Service Areas

Cyber Resilience Governance + Workforce Education - Protecting Manufacturing Assets

Cyber Resilience Governance + Workforce Education - Protecting Manufacturing Assets

ENABLING + SUSTAINING GLOBAL MANUFACTURING CYBER RESILIENCE

Understanding Risks, Interdependencies and Business Continuity Risk Management.  Global manufacturing assets are privately owned and operated including manufacturing facilities, processing, product storage and distribution facilities, corporate headquarters, and sales offices.   With facilities, vendors, suppliers and customers located worldwide, Manufacturing stakeholders are vulnerable to a variety of risks – natural disasters, terrorism, cyber attacks and geopolitical unrest.

Central to the Manufacturing sector’s operations are vast, complex and interdependent supply chains.  The global web of transportation pathways, and the continuing advancement of technologies, industrial controls systems, and cyber and energy networks maximize supply chain efficiencies – but also decrease the ability to absorb disruptions from cyber and physical (all-hazards) threats and incidents.

RISK MANAGEMENT POLICIES + PROCEDURES

The Global Manufacturing Cyber Governance Center (GM-CGC), via a public/private partnership has the tools, resources, infrastructure, projects and programs that support Manufacturing sector-wide risk management and maximize limited resources – enabling economies of scale.

Advance Manufacturing Sector Cyber Resilience - Adding a New Layer of Cybersecurity
Identify Assets and Risks - Risk Asessment
Provide Cost Mitigation Strategies to Reduce Cyber Risk
Manufacturing Sector-Specific Cyber Resilience Operational Guidance - Cybersecurity Roadmap
Manufacturing and Organization-Specific Role-Based Cyber Resilience Education

GOVERNANCE – Governance is the set of responsibilities and practices exercised by those responsible for an organization (e.g., Board, Executive Management) with the goal of providing strategic direction, ensuring that objectives are achieved, ascertaining that risks are managed appropriately, legal and regulatory compliance objectives are met, and verifying that the enterprise’s resources are used responsibly.

CYBERSECURITY GOVERNANCE – The component of organizational governance that addresses dependence on cyberspace in the presence of adversaries, and  to ensure compliance to government and/or regulatory requirements.

Identify - Foundational elements (systems, assets, data, capabilities, etc.) critical to the organization
Protect - Develop and identify appropriate safeguards to ensure delivery of critical infrastructure services.
Detect - Identify and implement the tools to identify the occurrence of a cyber incident
Respond - Use the tools and activities to support cybersecurity event containment
Recover - Foster resilience and restore capabilities or services impaired by the event.
Global Manufacturing Information Sharing & Analysis Organization (GM-ISAO)

Global Manufacturing Information Sharing & Analysis Organization (GM-ISAO)

THREAT INTELLIGENCE INFORMATION SHARING + COORDINATED RESPONSE

Cyber threats represent one of the most critical challenges we face on a global scale.  Moving from a reactive to a proactive stance to defeat cyber adversaries requires having the capacity and capabilities to respond to cyber risk.  Leveraging the Global Manufacturing ISAO’s unifying coordinated information sharing and response infrastructure ensures integration of and access to existing and future protection strategies.

The complexity of coordinating organizational, sector and cross-sector cyber resilience efforts to defend against asymmetrical attacks on assets, systems and networks represents an expensive and complicated challenge, the nature of which limits the return on investment from current approaches that only provide a single overarching program to achieve cyber resilience and cybersecurity goals.  In today’s active cyber ecosystem, current “continuous monitoring” practices represent only one aspect of understanding the multiple layers that must be identified as possible risks.

The best proactive defense is the identification or risks derived from the active real-time discovery and reporting (informations haring) of attack categories and countermeasure solutions by individuals working with multiple enterprise functions that enable and sustain uninterrupted processes across systems, assets and networks.

The Global Manufacturing Information Sharing & Analysis Organization (GM-ISAO) is a Member of the International Association of Certified ISAOs (IACI).  IACI serves as the trusted “Center-of-Gravity” for the global community of ISAOs to advance cyber resilience information cooperation, collaboration and coordination within and across sectors, addressing interdependencies worldwide.  IACI represents a public/private collaborative partnership led by the private sector working in collaboration with government and international critical infrastructure stakeholders.

Advance Manufacturing Sector Cyber Resilience - Adding a New Layer of Cybersecurity
Identify Assets and Risks - Risk Asessment
Provide Cost Mitigation Strategies to Reduce Cyber Risk
Manufacturing Sector-Specific Cyber Resilience Operational Guidance - Cybersecurity Roadmap
Manufacturing and Organization-Specific Role-Based Cyber Resilience Education