Blog

Managing OT Risk Exposure in Smart Manufacturing

Male engineer in high visibility vest uses computer to check device cybersecurity while overlooking automotive plant

The manufacturing industry is increasingly seeing a convergence of operational technology (OT) with enterprise IT and cloud infrastructures in today’s digital landscape. With artificial intelligence (AI) and machine learning being incorporated, the benefits of bringing together these environments that were once operating in silos are manyfold, and undeniably, have opened doors to many new opportunities for manufacturers.

As organizations turn to technology for efficiency and innovation, the need to safeguard their OT environments against cyber threats becomes increasingly paramount. Understanding the need to protect their digital ecosystem, key decision makers must start looking for cybersecurity solutions. Yet, with the myriad of tools and solutions in the marketplace, a survey conducted by Rockwell Automation last year revealed that one third of manufacturers globally face “technology paralysis” – the inability to decide between technology solutions.

To help manufacturers better understand the threat landscape and identify the tools they need, this article delves into the critical role of threat intelligence in managing OT risk exposure, covering some of the key factors that shape risk prioritization. Collaborating with threat intelligence experts Claroty and CrowdStrike, we break down the multifaceted approach to risk management in manufacturing, and how organizations can take proactive steps in the right direction to mitigate risks for more secure and resilient operations.

Micro-drivers influencing the production strategy

Before we select the tools needed to mitigate cybersecurity risk, we need to first understand the landscape in which manufacturers operate. In this post-pandemic world, a lot of reskilling is taking place, with mass customization becoming a norm. Speed has become the basis of competition as companies push out new products at a faster pace than ever before. We’re also faced with geo-political challenges that can impact production.

Against this backdrop, the annual State of Smart Manufacturing Report published by Rockwell Automation revealed that cybersecurity is now one of the top five external risks for organizations. It is therefore unsurprising that cybersecurity knowledge was stated as the top skill employers seek in 2024. On the bright side, it is also predicted to be the second most impacted by AI within the next three years, with quality taking the lead.

Cybersecurity solutions that meet every need

As technology and AI advance, so does the cybersecurity landscape. This is why businesses should work with industry experts to ensure they have the latest defenses in place. The NIST cybersecurity framework – an outline of best practices in cybersecurity – helps manufacturers decide on the key areas to focus on so they can choose the best solutions to invest in.

With a focus on protection and detection in particular, Rockwell Automation works with Claroty to provide a comprehensive threat detection solution. The goal is to gain visibility across the network and rapidly identify threats across the OT and industrial control systems (ICS) environment. Leveraging a passive networking technology, the threat detection solution monitors cybersecurity vulnerabilities at the deepest levels without disrupting the workflow. It is important to note that cybersecurity is not a one-off initiative. Long-term support is necessary, and together with Claroty, Rockwell Automation ensures that organizations are protected before, during, and after an event.

As more devices get connected across the OT network, protecting endpoints has become a crucial aspect of cybersecurity. From laptops, human machine interfaces (HMIs), switches to IoT devices, it can be challenging to ensure that every endpoint is secure at all times. Rockwell Automation taps on the expertise of CrowdStrike for endpoint protection services. As a recognized leader in endpoint protection solutions, CrowdStrike has an advanced cloud-native platform that combines multiple detection and prevention methods into an integrated approach, via a single lightweight agent. This ensures round-the-clock monitoring without any disruption to the day-to-day business operations.

OT endpoint detection and long-term solution (best practices)

Since cybersecurity focuses on prevention, it can sometimes be challenging to gain metrics that convince senior management to invest in cybersecurity. However, given the global average spend of $4.5 million on data breaches in 2023, implementing proper precautions in place could save businesses millions of dollars. With its range of products, Rockwell Automation, CrowdStrike, and Claroty have helped large manufacturers safeguard themselves against vulnerabilities.

To illustrate, a semiconductor manufacturer in Taiwan faced a cyberattack incident back in 2018 due to the lack of visibility across its network. By implementing the Continuous Threat Detection solution, the organization has been able to identify normal network behavior and detect any exceptional behavior, giving clear visibility across its fab’s operations without hampering its production line. As a result, the organization now has 13 of its fabs fully online, and can operate with a peace of mind knowing that they are protected against cyber attackers around the clock. solution, the organization has been able to identify normal network behavior and detect any exceptional behavior, giving clear visibility across its fab’s operations without hampering its production line. As a result, the organization now has 13 of its fabs fully online, and can operate with a peace of mind knowing that they are protected against cyber attackers around the clock.

Meanwhile, Church & Dwight, the manufacturer behind household products like Arm & Hammer and Oxiclean, leveraged Rockwell‘s services to identify where to start on their cybersecurity journey, and how to align solutions with its business needs. The organization then cultivated organization buy-in before executing an OT security strategy across the enterprise. With a clear cybersecurity strategy in place, the company can rest assured knowing their network is secure around the clock.

In cybersecurity, every second counts. Threat actors never stop working, and organizations that are serious about safeguarding their OT environments should not delay taking action.

Your OT networks are crucial assets which need to be safeguarded at all times. Together with Claroty and CrowdStrike, we provide a combination of domain expertise and knowledge with the latest technologies to keep OT systems safe, so you can spend time focusing on your business.

Published July 20, 2024

Saby Goswami

Cybersecurity Commercial Leader, Asia Pacific, Rockwell Automation

With over 20 years of experience in Industrial Information Infrastructure, Cybersecurity, and Advanced Data Analytics, Saby leads Rockwell Automation's Connected Services business suite in Asia Pacific. Connected Services simplifies IT-OT convergence and enables The Connected Enterprise journey with robust and secure information infrastructure and Managed Services.

David Ferguson

Sales Engineering Manager, CrowdStrike

David Ferguson is a Sales Engineering Manager at CrowdStrike, his technical knowledge expands over 16 years of experience in the Telecommunications, IT & Security industry, building and working in various technical, operational, and strategic roles for defensive security teams. At CrowdStrike, Ferguson is responsible for the Corporate Market segment sales engineers, supporting Australia and New Zealand. He is passionate about cybersecurity and has a keen interest in technologies that incorporate machine learning and artificial intelligence.

Vijay Vaidyanathan

Vice President, Solution Engineering, Asia Pacific, Claroty.

Vijay works predominantly on the front lines of customer cybersecurity risks and challenges for their plants, factories and industrial automation control systems. Vijay has a passion for consulting on plant operational intelligence and security solutions. During his career, Vijay has held senior roles with HollySys, Blue Chips Technology, and now heads the Solutions Engineering team in Claroty APJ. In the process, he has helped industrial organizations with critical infrastructure understand gaps in their quest for highly productive, available and secure facilities.

Adrian Raiola

Application Consultant, Rockwell Automation

With 18 years of experience at Rockwell Automation and over 25 in the Automation Industry, Adrian has been at the forefront of IT/OT convergence and the evolution of digital transformation. As part of the Network Security & Services (NSS) team, he draws on this knowledge to help ensure the successful and cyber-secure architecture and delivery of OT infrastructure for today's and tomorrow's Industrial Automation environments.