Article

The new safety protocol: Manufacturing sharpens focus on cybersecurity

Cybersecurity industry snapshot

May 30, 2024
#
Manufacturing Cybersecurity consulting

For those who work on or near a factory floor, safety protocols have long been a critical priority; appropriate eyewear and steel toe boots are often essential protection around machinery and production lines.

But manufacturing safety has evolved well beyond the physical. As manufacturers become more interconnected—combining traditional IT functions, Internet of Things devices and operational technology on the factory floor—strong cybersecurity measures and thorough risk management are paramount. Further, companies can learn lessons and draw parallels between physical safety and cybersecurity for personnel who have long understood the value of safety but don’t yet see the value of cybersecurity.

“For industrial companies, cybersecurity is the new safety,” says David Carter, an RSM industrials senior analyst. “And as more companies move their data centers into the cloud, it's changing the way they operate.”

Companies need to think holistically about cyber risks to build cyber resilience. That means integrating cybersecurity risk management into the broader scope of enterprise risk management, rather than allowing it to exist in its own silo.

For industrial companies, cybersecurity is the new safety. And as more companies move their data centers into the cloud, it's changing the way they operate.
David Carter, RSM Industrials Senior Analyst

“Some manufacturing leaders might be of the mindset that because manufacturers don’t handle large quantities of personally identifiable information—the way health care or consumer products companies do, for instance—they are at lower risk for a cyberattack,” says Carter. “On the contrary; manufacturing is often among the most vulnerable sectors when it comes to cybersecurity breaches.”

For industrial companies, weak cybersecurity endangers not just computer programs but also factory systems and power plants. Furthermore, the outdated infrastructure of many manufacturers makes them a target, and cyberattacks on operational technology might hinder production, order fulfillment and, ultimately, profitability.

Businesses should tailor their cybersecurity controls and protections based on the risks they face. A few areas for manufacturers to prioritize include identity access management, cloud security processes, zero-trust architecture and penetration testing.

Related insights

Article
Pressure intensifies for private equity cybersecurity
RSM Canada LLP shares insights on how private equity cybersecurity is evolving under increasing investor demands. Read more.
Article
The Cybersecurity Maturity Model Certification final rule is out. Now what?
The CMMC final rule was released on Oct. 15, 2024, and defence contractors should start preparing now to understand and adapt to new requirements.
Case study
Government contractor takes proactive CMMC compliance stance
RSM’s IT and cybersecurity strategy and managed services elevate client success.

Cybersecurity 2024 special report

Our annual insights into cybersecurity trends, strategies and concerns shaping the marketplace for midsize businesses in an increasingly complex risk environment.

"