Skip to content
Close
LOGIN
CONTACT
PHONE: +44 (0)207 605 7890E-MAIL: hello@oryxalign.com
PHONE: +44 (0)207 605 7890E-MAIL: hello@oryxalign.com
Mega Menu Image 1

Networks

Future ready, intelligent networks for critical environments.

 

 

Mega Menu Image 3 More colour

Cloud

Empower your organisation and
accelerate innovation with agile and secure cloud technology.

Mega Menu Image 2 Blue

Cyber

Managed cybersecurity enabled by a global network of talent, threat intelligence and technology. 

Mega Menu Image 4

Managed IT

IT aligned to your people, not only your tech.

Mid-market - Navy Icon-3
Data Centres

Designing, securing and managing the critical infrastructure powering the leading data centres across the UK and Europe.
Construction - Navy Icon-3
Construction

Partnering with the UK’s leading construction contractors in delivering tech services to power future facilities.
Commercial Property - Navy Icon
Commercial Property

Partnering with landlords and agents to create engaging workplaces through innovative technology services.
Mid Market - Navy Icon
Mid-Market

Empowering mid-market success and streamlining operations with co-managed IT services.
SMB - Navy Icon
SMB

Leveraging our expertise to implement transformative technologies and services, we enable our SMB clients to focus on their growth.

Commerical Property - Navy Icon Copy
Meet the team

We are a happy, supportive community with a clear sense of purpose and a strong team ethic.
Partner Ecosystem - Navy Icon
Partner Ecosystem

Partnership is not a posture but a process – a continuous process that grows stronger each year as we devote ourselves to common goals.
ESG - Navy Icon
ESG

We will dedicate more of our time and our talent to do all we can to positively impact the environment, our workforce and our community.
Careers - Navy Icon
Careers

We are always looking for new talent. If you're looking to become a part of something great, let us know.
Oryx O Orange and Navy - Navy Icon
Our Company

We create true alignment between your ambitions and the technology you need to achieve them.

Blogs - Navy Icon
Blogs

Latest posts on the technology ecosystem covering cutting-edge industry trends, expert advice, valuable insights and thought leadership.
News - Navy Icon
News

From award wins to sustainability, team events and coverage in the media - stay up to date on everything OryxAlign with our latest news.
Video Content - Navy Icon
Videos, Infographics & Guides

Explore current and future trends across the technology landscape with our comprehensive selection of videos, infographics and guides.

Rachel PotterDec 5, 20243 min read

Cyber security in the commercial property sector: the importance of vulnerability management

Cyber security in the commercial property sector: the importance of vulnerability management
5:05

The commercial property sector is experiencing fast-paced change, led by technology. From smart buildings and IoT devices to cloud-based platforms, innovations are transforming property management and tenant experiences.

However, with innovation comes risk. Cyber vulnerabilities are emerging as a critical challenge for property managers, landlords, and tenants, making robust vulnerability management a crucial priority.

Why does Vulnerability Management matter?

Vulnerability management involves identifying, assessing, and addressing system, network, and device weaknesses. It's a continuous process that goes beyond routine patching. For the commercial property sector, this means tackling unique challenges, like securing building management systems, connected IoT devices, and tenant IT infrastructures. All of these can introduce exploitable entry points for cyber attacks.

Take, for instance, the rise in Operational Technology (OT) and Internet of Things (IoT) attacks. OryxAlign worked with Landsec, one of the UK's leading real estate groups, to address this growing threat. Our vulnerability scanning revealed critical risks across their 32-property portfolio. By prioritising remediation efforts and aligning with the NIST Cyber Security Framework, we helped Landsec reduce their exposure to cyber risks when OT and IoT attacks surged from 32 million in 2018 to over 112 million in 2022.

Read the full case study here.

The challenge of diverse technology ecosystems

Modern commercial properties rely on a patchwork of legacy systems, IoT devices, and proprietary software. Legacy systems, which were often designed before cyber security became a priority, are especially vulnerable. Add to this the sheer number of IoT devices like smart cameras, connected locks, and environmental sensors, and the attack surface expands significantly.

IoT vulnerabilities often stem from weak authentication, outdated firmware, or default credentials. For example, during our work at 20 Fenchurch Street (the "Walkie-Talkie"), OryxAlign revamped the building's IT infrastructure, implementing robust monitoring and support for critical systems. By addressing vulnerabilities within IoT networks and isolating these devices, we safeguarded operational continuity while enabling the building's advanced technology features.

Explore this case study here.

The importance of visibility

Effective vulnerability management is impossible without an accurate inventory of connected devices and systems. The use of unauthorised devices and software (Shadow IT) complicates this task further. At OryxAlign, we leverage advanced asset discovery tools to map out digital ecosystems, ensuring no device or system is left unmonitored.

"Visibility is the key to managing vulnerabilities effectively," says Peter Schwarz, Senior Technology Consultant at OryxAlign. "We help clients maintain real-time oversight of their systems, paired with regular security training to address the human element of cyber security."

Navigating third-party risks

Third-party vendors play a central role in property management, providing everything from cloud services to building automation software. However, vulnerabilities in vendor systems can cascade into a property's operations, introducing risks that are difficult to control.

Vendor risk management is an essential aspect of vulnerability management. Property managers need to evaluate the security practices of their vendors, require regular audits, and ensure contracts include provisions for cyber security accountability.

The human factor

Even with the best technology in place, human error remains a significant vulnerability. Phishing scams, weak passwords, and untrained staff can expose even the most secure systems. Comprehensive cyber security training programs can help reduce human error and improve awareness. Clear policies and regular communication are essential to fostering a culture of security among all stakeholders.

Find out more about the human factor in our blog: The Human Factor in the vulnerability management process.

Future-proofing commercial properties

The future of vulnerability management in the commercial property sector lies in adopting proactive, technology-driven approaches. OryxAlign's VMaaS (Vulnerability Management as a Service) solution combines automated asset discovery, real-time threat prioritisation, and streamlined remediation processes. Advanced tools like AI-driven detection, penetration testing, and automated patching empower property managers to stay ahead of evolving threats.

As emerging technologies like 5G and edge computing reshape the landscape, new challenges will be introduced. By prioritising visibility, vendor accountability, and ongoing employee training, C-suite leaders can transform cyber security from a challenge into a strategic advantage, ensuring their properties are smart and secure.

For more insights into our vulnerability management services, visit our cyber security page or email us at hello@oryxalign.com.
avatar

Rachel Potter

RELATED ARTICLES