Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
RON_FUNE
Newcomer I
‎03-12-2024 11:48 PM
‎03-12-2024 11:48 PM

Security Needs and Trends in the Manufacturing Industry

HI All.

I am researching security needs and trends in the manufacturing industry.


I have no knowledge about the manufacturing industry and I'm having trouble.


Please share any resources that would be helpful.
Of course, I'd love to hear from you in the comments!

Labels
Reply
5 Replies
Early_Adopter
Community Champion
‎03-13-2024 12:28 AM
‎03-13-2024 12:28 AM

Which type of manufacturing exactly? I think your first problem is that’s it not really an industry in of itself but a process that’s used in a lot of industries.

For example, Semiconductor fabrication is different from OEMs that source chips they put into end products. Making low value plastic products has little in the way of design IP whilst components for jet engines need to protect not just the designs, but even the processes of manufacture.

It might be good for you to pick 3-4 specific industries that are big enough to have good degrees of standardisation and look at those in turn, at lest you’ll have an apples to apples comparison job as opposed to tungsten carbide drill bits and saw blades vs bespoke ostrich leather artisanal handbags.
Reply
Caute_cautim
Community Champion
‎03-14-2024 12:32 AM
‎03-14-2024 12:32 AM

Hi @RON_FUNE   Are you after Operational Technology (OT) or SCADA systems using critical systems, which simply would cause a major disruption or outage? 

 

The manufacturing industry produces goods from raw materials or assembles products from components. It supplies the domestic and international markets, and some specialist niche market.

 

As my colleague states, which ones are you focusing upon?

 

Regards

 

Caute_Cautim

 

 

Reply
RON_FUNE
Newcomer I
‎03-14-2024 10:04 PM
‎03-14-2024 10:04 PM

Thanks for the answer.
@Early_Adopter 
@Caute_cautim 


The manufacturing security we are considering is about semiconductors, electronic components, automotive components, and industrial machinery in terms of segments.

The reason for this question is that we are currently researching how mid-sized security engineering firms should market to the above segments.

Our recent market analysis has led us to understand that the recent trend in the above segments is (and has been for some time) the expansion of offices and factories in rural areas and overseas, and the expansion of after-sales service.

What kind of security support can you provide for this trend?


We are currently considering the following.
Risk assessment → Solution proposal/implementation → Operation (SOC/CSIRT)
I am concerned about whether we can fulfill the needs of our clients because it is so common.

Translated with DeepL.com (free version)

Reply
Caute_cautim
Community Champion
‎03-14-2024 10:31 PM
‎03-14-2024 10:31 PM

@RON_FUNE   What security frameworks do you/they intend to follow i.e. NIST, COBIT, ISO?  Or particular regional or global standards for compliance purposes? 

 

Where is their pain?  What is their maturity level?  What do they hope to achieve?  I.e. reduction in incidents?  Reduction in impact?  Visibility i.e. detection of threats so that the Incident Response team can proactively step in? 

 

Has a quantitative risk assessment been undertaken and have the financial costs, impact of threats been realised? 

 

Do they have formal regulatory or compliance requirements or are they associated with penalties if they do not fulfill those obligations i.e. demonstrate compliance? 

 

Do the services provided have to be in country, via the cloud or there data sovereignty issues?

 

Just some thoughts to start with.   Remember this is about People, Process and Technology as well as gaining commitment to do something about the current situation.

 

Regards

 

Caute_Cautim

Reply