Secure Your Digital World Today
Expert security services for your peace of mind.
Secure Your Digital World Today
Expert security services for your peace of mind.
Overview - InfoSec Doves LLC
Our Mission
At InfoSec Doves LLC, our mission is to help critical infrastructure sectors improve their cybersecurity posture, by using right-sized cutting-edge security solutions based on proven industry standards and cybersecurity best practices. We strive to ensure that your sensitive information remains safe from cyber threats and vulnerabilities.
Professional Cybersecurity & Network Services
Cybersecurity Consulting Services
OT Cyber Risk Managment
- We help organizations manage risks by using a well-defined security strategy that focuses on the unique aspects of Industrial Control Systems (ICS) and Operational Technology (OT) environments.
- We also provide virtual Chief Information Security Officer (vCISO) services to help organizations build or improve cybersecurity programs, particularly if an organization does not have a CISO who understands the nuances of balancing a plant's operational and business needs with ICS safety and cyber risks.
Cybersecurity Governance
A cybersecurity expert will collaborate with your IT, OT, and compliance personnel as necessary to develop OT Cybersecurity governance documentation (e.g., security policies, plans, and procedures) based on customer requirements, cyber regulations, and industry best practices.
Audits, Assessments, and Performance Baselines
The security posture of organizations is evaluated to determine if controls are in place to effectively mitigate risk and comply with cybersecurity regulations, or to align with cyber standards, using methods such as:
- Cybersecurity Audits, Pre-audits (e.g., CMMC), and Vulnerability Assessments
- Regulatory-based Risk Assessments and Audits (e.g., AWIA RRA, FERC, NERC-CIP, etc.)
- Standards-based Assessments (e.g., NIST 800-82, NISTIR 8183/CSF, IEC-62443)
- OT Network and Performance Baseline Assessments
Security Roadmap, Remediation Plan, and Mitigations
A security roadmap or remediation plan can be created to provide your organization a tailored path to mitigate security risks, based on risk tolerance and threat landscape. Considerations include, but not limited to:
- Phased Approach - Identify low-hanging fruits that can be addressed right away, without any capital investments.
- Risk Priorities - Mitigations will be based on risk severity and potential to adversely impact your organization.
- Security recommendations will be provided accordingly.
Network Security Designs and Implementations
Multi-tiered network architectures are designed and implemented using security zones and conduits. The design principles are based on the abstract Purdue Model and other proven OT Cybersecurity standards. To facilitate IT-OT convergence, network and zone segmentation typically includes the following levels:
- Level 4 - Enterprise IT environment
- Level 3.5 - Industrial De-militarized Zone (IDMZ)
- Level 3- Operations Management Zone
- Level 2.5 - Control Zone DMZ
- Level 0-2 - Control Zone
This website uses cookies.
We use cookies to analyze website traffic and optimize your website experience. By accepting our use of cookies, your data will be aggregated with all other user data.