Trends such as openness, IT/OT convergence and networking are shaping the industry. How do IT and OT security measures interact successfully?

Raphael Vallazza: Openness plays a central role in IT/OT convergence and cyber security, which is why we at Endian rely on open source technology. A particular challenge is to master the balancing act between the short cycles in IT and the long cycles in OT so that the entire infrastructure is protected against the latest threats at all times and without gaps. Companies must also learn that security is a holistic task. This means involving all relevant stakeholders in order to carefully plan and implement all measures.

Companies develop in one country and manufacture in another. How can a global network be secured?

In addition to the geographical distance, there is often a digital distance, as parts of the network are located in different data centers, servers or the cloud. These parts of the network, also known as 'segments', should be kept as small as possible, while communication between them must function smoothly and be secure. In order to define meaningful network segments, companies need to know their complex networks well. Network visualization is a great help here. Hundreds of gateways are usually required to protect large networks, which ideally can be centrally managed, monitored and orchestrated. Lifecycle management is the biggest challenge here, as up-to-dateness must be guaranteed for decades. The 'zero trust' concept is also essential to prevent unauthorized access.

If a company wants to take security measures, what should they pay particular attention to when choosing network and product security?

Cyber security should not add complexity. Good security solutions therefore combine security and simplification. Edge computing, for example, can be used to monitor machines and analyze the data.

The difficulty for industrial companies is that their production lines are usually very heterogeneous. Machines are not designed for monthly, weekly or even daily updates. To prevent their vulnerability from being exploited by attackers, they must be secured from the "outside", i.e. by using gateways. These gateways should enable a variety of security concepts, such as multi-factor authentication (MFA), intrusion detection/prevention or network encryption via VPN.

How important is employee training in terms of security?

Employee training is one of the most important building blocks for security. Attack vectors such as phishing or social engineering repeatedly cause enormous damage. The company's expectations with regard to information security must be clearly communicated and every employee, from working students in accounting to warehouse staff and management, must be aware of the relevant threats. Well-trained employees are not a security gap, but an additional protective shield against cyberattacks.

Endian at the SPS 2023: Hall 6, Stand 251A