defense-in-depth

Defense in depth is a cybersecurity strategy that uses multiple, independent layers of protection so that no single failure, misconfiguration, or breach results in uncontrolled access to systems or data. In industrial and manufacturing environments, it commonly refers to applying layered technical and procedural controls across operational technology (OT), industrial control systems (ICS), and supporting IT systems.

Key characteristics

In an industrial context, defense in depth typically includes:

• Network segmentation and zoning such as separating corporate IT, DMZ, and control networks, and limiting traffic between them
• Multiple security controls per pathway for example, firewalls plus access control plus monitoring on the same communication route
• Technical and procedural layers combining tools (firewalls, endpoint protection, system hardening) with policies (access management, change control, incident response)
• Device, system, and enterprise levels controls at field devices and controllers, control room systems, site infrastructure, and central IT/OT services
• Detection as well as prevention such as logging, intrusion detection, and anomaly monitoring in addition to blocking measures

The intent is that if one control is bypassed or fails, other controls still limit the impact and help maintain safe and reliable operations.

How it appears in operations

In regulated manufacturing or critical infrastructure, defense in depth may affect:

• System architecture use of security zones and conduits aligned with standards like IEC 62443
• Access management role-based access, multi-factor authentication, and separate accounts for engineering, operations, and vendors
• Engineering and maintenance controlled remote access, change management, and secure configuration of PLCs, HMIs, and MES/SCADA systems
• Monitoring and response centralized log collection, OT-aware security monitoring, and documented incident handling procedures
• Lifecycle activities security considerations in system design, procurement, commissioning, and decommissioning

Relation to IEC 62443

IEC 62443, focused on industrial automation and control systems cybersecurity, commonly references and structures requirements around the principle of defense in depth. It uses concepts such as security zones, conduits, and layered technical and organizational measures to realize defense in depth across systems and components. Specific implementations depend on the role of the organization and which parts of the standard are applied.

Common confusion

• Not the same as perimeter security only: Defense in depth includes perimeter controls but also internal layers such as host hardening, application security, and monitoring.
• Not a specific product or tool: It is an overall design and governance approach that can be implemented with different technologies and processes.