ICS/OT Cybersecurity Assessment

Free · No credit card required

Begin Your ICS/OT Security Assessment

Answer 20 practical questions mapped to the NIST CSF v2.0 Core Functions. Receive a detailed security posture report with a radar chart, domain scoring, and expert recommendations — emailed as a PDF.

Enter your work email address to begin *

Please enter a valid work email address.

Work email required. Public domains (Gmail, Hotmail, Yahoo, etc.) are not accepted.

You're all set!

Redirecting you to the assessment questions…

Your responses are confidential and never sold

PDF report emailed to you automatically

100% free — no commitment required

Assessment Framework

6 NIST CSF v2.0 Core Functions × 5 OT Security Domains

Your score is built from five critical OT security areas, each mapped to the NIST Cybersecurity Framework v2.0 Core Functions — the industry-standard approach for ICS/OT risk management.

NIST CSF v2.0 Functions: GV · Govern ID · Identify PR · Protect DE · Detect RS · Respond RC · Recover

CSF v2.0 added Govern (GV) as the 6th function in 2024, anchoring all other functions to organizational risk strategy and accountability.

🏭

Asset Visibility & Inventory

ID · Identify

Do you know what's on your OT network? Full discovery of PLCs, HMIs, historians, RTUs, and field devices — including shadow assets — is the foundation of every other control.

Asset inventory Network discovery Shadow OT CSF ID.AM

🔐

Access Control & Authentication

PR · Protect

Remote access security, shared account elimination, MFA deployment, and role-based access across the OT environment — including third-party vendor access controls.

MFA Remote access Least privilege CSF PR.AC

🛡️

Patch Management & Vulnerability

PR · Protect

Patching cadence, vulnerability assessment practices, EOL asset management, and compensating controls for systems that cannot be patched — critical in OT where downtime is not acceptable.

CVE tracking EOL assets Compensating controls CSF PR.IP

📡

Network Segmentation & Monitoring

DE · Detect

IT/OT network separation, DMZ implementation, firewall rule review, and continuous traffic monitoring inside your OT environment — aligned to NIST CSF v2.0 Detect and CIP-015 INSM requirements.

IT/OT segmentation INSM Anomaly detection CSF DE.CM

🚨

Incident Response & Recovery

RS & RC · Respond / Recover

OT-specific IR plans, tabletop exercise readiness, OT backup & restoration testing, and business continuity — covering both the Respond and Recover functions of NIST CSF v2.0.

IR plan Tabletop exercises OT backup CSF RS + RC

🏛️

OT Security Governance & Policy

GV · Govern

New in NIST CSF v2.0. Cybersecurity risk strategy, leadership accountability, OT security policies, supply chain risk, and security awareness training — the organizational foundation that makes all other controls effective.

Risk strategy Awareness training Supply chain CSF GV.OC / GV.RM

Process

How It Works

Four steps, under 10 minutes, zero cost.

Enter your work email

Your email is required to receive your PDF report. We never share it.

Answer 20 questions

Multiple-choice questions across the 6 NIST CSF v2.0 OT security domains. Takes under 10 minutes.

See your security posture instantly

Live results with a radar chart, domain scores, and color-coded risk ratings — right in your browser.

Receive your PDF report

A full report with expert recommendations emailed automatically — ready to share with your leadership team or CISO.

Deliverables

What You'll Receive

Your report includes all of the following, tailored to your answers.

Spider / Radar chart

Domain scores

NIST CSF mapping

Risk highlights

Expert recommendations

Emailed PDF report