Optimal security hardening over a probabilistic attack graph: a case study of an industrial control system using the CySecTool tool.