Manufacturing Firms Suffer From Under-Performing Cyber Security Providers

Uploaded on 2024-03-18 in FREE TO VIEW, BUSINESS-Production-Manufacturing

Three quarters (75%) of manufacturing organisations admitted their cyber security provider is either underperforming and they’re looking to make changes (27%), or that there’s room for improvement (48%), according to new research by threat detection firm, e2e-assure.

Having a solid cyber security defence strategy is vital for manufacturing organisations, with e2e-assure's study finding the vast majority of Manufacturing organisations (78%) have experienced a cyber attack. Despite this, less than 1 in 5 (19%) would describe themselves as “resilient.”

The research findings highlight the urgent need for a shift in providers’ service offerings with  five key themes or cyber defence becoming apparent:

  • Providers will need to prove their value.
  • Security teams will relinquish more control to trusted providers.
  • Contracts will need to be more commercially flexible.
  • Service and tooling flexibility is a priority for organisations.
  • Quality cyber defence needs to become more accessible to organisations of all sizes

Outsourcing security operations is currently the most popular solution for manufacturing organisations (54%), compared with a hybrid approach (24%) or managing everything in-house (22%).

This is unique in comparison to other sectors e2e-assure surveyed as part of its study, such as Financial Services (45% outsourced vs 40% hybrid vs 12% in house), Healthcare (41% outsourced vs 40% hybrid vs 16% in house) and Professional Services (40% outsourced vs 38% hybrid vs 17% fully in house).  

However, the considerable majority (63%) of CISOs in the Manufacturing sector are either unconfident that threat intelligence is being used as it has had no measurable positive impact (48%), or they know that threat intelligence has not been implemented to detect threats within their environment (15%). Most respondents also said they don’t have flexible contracts (53%), transparent pricing (54%) and real-time visibility of dashboards (56%). In fact, around half (49%) don’t even feel they have client-centric delivery teams who care.  

When asked about their top frustration, CISOs said their providers had been escalating too many false positives (35%). Further pain points included the need to bolt on new services (34%), closely followed by the provider not being proactive (27%) and poor SLA Response Times (26%).  

Clearly, providers are unable to provide the clarity, speed and flexibility required for an industry adapting to innovations like smart manufacturing, and the risks that come with it.

It comes as little surprise then, that when asked “When next procuring cyber security operations what will you be looking for?” the majority (53%) said they’ll be either bringing operations back in house (around a third, 31%), or will be taking a hybrid approach (21%). To fill the gaps where their current providers are falling short, a further 29% said they’ll now be seeking specialist expertise in specific areas.

The CEO of e2e-assure, Rob Demain, commented “Our study sets out to unveil the observations from CISOs and cyber security decision makers as to how their cyber security providers are performing, as criminals deploy increasingly advanced extortion techniques."  

According the the research, most manufacturing organisations current choose to outsource their cyber security operations, but with three quarters saying that they’re underperforming, it’s clear that there is a need for a critical shift to ensure cyber defence providers are meeting the needs of organisations in 2024. 

Providers are on the edge of a huge, missed opportunity in the manufacturing sector. Closer collaboration and a better understanding of the customer’s environment is required to build trust.   

e2e- assure

Image:  Unsplash

You Might Also Read: 

Navigating User Experience, Performance & Security:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« AI-Driven Cyber Security Is Booming
HackerOne Leads AI-Driven Innovation »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

SealPath

SealPath

SealPath enables companies to protect and control their documents wherever they are: In their PC, in their corporate network, on a partner’s network, in the cloud.

Metasploit

Metasploit

Metasploit penetration testing software helps find security issues, verify vulnerabilities and manage security assessments.

Firebrand

Firebrand

Firebrand is the leader in Accelerated Learning in the field of IT and project management.

ADF Solutions

ADF Solutions

ADF Solutions is a leading provider of digital forensic and media storage exploitation tools.

CyberESI

CyberESI

CyberESI is a Managed Security Service Provider providing 24x7 remote security monitoring and management of your mission-critical networks.

ITsMine

ITsMine

ITsMine’s Beyond DLP™? solution is a leading Data Loss Prevention (DLP) solution used by organizations to protect against internal and external threats automatically.

MagiQ Technologies

MagiQ Technologies

MagiQ produced the world’s first commercial quantum cryptography product that delivered advanced, future-proof network security.

Enet 1 Group1

Enet 1 Group1

Enet 1 Group audits, assesses, recommends, and delivers tested solutions for the ever-increasing threats to your critical systems and digital assets

Lifetech

Lifetech

Lifetech is a software development, product engineering and system integration company. Cybersecurity services include SIEM deployment and training.

Condition Zebra

Condition Zebra

Condition Zebra has wide experience in providing IT Security Services, Training, and Certification in the field of cybersecurity.

PlexTrac

PlexTrac

PlexTrac is a cybersecurity reporting and workflow management platform that supercharges security programs, making them more effective, efficient, and proactive.

SRG Security Resource Group

SRG Security Resource Group

SRG Security Resource Group is a Canadian company dedicated to providing world-class Physical and Cyber Security services.

Vanta

Vanta

Vanta helps companies scale security practices and automate compliance for the industry’s most sought after standards - SOC 2, ISO 27001, HIPAA, GDPR, and other security and privacy frameworks.

Tenable

Tenable

Organizations around the world rely on Tenable to help them understand and reduce cybersecurity risk across their attack surface—in the cloud or on-premises, from IT to OT and beyond.

Entitle

Entitle

Entitle's SaaS-based platform automates how permissions are managed, enabling organizations to eliminate bottlenecks and implement robust cloud least privilege access.

Barrier Networks

Barrier Networks

Barrier Networks are a Cyber Security Managed Service Provider that specialises in Network and Application security.