OT/IoT Use Case Advisor

Define Your Industrial Environment

Provide details about your OT/IoT environment for highly specific use case suggestions.

Environment Description*

Describe the operational environment, key processes, and major vendors.

Key Risks

Creation of Unsafe Physical Conditions

Data Exfiltration of Process Information

Denial of Service (DoS) against PLCs/Controllers

ICS-Specific Malware (e.g., Stuxnet, Triton)

Insider Threat (Malicious or Unintentional)

Operational Disruption / Sabotage

OT Protocol Anomaly/Abuse (e.g., Modbus, DNP3)

Physical Tampering with OT Devices

Ransomware on OT Systems

Reconnaissance / Scanning of OT Network

Supply Chain Compromise (e.g., infected hardware/software)

Unauthorized OT Network Access/Lateral Movement

Available Data Sources

Data Historian Logs & Access Patterns

Engineering Workstation Logs (Windows, App)

MQTT Broker Logs

OPC-UA Server/Client Events

OT Device Syslog

OT Firewall / Data Diode Logs

OT IDS/IPS Alerts (e.g., Nozomi, Dragos)

OT Network Traffic (e.g., SPAN, Taps)

Physical Access Control Logs (e.g., Badge Readers)

PLC/RTU Logs & Diagnostic Data

Safety Instrumented System (SIS) Logs

SCADA/HMI Application & Event Logs

Applicable Frameworks

CIS Controls for ICS

CISA ICS Guidelines & Alerts

ISA/IEC 62443

ISO/IEC 27019 (Energy Utility Industry)

MITRE ATT&CK for ICS

NERC CIP (for Bulk Electric System)

NIST CSF (with OT Profile)

NIST SP 800-82 (Guide to ICS Security)