Over the past three years, the rise of IoT, cloud computing and automation has made the manufacturing industry the most cyber-attacked. So what can manufacturers do to be safer against cyberattacks and avoid further financial loss and reputational damage? Cyber resilience requires manufacturers to focus on protecting interconnected OT and IT through data access control, network segmentation, and constant monitoring.
As the most cyber-attacked industry, with attacks occurring every 39 seconds, it is no surprise that high-profile cyberattacks are common in the manufacturing industry. In 2022 and 2023, major automaker Toyota was the center of cyberattacks; An attack left 14 factories closed for 24 hours because a virus infected a file server. During the time the factories were closed, they lost production of 13,000 vehicles, highlighting the importance of cybersecurity for all companies, regardless of size.
Consulting Manager – Security in Columbus United Kingdom.
A company effort is required for cybersecurity
A common misconception among many organizations is that security is solely an IT issue, but it affects customers and employees in plants around the world. Make UK research found that production disruptions were the most common result of a cyber attack (65%), with reputational damage coming in second place (43%). What's more, new customers now want to be sure of the details of current cybersecurity before signing contracts. So how can manufacturers become more cyber resilient?
Manufacturing companies can no longer delegate cybersecurity solely to their Security Operations Center (SOC) teams. Rather, responsibility for security should rest with senior management throughout the organization and measures should be introduced at all operational levels.
1. It all starts by identifying the areas most vulnerable to cyber attacks.
The first step in improving cybersecurity measures begins with an assessment of the current level of digital readiness and an identification of areas for improvement. But knowing how to allocate cybersecurity investment can be a challenge. As a top priority, manufacturers must secure the boundary between IT and OT, and this involves safeguarding critical assets and preventing unauthorized access between systems.
Manufacturers can prioritize cybersecurity efforts by quantifying risks and assessing the impact on operations in the event of disruptions. Without this step, manufacturing companies will accumulate multiple security systems that do not meet their needs and can lead to inefficiencies and potential security risks.
Reduce response times by planning ahead
The next step is the crucial planning stages. It is important to have a business continuity plan to ensure continuity during critical IT incidents. This will allow essential functions to continue for a limited time and help manufacturers manage supply chain disruption more effectively. A structured disaster recovery plan, understood by all employees, must be followed to establish rapid response plans to cybersecurity incidents and disruptive events, minimizing operational downtime.
Once manufacturers understand where the cyber weaknesses are, it's time to put defenses into action.
2. Data protection is key to keeping your business operations and strategies safe
Manufacturing companies possess invaluable data that optimizes operations and drives innovation, but without proper management and security, this data represents a significant security risk. In 2023, the global average cost of a data breach was $4.45 million, an increase of 15% over three years.
Every piece of data, whether about suppliers, partners, material quality, stakeholders or financials, can provide a complete picture of a company's operations, strategies and vulnerabilities. Financial data, along with information from interested parties, for example, could expose vulnerabilities in financial systems or potential leverage points for competitors. This is where effective data governance policies and procedures, such as clear guidelines on data sharing and access, along with strong encryption, can prevent data from falling into the wrong hands.
Data audits can assess the sensitivity and criticality of each data set and evaluate existing security measures and controls. Machine learning and artificial intelligence technologies can help in this regard by identifying pattern anomalies and potential threats to data, enabling proactive risk management and threat detection.
3. Move now, don't wait for the next legislation to come into force
Cybersecurity is not only a way to protect manufacturing operations, it safeguards a company's brand perception. Manufacturers can boost customer trust by staying up to date on the latest cybersecurity certifications and regulations, as they signal to the market that the company puts security first.
The Network and Information Security Directive (NIS2) is the upcoming legislation that will affect manufacturing organizations operating in the EU. The Directive aims to build on previous regulations by implementing stronger cybersecurity and resilience standards, as well as stricter reporting measures in the event of a security incident, but are manufacturers prepared to comply?
Lack of preparation will leave supply chains vulnerable
Surprisingly, only three quarters of organizations in the UK, France and Germany have yet to complete preparations ahead of the NIS2 implementation date in October 2024. Where non-compliance with NIS2 can result in fines of up to 10 million euros ($10.5 million), or 2% of an organization's global annual revenue, it is important for manufacturers to evaluate how well existing cyber measures will comply with the upcoming legislation.
As NIS2 aims to address supply chain security, companies will need to manage cybersecurity risks associated with suppliers and ensure that adequate security measures are in place throughout the supply chain. This presents an opportunity for companies to strengthen supply chains and build resilient relationships with trusted suppliers.
4. Access management prevents the spread of infections
Connectivity between OT and IT environments allows employees to work across interfaces, but also creates new risks for workstations. An infected workstation can become a stepping stone into the production environment through lateral movement. That's why manufacturers need to control access to operational technology and monitor network interfaces.
Access management can help manufacturers introduce new authorization measures, such as multi-factor authentication, that ensure employees only access what they need, when they need it, and from approved locations.
The rise of hybrid workers demands better safety measures
With more people working remotely and on their personal devices, it is also important to consider the security implications of non-compliant devices. This is where stronger access controls and authentication methods can keep sensitive data and systems safe from potential threats.
5. Adopt a safety-first culture
According to IBM's X-Force Threat Intelligence Index report, scripts embedded in OneNote files, malicious links in PDF files, and executables disguised as document files are the most popular methods used by threat actors. All signs indicate that cyber threats are most likely to come through a company's first line of defense: its employees. So how can manufacturers create a human firewall?
Cybersecurity measures are only effective if employees understand best practices. This is where comprehensive training programs can help prepare employees with the knowledge and skills to adapt and excel with safer workflows.
Don't make life more difficult for employees
As with training programs, employees will only carry out proper cybersecurity practices if they can do so easily. Robust access management processes supported by efficient tools can reduce delays and employee frustration while helping manufacturers maintain security standards. Single sign-on, for example, which consolidates access to multiple systems under a single account, improves security and adheres to zero-trust practices without sacrificing user convenience.
A new safe era for manufacturing is on the horizon
Manufacturers cannot be sidetracked by new production pressures, as additional investment in cybersecurity will be key to unlocking greater production.
A weak link could allow a cyberattacker to enter the factory and attack its systems with catastrophic effects. Manufacturers must act now to increase their cybersecurity measures and prevent the next attack before it is too late.
We've rated the best enterprise resource planning (ERP) software.
This article was produced as part of TechRadarPro's Expert Insights channel, where we feature the best and brightest minds in today's tech industry. The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing, find out more here:
