Comment: Turning security needs into efficiency gains

Manufacturing is an all-encompassing industry, spanning across verticals and enabling society to function efficiently. From automotive, textiles, aerospace and defence to Fast-Moving Consumer Goods (FMCG) - manufacturing is the backbone of our society. 

The criticality of manufacturing has made this sector a top target for cyber criminals. IBM's X-Force Threat Intelligence Report highlights that over 25 per cent of security incidents occur within the manufacturing space, making this the most targeted sector for the third consecutive year.

This means manufacturers are facing pressures from all directions. Greater demand means digitisation initiatives must be accelerated, while heightened risk of attacks means regulators are holding manufacturers to higher standards. The EU’s new CRA Act, which particularly targets manufacturers producing Internet of Things (IoT) devices, can lead to a potential €29m compliance burden.

To gain a competitive advantage, manufacturers must transform their approach to cybersecurity, using it to drive focused efficiency.

Balancing IoT growth and cybersecurity in smart manufacturing

With manufacturing becoming smarter, companies generate more data than ever before. IDC forecasts that global data volumes will increase to 175 zettabytes by 2025, and the Industrial Internet of Things (IIoT) plays a key role in that growth.

Collecting that data is only one piece of the puzzle. The data collected from smart appliances, for example, must be digested and evaluated to create useful action. Through a series of sensors, devices, servers and endpoints for tracking, management and control, data is disseminated for bi-directional communication. However, with increased connectivity comes increased risk. The operational technologies that connect the IoT ecosystem to improve supply chain management are also potential weak points that can be exploited by bad actors - compromising safety, operations, equipment, productivity and budgets.

Attackers are targeting software, cloud or other third-party service providers to breach manufacturing supply chains. This enables hackers to gain access to personally identifiable information from multiple manufacturing customers by successfully attacking just one third-party firm. A Make UK report found that providing monitoring and maintenance access to third parties is the third most frequent reason for a cyber incident among manufacturers.

While IoT is increasing the attack surface of manufacturers, the massive volumes of data produced by IoT devices can become a weapon to build cyber resilience while also driving productivity gains.

Log data is key for cyber resilience and productivity

Forward-thinking manufacturers can leverage advanced tools to enhance productivity while ensuring compliance. By harnessing security data, manufacturers can monitor operations, mitigate risks, and transform cybersecurity into a competitive advantage.

For example, IoT devices generate log data that tracks access, frequency of access, and adherence to approved procedures on networks. This data is crucial for maintaining device and network safety, but it also provides insights into operational efficiency, such as the frequency of remote calls by engineers or the number of weekly device disruptions. Additionally, log data can reveal patterns in new product registrations and geographical differences. This information has significant business value, enabling manufacturers to streamline operations and drive growth.

Data collected by cybersecurity tools such as SIEM solutions ties into security and compliance, which are integral to performance and availability management. Viewing cybersecurity merely as a cost overlooks its additional value beyond cyber resilience. Solutions like SIEM capture data that provide greater visibility into operations and system communications.

By centralising log management, technology can aggregate data from various sources, ensuring continuous oversight of industrial processes and systems. With advanced analytics and machine learning, these systems can identify potential security threats and anomalies, enabling prompt, automated responses to mitigate risks.

Hyperconnectivity provides numerous benefits in manufacturing. The real-time data exchange between systems, machines and processes exponentially improves operational efficiency. The visibility helps to improve coordination between manufacturers, suppliers and distributors - creating a smarter and more agile manufacturing environment. But the sector is only as good as its service, which needs to be prompt, accurate and without risk.

Ross Brewer, vice president and managing director, EMEA Graylog