Enhancing Cybersecurity Practices in Manufacturing

  • Aug 12, 2022, 11:27 AM

Manufacturing organizations know that unplanned downtime is costly. What may be less clear is the impact that cyberattacks, like ransomware, have on downtime.

Simply put: successful attacks on manufacturing mean downtime – not measured in hours or days, but often weeks or longer.

ThirdPartyTrust reports that cybercriminals are drawn to the most vulnerable and profitable sectors, which is probably why manufacturing received nearly one fifth of all attacks on businesses and organizations in 2020.

The average cost of a ransomware attack in the manufacturing sector is US$1.52 million, according to Sophos research. This is not just the cost of downtime and ransoms paid; it also includes the cost of lost opportunities, and no doubt the immeasurable loss of trust from customers and other stakeholders.

Besides going after system disruption to help drive ransom payments, cybercriminals also try to gain access to high-value data like IP; extort third parties by threatening to expose their data; and threaten to harm plants, assets and workers.

Critical Manufacturing Supports Critical Infrastructure

The Critical Manufacturing Sector is crucial to economic prosperity and continuity, notes the US Cybersecurity & Infrastructure Security Agency (CISA). The industries that comprise this sector - metals, machinery, electrical equipment, appliance and component, and transportation equipment - require manufacturing industry cybersecurity to be strengthened, as a direct attack or disruption could disturb essential functions, economic interests, and daily life. 

Critical Manufacturing and Pandemic-Related Risks

CISA identified several operational vulnerabilities in industrial control systems (ICS) related to going remote during the COVID-19 pandemic. Remote authentication, for example, is more of a challenge than when employees are physically present in a traditional workplace environment. Reduced network segmentation and expanded cyberattack surfaces from remote locations and devices create additional vulnerabilities.

Effective management of remote processes, including security, identity validation, and ongoing monitoring, must be in place to prevent simple to catastrophic downtime from cyberattacks. Sensible and straightforward, right? However, CISA also concludes that managing cybersecurity risks in an ICS environment requires skills that are difficult to find and maintain, especially when organizations are facing pandemic-driven changes. Support is needed. 

Cybersecurity Solutions for Manufacturing 

As a company highly experienced in both industrial automation and industrial cybersecurity, Rockwell Automation can meet these challenges head on and quickly. 

Rockwell aligns with the NIST cybersecurity framework: Identify, Protect, Detect, Respond, and Recover. This approach provides a reliable, end-to-end, standards-based approach for industrial organizations to increase cybersecurity protection. 

Some of the largest manufacturers in the world have successfully deployed our advanced cybersecurity controls. 

For example, at one North American food company, we created an enterprise cybersecurity dashboard to view and manage risks, anomalies, and security events so the company could gain overall visibility into cybersecurity risks. 

Rockwell Automation is unmatched in orchestrating complex cybersecurity solutions across multiple sites and regions for all types of manufacturing and industrial organizations, bringing decades of experience in factories and plants to every client. 

Network Visibility: You Can't Protect What You Can't See

While the sophistication of attacks grows, most attacks are preventable with today's known cybersecurity methods and tools, since attackers often look for and strike the easiest security gaps first. But many manufacturers don't have clear visibility into the assets on their industrial network, making it harder to secure, while complicating threat detection and risk mitigation. 

What's more, with IoT devices proliferating and manufacturing companies undertaking digital transformation initiatives, network visibility becomes even more important. 

Learn how SMC can help you prepare against cyberattacks in your facilities to minimize unplanned downtime. 



Article Source: Rockwell Automation