This report provides an analysis of operational technology (OT) and information security (IS) for a regional bank, focusing on the online banking system's data center. It identifies and describes the data center infrastructure, including communication diagrams and the number of personnel. The report then conducts a risk assessment based on the NIST Cybersecurity Framework (CF), covering the Identify, Protect, Detect, Response, and Recover functions. It includes asset inventories, vulnerability assessments, and mitigation strategies for both physical and cyber assets. The report also outlines security training topics for employees, methods for detecting and responding to security breaches, and recovery plans for various scenarios, such as physical and cyber security incidents. Finally, the report references several academic sources to support its findings.
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
