Best Practices: Enhancing Your Smart Building Cyber Security Programme

Published 4 May 2022 by Susan Clarke & Rodolphe d’Arjuzon &
Building IoT Platforms Facilities Optimization Smart Buildings Smart Buildings Systems Integration Best Practices

Access this research

Access all Smart Buildings content with a strategic subscription or buy this single report

Buy Subscription

Need help or have a question about this report? Contact us for assistance

Executive Summary

On top of much-discussed IT cyber security risks, firms face growing cyber threats across their operational technology (OT), because of the explosion of networked devices, the convergence of IT and OT networks, and aging building systems. Despite this, the cyber security of building systems is frequently undermanaged, as firms lack clarity on where the responsibility for OT cyber security lies and are unaware of the full extent of risks they face. Drawing on our interviews with experts from the cyber security, IT and building technology sectors, this report sets out best practices for enhancing the cyber security management of building systems. The research finds that the first step for rebooting a smart building cyber security strategy is defining clear responsibilities and embedding cyber management into facilities operations across procurement, technology management and staff training.

Table of contents

Firms Must Reboot Their Smart Building Cyber Security Strategies In The Face Of Growing Risks 
Firms Face Growing Cyber Threats Across Their Building Technology
The Explosion Of The IoT Across Buildings Is Making Cyber Security More Complex
OT Cyber Security Management Often Falls Through The Cracks Due To Unclear Responsibilities

Firms Should Take A Risk-Based Approach To Cyber Security Management 
Facilities, IT And Security Teams Must Unite Against The Cyber Security Threat   
Facilities Leaders Must Embed Cyber Security Into Operations
Business Leaders Must Transition To Proactive Cyber Security Management

Table of figures

Figure 1. Smart Building Systems Face Cyber Threats Across Four Key Frontiers  
Figure 2. Initial Infection Vectors Used In Cyber Attacks On OT, January 2020-June 2021  
Figure 3. Recent OT System Cyber Attack Tactics And Techniques  
Figure 4. Factors Slowing Down A Firm’s Response To A Cyber Attack  
Figure 5. Five Strategies For Managing OT Cyber Security  
Figure 6. Key Steps To Enhance Your Smart Building Cyber Security Programme  

Organisations mentioned

Acalvio Technologies, British Security Industry Association, Brivo, Concentric, essensys, Everbridge, FBI, Honeywell, IBM, Kisi, KNX, McAfee, Nordic Choice Hotels, Nuvolo, Openpath, Ponemon Institute, Romantik Seehotel Jaegerwirt, SAFECARE Project, Schneider Electric, Siemens, Target, TOSIBOX, UK Government, US National Security Agency, US NIST, Veridify Security

About the authors

Susan Clarke

Research Director

Susan leads the Verdantix Smart Buildings practice. Her current research agenda focuses on software solutions for real estate management including integrated workplace management systems and IoT platforms for buildings. Her research expertise also includes a broad range of energy management technologies and energy services. Susan has eight years of experience in technology research. She holds a MSc from the University of London in Sustainable Development.

Rodolphe d’Arjuzon

MD and Global Head of Research
Rodolphe co-founded Verdantix in 2008 and directs the firm’s research strategy across all practice areas. Rodolphe has over 20 years of experience in technology research and strategy consulting. He previously worked for Barclays Bank and L.E.K. Consulting. Rodolphe holds a PhD in Physics from the University of Cambridge.

Related Reports

Smart Buildings
5 January 2024

Market Insight: 10 Predictions For Real Estate & The Built Environment In 2024 A…

This report explores the key trends that will impact the real estate and built environment space in 2024 and beyond, such as the effects of global economic turbulence, energy price volatility and high…

View Details
Smart Buildings
10 October 2023

Strategic Focus: The Value Proposition For Smart Building Digital Twins

Digital twins are emerging in the real estate industry, transforming the way facilities are designed, constructed, operated and managed. This budding technology is unlocking a myriad of opportunities …

View Details
Smart Buildings
13 September 2023

Green Quadrant: Workplace Systems Integrators 2023

This report provides a detailed, fact-based comparison of the 12 most prominent workplace systems integrators available in the market. Workplace systems integrators provide consulting and implementati…

View Details

Not a Verdantix client yet?

Register with Verdantix for authoritative data, analysis and advice to allow your business to succeed.

Register now