Wil Rockall, Director in KPMG’s cyber security team, comments on the news that electric grid and other critical infrastructure industries are vulnerable to hacking but complacent about cyber risks.
Rockall said: “Cyber threats around Industrial Control Systems (ICS) does pose a risk to many critical infrastructure companies however, while the possibility that we might see a cyber-induced Deep Water Horizon or an Exonn Valdise type disaster is there, the chances of a breach of this scale is still is low; the level of knowledge required to attack these systems would stop anyone other than the very best-funded cyber terrorists or hacktivists.
"What we see as the biggest risk for C-suite executives is the production outages that lead to real bottom line losses. Those executives that are not taking action to trace those that have been caused by cyber incident, against those caused by "normal" operational incidents, are likely to struggle the most when it comes to managing this risk alongside the rest of the issues that come with running a business.
“Accountability is key. Responsible senior managers should be making sure there are people in place who are accountable and responsible for managing cyber risk. Often, where breaches have occurred, it is because people lack the skills and knowledge to pragmatically apply them in the engineering world. Everyone has their part to play.”
- ENDS -
KPMG Press Office
T: 020 7694 8812
M: 0788191 6975
KPMG Press Office: 020 7694 8773
KPMG LLP, a UK limited liability partnership, is a subsidiary of KPMG Europe LLP and operates from 22 offices across the UK with approximately 11,500 partners and staff. The UK firm recorded a turnover of £1.8 billion in the year ended September 2013. KPMG is a global network of professional firms providing Audit, Tax, and Advisory services. It operates in 155 countries and has 155,000 professionals working in member firms around the world. The independent member firms of the KPMG network are affiliated with KPMG International Cooperative ("KPMG International"), a Swiss entity. Each KPMG firm is a legally distinct and separate entity and describes itself as such.
This article represents the views of the author only, and does not necessarily represent the views or professional advice of KPMG in the UK.