1. Software Patching & Updates 1.1Regular SCADA and non-SCADA server patches (per defined schedule) 1.2Regular updates of SCADA software packages (per defined schedule) 1.3Firmware updates for firewalls, switches, PLCs, OITs, and thin clients 1.4Virtualization host updates (e.g. VMware ESXi, Hyper-V) 1.5Records of patching updates 2. Security Monitoring & Threat Detection 2.1 ManageEngine SIEM monitoring for servers and network infrastructure 2.2 Sophos Endpoint Security configuration and maintenance 2.3 Regular vulnerability assessments and security audit 3. Backup & Disaster Recovery Maintenance 3.1 VEEAM backup solution maintenance for all covered servers 3.2 Verification and testing of backup integrity and restore capabilities 4. SCADA & Industrial System Protection 4.1 Rockwell AssetCentre 24/7/365 monitoring for PLCs, OITs, and Stratix switches 4.2 Audit log review and maintenance of all configuration changes 5. Compliance & Cybersecurity Advisory 5.1 Ongoing review of CISA cybersecurity alerts and advisories for applicability to TWW systems 5.2 Quarterly cybersecurity status reports with risk assessments and recommendations. 5.3 Documentation updates for all network changes, patches and firmware upgrades.
