Safetech and Radiflow Event: Non-Intrusive Security for OT/ICS/SCADA Infrastructures
On March 25, 2025, Safetech Innovations, in partnership with Radiflow, organized an event dedicated to non-intrusive industrial security. He addressed the challenges of securing industrial environments and the importance of aligning IT Security and OT Security.
Dan Chițu, CISO at Apa Nova, a Veolia company, opened the discussion by presenting the importance of collaboration between the teams of IT and OT specialists in the organization and the benefits obtained by Apa Nova by creating an organized collaboration framework. Radiflow representatives Jesper Nilsson, Head of Business Development Nordics & CEE, and Yossi Tarnopolsky, VP of Business Development, also provided concrete insight, describing the stages of a real cyberattack that took place in 2024 on Moscollector, a Moscow-based sewerage and communications infrastructure company. This was followed by a practical demonstration of Radiflow’s OT Security functionalities, supported by Yossi Tarnopolsky. In his turn, Mihai Răuță, Manager of the Security Solutions Department at Safetech Innovations, detailed the role of Safetech in the practical implementation of Radiflow solutions.
The need for a common language for IT-OT teams
Dan Chițu summarized the main challenges faced by Apa Nova related to the collaboration and integration between IT and OT, focusing on communication, architecture, compliance with regulations and the constantly changing expectations of the business environment. According to him, the difficulties arise primarily at the level of communication between IT & OT teams and it is necessary to build a common language for security and operations. The Apa Nova representative also addressed the need to apply OT/IT architectures in accordance with NIS requirements, as well as the ways in which OT integration with SaaS, AI and ML technologies can generate value for the business. Dan Chitu also stressed the importance of complementing internal skills with specialized services, provided by a company dedicated to cybersecurity, which has an extensive team of certified and experienced specialists.
Case in point: Cyberattack on Moscollector using Fuxnet malware
Next, Jesper Nilsson focused the discussion on a current case, in the context of the war in Ukraine. The target was the company, AO Moscollector, responsible for maintaining a municipal infrastructure in Moscow that includes water and heating networks, power lines and communication cables. After learning what equipment is being used by Moscollector, Ukrainian hackers have used Fuxnet malware for DoS attacks and physical wear and tear on devices. In this way, more than 1700 gateways were affected, the functions of 87,000 sensors were disabled and a significant volume of data was lost.
Yossi Tarnopolsky detailed what equipment and measures were needed to prevent this attack from taking place. These include access and authentication control (Identity and Access Management – IAM, External Access Monitoring – OT Intrusion Detection Systems), network consolidation and segmentation (industrial firewalls, microsegmentation, Secure Remote Access), data protection and permissions (application whitelisting – OT IDS), system consolidation and reliability (ICS Anomaly Detection – OT IDS), monitoring and auditing (internal or outsourced OT SOC).
Mr. Tarnopolsky also presented which are the solutions in the Radiflow portfolio that offer these capabilities within a complete on-premises implementation: ISID (Industrial Security Intrusion Detection System), ICEN (Centralized Manager) and CIARA (Data-Based OT Risk Management).
The presenter performed a demonstration of their functionalities, highlighting the many practical results of the solution:
- Granular visibility,
- Immediate alerting in case of deviations from normal operation,
- Facilitating decisions on security and compliance with regulations,
- Major time savings and simplification of OT security operations,
- Management of security risks of OT/ICS systems.
The role of Safetech Innovations in the implementation of Radiflow solutions
Mihai Răuță underlined the role of Safetech Innovations in the practical implementation of Radiflow solutions, with a focus on the critical technical aspects for a successful implementation and providing examples of specific architectures for the integration of these solutions.
“The diversity of industrial equipment and communication protocols requires customized implementations and careful calibration of the technical solution. The capture of SCADA traffic must be carried out with care to ensure effective monitoring without introducing interference with production operational systems. Integration with SIEM and other monitoring platforms may require additional effort to ensure a consistent flow of data and a correlated analysis of events. In addition, carrying out updates and continuous maintenance of the system without disrupting critical operations is a logistical and technical effort” , said the manager of Safetech Innovations, in the context of presenting the challenges encountered by organizations in implementing security solutions in ICS/SCADA environments and how they are treated through the services provided by Safetech.
Safetech Innovations provides added value to the implementation of Radiflow security solutions through implementation and monitoring services and customizes Radiflow solutions for each client, ensuring that they are optimized and integrated into the existing infrastructure. Safetech also provides training for the personnel who use the solutions provided, regular updates and proactive maintenance, in order to maintain the performance and security of the systems in the long term.
For further information about the Radiflow solutions in our portfolio and our complementary services, we invite you to contact us at sales @ safetech.ro or by phone +40 21 316 0565.