There are several software tools that can be used for conducting a cyber security audit on an operation technology (OT) network. Some examples include:

1. Network scanners: Tools such as Nessus, OpenVAS, and Nmap can be used to perform vulnerability assessments of an OT network. These tools can identify security weaknesses, such as missing patches or misconfigured devices, and provide recommendations for remediation.

2. Industrial control system (ICS) scanners: Tools such as ICS CyberVision and Claroty can be used to specifically scan and assess the security of ICS and supervisory control and data acquisition (SCADA) systems. These tools can identify vulnerabilities in the specific protocols and communication methods used in these systems.

3. Intrusion detection/prevention systems (IDPS): Tools such as Snort, Suricata, and SEL SecureVue can be used to monitor and detect malicious activity on an OT network. These tools can help identify and respond to potential cyber threats in real-time.

4. Security information and event management (SIEM) systems: Tools such as Splunk, LogRhythm, and ArcSight can be used to collect, analyse, and correlate security-related data from multiple sources. These tools can provide a centralised view of security-related events on an OT network and help identify potential threats.

5. Compliance and regulatory tools: Tools such as Tripwire, Tenable, and Rapid7 can be used to assess an organisation’s compliance with various regulatory frameworks and standards, such as NIST SP 800-82 or IEC 62443, which are specific to the industrial control systems.

It’s important to note that the software used for cyber security audit will depend on the specific requirements of the operation technology network and the compliance requirements of the organisation.

Australian Control Engineering is specialised in operation technology network audit, automation design and implementation for utilities industry. If you would like to learn more about our capability and understand how we can help you accelerate your results, please Contact us.