User Manual

ManualsBrandsSiemens ManualsFire - GMS Management StationsOPC DA Specifications_V3.0_MK7022

siemens.com/cerberusdms

Cerberus DMS 4.0 | Cybersecurity Meets Building Management Systems

Cerberus DMS 4.0 Cybersecurity Deployment

We publish cybersecurity hardening guidelines to support

the secure commissioning and deployment of Cerberus DMS

4.0 products. These guidelines describe how the system

needs to be configured in order to foster secure operation of

the Cerberus DMS 4.0 products and solutions in the intended

operating environment. Configuration options consist of,

for example, which applications to install, which settings to

activate or deactivate, firewall configurations, and the setting

of user and system accounts and access rights. The hardening

guidelines are maintained throughout the product lifecycle.

As part of our Software Maintenance Program, we periodically

release patches, updates, and upgrades that remove new

known vulnerabilities and increase the level of protection of

Cerberus DMS 4.0 against threats. Patches and updates are

made available as they are developed, supported by access to

technical hotline support run by product experts. There is

also the option to subscribe to software updates to ensure

that your deployed Cerberus DMS 4.0 is always updated to

the latest version release.

Emergency Management

For our offerings, we have incident and vulnerability

handling processes in place in the event that a security issue

or vulnerability is detected in a Cerberus DMS 4.0 product

or solution.

Incident and Vulnerability Handling Process: Our support

mechanism for customer-reported security issues is illustrated

in Figure 3. Vulnerabilities and/or incidents are submitted to

our technical support team, which is supported by the global

Siemens ProductCERT team that operates on a 24/7 basis.

The necessary steps are taken to handle the situation and

the incidents and remedies are disclosed.

Vulnerability Management: This is our internal detection

process for fine-tuning the security of our products and

solutions. Continuous threat monitoring enables us to detect

and mitigate potential vulnerabilities in our products and

solutions. Cerberus DMS 4.0 software components are

registered so that if any security vulnerabilities are found,

the necessary remedies can be implemented and disclosed.

Identified vulnerabilities are announced by the ProductCERT

team via the ProductCERT security advisories (https://new.sie-

mens.com/global/en/products/services/cert.html), to which

you can subscribe.

Remote Services

Remote access is a desirable feature today because of the

ongoing performance monitoring and convenience it

provides. Cerberus DMS 4.0 is prepared to support services

that rely on remote data access while remaining part of the

environment’s security concept. By supporting remote

services, Cerberus DMS 4.0 allows you to leverage access to

data about your building systems and connected equipment

so your operations can be optimized.

Figure 3 – Cerberus DMS 4.0 Incident and Vulnerability Handling Process

Report Analysis Handling Disclosure