Advanced approaches to manufacturing and supply chain management increasingly rely on data collection, data analysis, and technological connectivity to achieve energy and other efficiency gains. These additional connectivity points, along with the increased number of attacks by hackers and other bad actors on manufacturing facilities, require new approaches and increased diligence to avoid downtime, loss of intellectual property, and other damages that can be realized through cybersecurity vulnerabilities.
As systems to control energy-using manufacturing equipment become more connected to the internet, it is important for plant operations staff to have an understanding of cybersecurity risks and to coordinate risk management activities within their organization. By addressing risk areas, you can protect your business from damage to information or systems, intellectual property theft, regulatory fines/penalties, decreased productivity, or a loss of trust with customers.
Essential Resources for Cybersecurity
Once an organization gains a basic understanding of cybersecurity risks and vulnerabilities, a more detailed assessment can be used to determine mitigation actions and security controls. View the resources below to find additional support for addressing Cybersecurity in your facility.
___________________________________________________________________________________________________________________________________
IAC INDUSTRIAL CONTROL SYSTEMS CYBERSECURITY ASSESSMENT TOOLS
The IAC Industrial Control Systems Cybersecurity Assessment Tool includes 20 simple questions to characterize industrial control systems and plant operations. The tool then provides a high-level assessment of risk (high, medium, or low). The companion User Guide provides additional context to help partners understand how certain business practices lead to cybersecurity risks.
NATIONAL INSTITUTE FOR STANDARDS AND TECHNOLOGY
- NIST - Manufacturer's Guide to Cybersecurity (for small to medium-sized manufacturers)
- NIST - Cybersecurity Fact Sheet
- NIST - Interactive Infographic: How secure is your factory floor?
OTHER RESOURCES
- Information Trust Institute - Software tool to help manufacturing companies meet Cybersecurity Standards
- Cisco Cybersecurity Report
- Verizon Data Breach Investigations Report
Exploring Cybersecurity Through the National Labs
The Department of Energy's (DOE) National Labs have decades of research and development experience that industrial partners can benefit from. Capitalizing on this specialized expertise, the labs can address large-scale, complex challenges like cybersecurity with a multidisciplinary approach that translates science into industry innovation.
For over two decades, PNNL has worked in partnership with government agencies and industry to deliver first-of-a-kind solutions to protect the nation's critical strategic assets. The staff at Pacific Northwest National Lab are committed to advancing resiliency and cybersecurity capabilities to thwart malicious intent to infiltrate and damage our national security via digital means.
To explore cybersecurity with PNNL, click here.
LLNL conducts research and develops game-changing tools to meet the nation’s top priorities to enhance national security in a highly interconnected world. Their work focuses on developing a distributed approach to real-time situational awareness, advancing predictive and scalable simulations to design and analyze complex systems, and creating analytic methodologies and data management tools that are needed for the next generations of intelligence applications.
To explore cybersecurity with LLNL, click here.
Researchers at ORNL work with federal, state, and local agencies to develop and deploy technologies to improve the ability to detect, prevent, respond to, and recover from acts of terrorism as well as natural disasters. In addition to nuclear detection technologies, the lab is providing new ways to identify small quantities of explosives, hazardous chemicals, and biological materials. ORNL also develops systems for threat assessment, risk awareness, and emergency planning and response, as well as new capabilities for first responders.
To explore cybersecurity with ORNL, click here.