Although automation and digital connectivity provide substantial capabilities for boosting efficiency as solutions are introduced in the Industry 4.0 environment, they also spawn a multitude of risks arising from cyberattacks, which affect process stability (safety) and IT security (security). Automation projects currently lack standards for the protection of automated systems, the exchange of data, and performance monitoring in the end-to-end process chain (e.g. container terminals) in critical infrastructures. This paper describes the process model developed in the AUTOSEC research project, which was employed to derive actions and security mechanisms that boost IT security and fend off cyberattacks on IT-systems. The approach developed in this project was prototyped and evaluated in a demonstrator in an automated solution.