Malicious acts may arise in number of ways within an industrial facility. Such acts may be perpetrated inside the company by a staff member or subcontractor. The notion of industrial facility itself perhaps needs to be broadened, especially in light of the vulnerability of ancillary installations located on city streets (electrical or gas control boxes). Moreover, a computer hacker does not need to physically be on company premises to carry out a malicious act. This fact sheet answers 2 questions : How is the risk of a malicious act manifested on an industrial site ? What solutions are readily available ?