A rating of the existing security measures serves as a basis for further steps. © Allgeier Core

Security rating tools are also playing an increasingly important role with regard to IT and information security in the industry. A security rating, for example, enables a manufacturer to carry out a suitable risk assessment for its entire supply chain and derive appropriate measures from this. The results can also be incorporated into the drafting of contracts with partners and the conclusion of cyber insurance policies. These include the actual situation in their calculations and reduce the insurance premium accordingly if the level of protection is high.

Proactively protect against cyber threats

However, everyone should be aware of this: Hacker attacks cannot be prevented and it is only a matter of time before it is your own company's turn. New cases are constantly appearing in the media, making it clear that cyberattacks are now also part of everyday life in industry. For example, malware is infiltrated into the entire network via a simple employee account, bringing production to a standstill.

Another problem is that a hacker attack is not always immediately noticeable. Particularly perfidious attacks such as Winnti, for example, infiltrate malicious code into the network unnoticed in order to access sensitive data and carry out targeted industrial espionage.

In order to act proactively and prepare your own company for a cyber attack in the best possible way, the current security status should be put to the test and a company-wide security strategy developed. For example, what is the security and availability of the process systems, and how can the physical protection of employees, machines and the environment be guaranteed?

What organizational solutions are recommended to ensure productive and secure collaboration between IT and OT (operational technology)? And how can the probability of occurrence and the consequences of widespread attacks such as WannaCry or NotPetya be minimized and potentially fatal consequences of attacks such as TRISIS (targeted attacks on industrial security control systems) be prevented?

Industrial security: not tomorrow, but today!

Generally speaking, there is never 100% security. However, an appropriate and comprehensive security strategy helps to optimally prepare the company for an emergency. In this way, production downtimes can be prevented and safety within the automation process can be guaranteed. This not only plays an important role for your own company, as the entire supply chain depends on the availability of each individual partner.

A cyber attack and the resulting delays in the supply chain or even a complete production shutdown can therefore also result in long-term reputational damage. Proof of secure processes (e.g. certification in accordance with IEC 62443) can strengthen the trust of partners and customers in the long term.

In everyday working life, however, they often lack the resources to familiarize themselves independently with the topic of industrial security and consider all relevant factors. At this point, security companies such as Allgeier Core and its partner Bluecept support industrial companies with various measures. For example, employees are not faced with the challenge alone, but are given a basic understanding of the complex topic of industrial security in introductory workshops. However, it is important to build on this to develop an individual security strategy in order to protect the company from network threats in the long term.

Marcus Henschel is Managing Director of Allgeier Core