Resilience requires muscle memory
Many SCADA and OT systems were not designed with security in mind, and many lack basic security controls that you would see on common systems such as firewalls, intrusion detection and prevention and even basic encryption.
We need to keep in mind that production environments are finely tuned machines, and even small interruptions to their operation can have a profound impact on their output. Attacks against your production environment can lead not only to business interruption but also to physical injury and harm. The ability to detect an attack in an early stage is vital to ensure business continuity.
An OT Purple Teaming Service is a simulation-based training activity designed to help you practice and improve your incident detection and security alert handling capabilities.
During the exercise, participants work through a range of simulated cyber-attacks. Test cases go from very quiet "under the radar" and are gradually escalated up to a case that all alerting systems and personnel should catch.