4IR integration of information technology best practice framework in operational technology

Purpose: Since inception in the 1970s, Operational Technology (OT) systems were designed to operate in isolation from Information Technology (IT) systems mainly due to differences in objectives relating to Confidentiality, Integrity, Security, and Availability (CISA). Additional IT/OT diverse components include computing speed, and failure severity in terms of safety, environmental, and financial impact. This presents a great challenge in terms of management of the industrial control systems on the facet of its largely IT infrastructure. The 4IR demands synchronous integration of the worlds of IT and OT with similar services management. Literature analysis indicates that limited research has been conducted on the management of IT and OT as a synergistically integrated set of systems. The focal point of this research is to evaluate if an Information Technology Service Management (ITSM) best practice framework can be integrated into the Operational Technology domain. Design/methodology/approach: The nature of this study is that it does not seek to gather and analyze numerical data that can be statistically analyzed, hence a qualitative research approach is adopted. A comparative research design with mixed qualitative methods is utilized to analyze and synthesize in a step-wise process the secondary data gathered from academic articles, standards organizations, whitepapers, etc. The employed research methods include constant comparative analysis and benefits case analysis. The proposed and evaluated application case is based on a petrochemical environment with ITSM inclusive of OT. Findings: After comparative analysis and application case, the research concludes that an IT best practice framework i.e. the Information Technology Infrastructure Library (ITIL) can be integrated, with limited constraints, adapted into the operational technology domain to facilitate the management of OT for service management. Practical implications: The key benefit of this work is the inclusion of OT in global IT best practices in this Fourth Industrial Revolution (4IR) era. The demand for integrated systems with single service levels can be met. Originality/value: This paper contributes to ongoing research in IT/OT integration by providing a unique perspective on OT service management in the Fourth Industrial Revolution (4IR). Researchers can utilize the research outcomes to apply ITSM in the OT domain where 4IR technologies have been implemented.

[1]  Shamsul Sahibuddin,et al.  Combining ITIL, COBIT and ISO/IEC 27002 in Order to Design a Comprehensive IT Framework in Organizations , 2008, 2008 Second Asia International Conference on Modelling & Simulation (AMS).

[2]  A. Telukdarie Enhancing enterprise resource planning and manufacturing execution system efficiency with simulation-based decision support , 2016 .

[3]  Shingo Abe,et al.  Security threats of Internet-reachable ICS , 2016, 2016 55th Annual Conference of the Society of Instrument and Control Engineers of Japan (SICE).

[4]  Iiro Harjunkoski,et al.  The impact of digitalization on the future of control and operations , 2017, Comput. Chem. Eng..

[5]  Sébastien Gérard,et al.  Towards Industry 4.0: Gap Analysis between Current Automotive MES and Industry Standards Using Model-Based Requirement Engineering , 2017, 2017 IEEE International Conference on Software Architecture Workshops (ICSAW).

[6]  Elizaveta Kozlova,et al.  Use of IT Best Practices for Non-IT Services , 2012, 2012 Annual SRII Global Conference.

[7]  Nick Robinson,et al.  IT excellence starts with governance , 2005 .

[8]  Nampuraja Enose,et al.  A Unified management system for Smart Grid , 2011, ISGT2011-India.

[9]  Mariana Hentea,et al.  Smart power grid security: A unified risk management approach , 2010, 44th Annual 2010 IEEE International Carnahan Conference on Security Technology.

[10]  M. Sopko,et al.  Process control network security concerns and remedies , 2007, 2007 IEEE Cement Industry Technical Conference Record.

[11]  Phani Kumar Garimella IT-OT Integration Challenges in Utilities , 2018, 2018 IEEE 3rd International Conference on Computing, Communication and Security (ICCCS).

[12]  Aileen Cater-Steel,et al.  Justifications, Strategies, and Critical Success Factors in Successful ITIL Implementations in U.S. and Australian Companies: An Exploratory Study , 2009, Inf. Syst. Manag..

[13]  Yong Wang,et al.  Overview of cyber-security of industrial control system , 2015, 2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC).

[14]  Walter Fuertes,et al.  A methodological proposal concerning to the management of information security in Industrial Control Systems , 2016, 2016 IEEE Ecuador Technical Chapters Meeting (ETCM).

[15]  X. Quayzin Are best practices really best practice? [safety critical industry] , 2011 .

[16]  Walter Fuertes,et al.  Integration of IT frameworks for the management of information security within industrial control systems providing metrics and indicators , 2017, 2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON).

[17]  Morteza Ghobakhloo,et al.  The future of manufacturing industry: a strategic roadmap toward Industry 4.0 , 2018, Journal of Manufacturing Technology Management.

[18]  Jeffrey Soar,et al.  Effective organisational change to achieve successful ITIL implementation , 2019, J. Enterp. Inf. Manag..

[19]  Khalid Bouragba,et al.  Supporting ITIL processes implementation using business process management systems , 2016, 2016 Third International Conference on Systems of Collaboration (SysCo).

[20]  R.P. Pantoni,et al.  Configuration Management for Fieldbus Automation Systems , 2007, 2007 IEEE International Symposium on Industrial Electronics.

[21]  Simon Ofner,et al.  Key Factors in Industrial Control System Security , 2016, 2016 IEEE 41st Conference on Local Computer Networks (LCN).

[22]  Lohana Lema-Moreta,et al.  A proposal for implementation of ITIL incident management process in SMEs , 2017, 2017 IEEE Second Ecuador Technical Chapters Meeting (ETCM).

[23]  Qianchuan Zhao,et al.  Cyber security issues of critical components for industrial control system , 2014, Proceedings of 2014 IEEE Chinese Guidance, Navigation and Control Conference.

[24]  Norita B. Ahmad,et al.  Technology adoption model and a road map to successful implementation of ITIL , 2013, J. Enterp. Inf. Manag..

[25]  Gerhard P Hancke,et al.  Introduction to Industrial Control Networks , 2013, IEEE Communications Surveys & Tutorials.

[26]  Jehn-Ruey Jiang,et al.  An improved cyber-physical systems architecture for Industry 4.0 smart factories , 2017, 2017 International Conference on Applied System Innovation (ICASI).

[27]  Liu Li,et al.  Industrial Control System Security , 2011, 2011 Third International Conference on Intelligent Human-Machine Systems and Cybernetics.

[28]  余雷,et al.  新生儿Gartner氏囊肿 , 2002 .

[29]  Enrico Ragaini,et al.  Future of IoTSP – IT and OT Integration , 2018, 2018 IEEE 6th International Conference on Future Internet of Things and Cloud (FiCloud).

[30]  R. Y. Rumagit,et al.  A study of Information Technology Infrastructure Library (ITIL) framework implementation at the various business field in Indonesia , 2017, 2017 5th International Conference on Cyber and IT Service Management (CITSM).

[31]  Mohammad Sharifi,et al.  Lessons learned in ITIL implementation failure , 2008, 2008 International Symposium on Information Technology.

[32]  J. Pretorius,et al.  Critical success factors for instrumentation and control projects within the power industry in south africa , 2017, 2017 IEEE International Conference on Industrial Engineering and Engineering Management (IEEM).

[33]  Martin Hromada,et al.  An evaluation of cyber threats to industrial control systems , 2015, International Conference on Military Technologies (ICMT) 2015.