Cyber security of the control system devices in buildings and data centers has limited cyber security. These devices include process sensors, valves, actuators, and power supplies. Remotely changing Uninterruptible Power Supply (UPS) settings can wreak havoc on the equipment they are designed to support. There is a need to address UPS cyber security, including sensors, as control system hardware issues. Recommendations are to use the latest version of SNMP buttressed by hardening the network on which the UPS is located per CISA recommendations, provide appropriate training for engineers and technicians as these are not network data issues, and develop hardware interlocks to prevent unsafe operating conditions. Develop secure UPSs that can employ secure protocols and include hardware interlocks to prevent unsafe conditions.
