Nicholas T. Martin 

Professor Hiser 

CYSE – 200 

9 April 2026 

SCADA and ICS Systems: Vulnerabilities and Mitigation Tactics 

BLUF: This brief memo aims to define Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) technologies, their necessity in critical infrastructure, the inherent vulnerabilities to malicious actors, and some strategies to mitigate these risks. 

SCADA and ICS 

According to a recent article from Fortinet, Industrial Control Systems (ICS) is an umbrella term for tools that are used to automate and control industrial systems. Some examples of these include Programmable Logic Controllers (PLC), Distributed Control Systems (DCS), and Remote Terminal Units (RTU) (Fortinet, n.d.). Another variant which falls under this umbrella is Supervisory Control and Data Acquisition (SCADA), which are specific tools used to centrally monitor and control a variety of ICS applications in large industrial settings. SCADA systems provide industrial operators with updates, real-time metrics, and alerts in the event of system malfunctions. 

Vulnerabilities 

A key issue with many ICS technologies, including SCADA systems, is that many of them were developed years ago and were intended to be used in offline applications. As stated in the article linked with this assignment, many of these systems have since been connected to networks so that they may be operated remotely (Using SCADA to Protect Critical Infrastructure and Systems, n.d.). This has resulted in often outdated, legacy devices being connected to the broader internet, and introduced potential malicious strategies they were never designed to be subjected to. Since SCADA systems often provide industrial operators with a central access point to view and control other ICS devices, they are a favored target for malicious actors. Many of these systems control critical industrial plants and other infrastructures, and so it is often the case that device replacement and/or updates are not an option. 

Mitigation 

It is a misconception to believe that SCADA applications can mitigate risks of other ICS devices. In fact, it is paradoxical to say because SCADA is an ICS application itself. Though there are measures which can be taken to strengthen the defense of these systems. The previously mentioned Fortinet article provides some key strategies: 

  • Network Segmentation – Where possible, it is ideal to isolate critically outdated ICS devices from broader networks, or contain local networks to secure facilities (i.e., power plants, water treatment centers, etc.) 
  • Access Control Measures – By implementing role-based access controls and least privileges, it is possible to limit access to ICS applications and prevent authorized access from unsecure accounts. 
  • Monitoring and Detection – If ICS devices are connected to local networks, it is recommended to implement Intrusion Detection/Prevention Systems (IDS/IPS) to monitor network traffic and prevent unauthorized access from unknown devices and networks. 
  • Strong Authentication – Utilizing Multi-Factor Authentication (MFA) systems as well as effective password policies often prevents malicious access through brute force techniques. 
  • Backup Storage – In the event of a cyberattack or other disaster, regularly updated backups provide critical infrastructure facilities with the means to restore data and return their systems to full functionality. 
  • Physical Security – Locks, guards, CCTV cameras, and other means of physical security bolster the defense of industrial facilities and prevent malicious actors from gaining access to ICS devices and local networks. 

(Fortinet, n.d.) 

Conclusion 

As stated before, many industrial facilities do not have the option to replace or update outdated ICS devices, and these devices are often too critical to fully discontinue use. This means that some inherent risks will always be present. Though there are several methods to mitigate these vulnerabilities and lessen the risk of compromise. ICS devices are utilized in our most critical industries, including nuclear power, water treatment, and manufacturing centers. It is vital to safeguard these essential devices from both state-sponsored and criminal cyberattacks. 

References 

Fortinet. (n.d.). ICS SCADA: Strengthening OT security. Fortinet Cybersecurity Glossary. https://www.fortinet.com/resources/cyberglossary/ics-scada  

Using SCADA to Protect Critical Infrastructure and Systems (n.d.)