Abstract
This chapter reviews the cybersecurity risks of critical infrastructures such as supervisory control and data acquisition systems in the IoT environment; and provides security management strategies to beef up the security of SCADA networks. An overview of IoT reference model and related security concerns are reviewed. Vulnerabilities of SCADA systems as well as risk assessment approaches and risk management strategies to help mitigate Vulnerabilities and threats are also examined. The chapter concludes that to effectively manage cybersecurity of SCADA systems in an IoT environment, a control framework that defines a comprehensive set of security objectives with policies, standards, and guidelines should be established and enforced. Additionally, it is suggested that existing protocols should be analyzed to understand their vulnerabilities for effective risk control and SCADA networks should be designed to prevent direct access from the Internet.