The need to improve cyber security in industrial control systems is at the forefront of a report published by accreditation body CREST, claiming that a lack of standards-based technical security testing is putting industrial control environments and critical national infrastructure at risk.