Cyber Security for Industrial Control Systems (ICS) / Energy

Cyber Security for Industrial Control Systems (ICS) / Energy

Major energy company / SE England

Our client, a major energy company in SE England asked Capula to implement a full cyber security review of their ICS (industrial control system). Given the strategic importance of the company who provide electricity to the London area, it was essential that the electrical supply to their network was not compromised.



  • Supplemented client’s existing security programme with new areas for improvement
  • Provided a quality 3rd party review of existing security
  • Segmented network for added protection
  • Improved operators’ knowledge of cyber security
  • Improved network performance and limited control communication access between segments.
  • Limited any potential intruder scans at the network level before they reach a potential target system
  • Provided the client with greater confidence in its ability to prevent cyber security breaches.

The Need

The client’s objective was to supplement their existing effective program of mitigating the risks of viruses and unauthorised access that can endanger production, data, equipment and people. Following an initial consultation, the client wanted to segregate parts of their network to make it more secure. Network segmentation was a measure requested by the client because localised security zones can be established, each with their own zone-specific sets of rules that can be enforced and monitored for added security.

What we did

  • High level prioritised action plan identifying specific areas where protection could be strengthened
  • Recommended a multi-layered security approach – with prioritised steps to implement, to undertake further safeguards.
  • Identified areas of the network for segregation as an additional safety measure
  • Supported knowledge transfer, sharing best practice advice around vulnerabilities