critical security capability to prevent attacks

Protecting Industrial Control Systems

Industrial Control Systems (ICS) are typified by the use of embedded Linux, SSH/Telnet command lines and web only interfaces. ICSs have become increasingly exposed to a range of cybersecurity and safety threats.

Osirium and Industrial Control Systems

Modern industrial control systems (ICSs) and critical national infrastructure (CNI) often involve a large scale deployment of IoT devices. The movement away from more isolated systems using specialist protocols has streamlined the support of production processes with the ability to address devices through network interfaces, as well as use information systems to automate different aspects of production and allow for remote access operations. However, these developments have resulted in the rise of a range of cybersecurity and safety concerns for ICSs.

ICSs are typified by the use of embedded Linux, SSH/Telnet command lines and web-only interfaces. Osirium PAM can drive multiple networks and therefore act as an application-to-application proxy, providing a virtual air gap between operational and control system networks.

Attackers have realised the potential gains of attacking ICSs systems. The SolarWinds ransomware attack targeted the supplier of software built into a wide range of network-enabled devices to maximise its impact.

Osirium’s PAM offers solutions to largely negate both internal and external cybersecurity threats to ICSs. Many internal incidents are down to human negligence, PAM avoids this issue through the use of tasks. Customers can write tasks that carry out common operations used on a device that can then be activated by users who have the appropriate access level, significantly reducing the number of users who need direct access to the devices, alternatively, these tasks can be put into schedules. The external threat is dealt with by a combination of high entropy passwords and separating users from those passwords so that end-users will have no interaction with the password used to access a device. These passwords can then be rotated in accordance with the customer’s company policy.

Osirium PAM can provide secure privileged access management for any kind of device, including those used in industrial control systems. PAM connects to devices using Device Templates, meaning any device that has a command line (SSH/Telnet), an API, a database or a web interface can be managed through PAM. Osirium provides a wide range of templates as part of a regularly updated template bundle, see the ‘plays well with’ page for information about devices included in this bundle. Outside of the templates in the template bundle customers can create their own using Osirium’s template guide, or they can have them developed at Osirium by getting in touch with the Professional Services department.

Want to know more?

If you have any questions or want to speak to one of our representatives, please complete this form and we'll be in touch.

+44 (0) 118 324 2444
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Our products

Osirium PAM Logo

Privileged Access Management (PAM)

  • Protect valuable admin credentials used to manage control systems
  • Real-time monitoring and recording of privileged access sessions
  • Securely manage vendor access to devices and services
Find out more
Osirium PPA Logo


  • Automate common management tasks to take protection to a higher level
  • Enforce standard and processes
  • End-to-end audit trail of changes across multiple devices
Find out more
Osirium PEM Logo

Privileged Endpoint Management (PEM)

  • Remove local admin rights from the workstations used to manage devices
  • Only allow approved applications to run with elevated privileges
  • Avoid increasing Help Desk calls when remove local admin rights
Find out more

Related Videos

All videos

Related Blog Articles

All blog articles
No items found.