Over the last year or so there has been much written about the Internet of Things (IoT) and Smart Manufacturing initiatives like Industry 4.0, that promise huge potential benefits for manufactures. In particular, we hear about how organizations are recognizing that information created by connecting intelligent things (IoT) and industrial control systems (ICS) to the enterprise business systems is achieving greater visibility into their operations, all helping to make significant operational improvements. To achieve this however requires seamless and secure flow of information from the machines and equipment, to the lines, to the people, to the plants, and to the enterprise levels.
This network convergence, or connected enterprise, comes with some challenges. User’s face an unclear demarcation of network ownership, and cultural difference exist between OT and IT professional who are deploying both enterprise and industrial assets. And probably the most important aspect is that it exposes the connected industrial assets to additional security threats that they typically didn’t have to think about before.
- Educate employees and build their security competency
- Define a strong set of rules the system will adhere too based on a risk analysis
- Design systems against the defined rules
- Verify designs and test to industry standards
- Maintain systems by regular assessments and update
- Respond to incidents and provide awareness to the key stakeholders.