Know your enemy

NEARLY EVERY device in a modern plant is connected, and as advanced technologies become increasingly interconnected, so they become more open to a cyber attack. These attacks are becoming more sophisticated, targeted and effective, so companies cannot just rely on the basic-level security tools delivered with IT infrastructure and software. Instead, a holistic approach is needed to ensure the highest levels of cybersecurity.

Ransomware remains the biggest threat, with any asset at risk. Cyber threats, however, do not just come from the outside but also from within the organisation, both intentionally and unintentionally. Such insider threats include those from current and former employees, business associates and potentially, the supply-chain. 

Phishing scams involve emails or messages sent by hackers disguised as legitimate sources. Links to fake websites can deceive authorised users into divulging personal and login credentials or even downloading malware. Most systems and users can easily identify emails offering money as spam. However, emails can also be disguised as internal communications, such as messages from the HR department or a colleague with a request to download a file. Such messages may be security threats containing hidden spyware or malware. The intruders then quietly move across the network, slowing down resources, modifying or deleting files, or even relaying data off site. 

But threats to data are not only confined to cyber attacks on a network. The loss or theft of unencrypted USB drives, unauthorised access to laptops or mobile devices when users are travelling, or sending an email containing data to the wrong person can all result in a damaging data breach.

The first line of defence against cyber threats is a business's employees. By increasing cybersecurity and risk awareness, employees become a human firewall. Comprehensive training for employees and other relevant stakeholders is therefore key to avoiding and mitigating cyber risks. A company must have a robust cybersecurity training programme to ensure employees can recognise potential threats.

Beyond training, the creation of a cybersecurity culture within the organisation encourages an active and positive environment for employees to engage in cybersecurity. Examples include participating in industry consortia or public-private projects relating to cybersecurity. Cybersecurity must be a top priority for management and trickle down to all parts of the organisation, irrespective of size and location.

It is also vital to ensure end-to-end security of the global value chain, not only securing your own organisation but cascading down security requirements to the entire supply chain, including secondtier and thirdtier suppliers.

Cybersecurity strategy

Businesses need a comprehensive cybersecurity strategy to maximise security by understanding the threat landscape and identifying risks and vulnerabilities. This strategy requires a combination of technical measures, human awareness and strategic alignment. It is critical to understand the level of risk that a business faces from a cyber attack and then ensure the appropriate protection is in place. Cybersecurity risk assessments are essential, and include testing for vulnerabilities, inspecting security controls and identifying risk. 

Vulnerability scanning helps organisations identify unknown vulnerabilities in their IT infrastructure and applications, proactively detecting weaknesses in systems to ensure that an organisation stays ahead of risks. New vulnerabilities are exposed daily, which means that regular scanning, testing and auditing are vital to maintaining an enterprise’s cybersecurity resilience.

Certification for products, services and business processes demonstrates that an organisation has a mature cybersecurity approach. Such standards include ISO/IEC 27001 Information Security Management System, ISO/IEC 27701 Privacy Information Management System, the CSA Cyber Essentials mark, and the CSA Cyber Trust mark. 

Having a robust Cybersecurity Management System (CSMS) plays a crucial role in identifying potential vulnerabilities and threats that a business may have. So, each system should be individually assessed with regular audits by a third-party. These countermeasures help establish a strong baseline in cybersecurity and demonstrate to customers and partners that the organisation is well prepared to defend itself against cyber attacks.

The concept of Security by Design was developed to mitigate risks of cyber-attack. This principle can be applied to many different types of system, including individual sensors or devices, integrated operational technologies, and industrial processes. This means cybersecurity should be embedded within products and services from the design phase of that product, service or underlying process.

Building a strong foundation

Business disruption will not only result in loss of productivity, it will also erode customer trust, resulting in a loss of credibility and negative publicity. In the case of a data breach, businesses may face legal consequences from authorities and customers for failing to take appropriate security measures. 

To build a strong cybersecurity foundation and enable a business to get ahead of potential threats before they materialise, a robust infrastructure, clear corporate policies, recognised certifications, and ongoing staff training are needed. Safeguarding sensitive information, proprietary assets and critical systems means organisations can pursue their digital transformation journey with confidence, positioning themselves to fully capitalise on the opportunities that new technologies, such as Industry 4.0, have to offer.

www.tuvsud.com/en-gb/cybersecurity