E D I T O R ' S Q U E S T I O N

One of the biggest challenges facing administrators in securing complex data centre environments is understanding what is on the network and anticipating where any risks are . Today ’ s data centres use smart , connected devices that manage everything from temperature and power to surveillance systems . Along with housing their own environmental and safety systems for the operation and protection of the data centre itself ( HVAC , power , UPS , monitoring and fire suppression systems ), data centres also store both customers ’ and organisations ’ confidential data .

To exacerbate the issue , Internet of Things ( IoT ) devices often lack basic cybersecurity features , making them easy targets for malicious bad actors .

Securing and bolstering the resilience of data storage and processing infrastructure stands as a cornerstone of national security .

The National Cybersecurity Centre UK ( NCSC ) has taken proactive steps by crafting the Cyber Assessment Framework ( CAF ), a comprehensive set of security standards mandatory for numerous data centres across the UK .

Furthermore , to ensure robust security and resilience amid regulatory changes in the UK , data centres should adopt a strategic approach that aligns with the evolving landscape of cyberthreats and regulatory requirements . Given the critical role of data centres in the UK economy and the sector ’ s recognition as critical national infrastructure by the government , prioritising security measures is paramount .

Firstly , data centres must focus on enhancing visibility and asset management within their complex environments . Leveraging solutions for passive discovery of Operational Technology ( OT ) and Internet of Things ( IoT ) assets allows for comprehensive monitoring without disrupting critical processes . This enables data centre administrators to gain insights into all devices and traffic patterns , facilitating the rapid identification of anomalies and potential security incidents .

Secondly , integrating up-to-date threat intelligence solutions is essential . By staying informed about emerging zeroday attacks , indicators of compromise ( IOCs ) against IoT systems and industrial processes , malware , botnets and device vulnerabilities , data centres can proactively defend against evolving cyberthreats . This proactive stance is crucial in safeguarding sensitive data and infrastructure integrity .

Additionally , conducting regular risk assessments is imperative . By assessing vulnerabilities in the environment , data centres can prioritise patch releases effectively , mitigating the most critical risks promptly .

Scalability must also be a key consideration . As data centres scale to meet enterprise demands , so does the number of potential attack surfaces . The scalability comes with greater risk of cyberattacks , therefore the solution needs to be able to scale to handle the large number of OT / IoT systems immediately and in the future . �

34 www . intelligentdatacentres . com