Why communication is as vital as technical skills for manufacturing cybersecurity teams
In today’s rapidly evolving manufacturing landscape, technical skills are essential for safeguarding operations. However, communication and collaboration between network and security teams (which often is overlooked) are just as critical. These “soft skills” ensure smooth operations and an effective cybersecurity posture. Without them, companies risk operational gaps that increase vulnerabilities.
In manufacturing, where uptime and safety are paramount, poor communication can lead to costly consequences. Delays in responding to security threats, system outages, or safety issues can arise from misaligned priorities or communication breakdowns between teams.
Take our survey: Add your voice to our 2024 State of Initiative Report
Operational blind spots often emerge due to a divide between network and security teams. A survey of 500 cybersecurity and IT leaders revealed that 60% of enterprises are concerned about poor communication, and 45% have experienced delays in responding to security incidents as a result. In manufacturing, these delays can increase the risk of cyberattacks and equipment malfunctions.
The IT-OT convergence challenge
As manufacturing systems converge, blending IT and OT environments, the divide between network and security teams becomes more problematic. Without a unified approach to securing both IT and OT, vulnerabilities multiply—especially in legacy OT systems. Cyberattacks targeting OT can result in production shutdowns or safety risks, making collaboration between these teams critical.
See also: How automated patching shields vulnerable manufacturing from cyberattacks
Integrated security technologies like continuous threat exposure management (CTEM) are valuable in breaking down silos and ensuring better coordination.
These tools provide real-time visibility into vulnerabilities across both IT and OT environments, allowing network teams to make informed decisions while enabling security teams to proactively manage risks. CTEM helps organizations prioritize exposures, reducing the window of time that threats can remain unaddressed, especially when patching is delayed.
Why cybersecurity coordination is so important: The numbers
According to San Mateo, California-based Kiteworks, vendor of a secure encrypted file-sharing content communications platform, manufacturing sector has experienced a significant surge in its cybersecurity “risk score’ over the past few years, particularly 2022 and 2023 headed into this year.
According to the company’s 2024 Risk Score Index Report, the sector's risk score rose from 4.9 in 2022 to 5.8 in 2023, marking an 18.37% increase.
However, the most recent data for the first half of 2024 shows a dramatic spike in the risk score to 8.6, compared to 3.9 in the first half of 2023. This recent surge represents a 120.51% increase, indicating a severe escalation in cyberthreats or a series of high-impact breaches in the sector.
See also: Crucial role of cybersecurity protection for PLCs
The financial impact of these breaches is substantial, according to another report. According to IBM's Cost of a Data Breach Report, the average cost of a breach in manufacturing increased significantly—from $4.66 million in 2023 to $5.45 million this year, or a 14.93% costs increase.
Manufacturing's cybersecurity landscape shows a trend of increasing vulnerability, according to Kiteworks. The number of data compromises rose by 3.86% from 2022 to 2023, with 259 incidents reported in 2023 compared to 249 in 2022. The first half of 2024 saw a further increase, with 151 incidents compared to 112 in the same period of 2023, or 34.82% more.
The human impact of these breaches has escalated dramatically, according to Kiteworks. In 2022, about 24 million individuals were affected by data breaches in manufacturing. This decreased to 5 million in 2023, but the first half of this year has seen a significant increase in the number of victims, with 50.4 million affected individuals, compared to 1.38 million in the first half of 2023. This represents a 3,552.53% rise in human victims of cyberattacks.
Cross-departmental training
Another significant barrier is a lack of cross-functional understanding. 76% of organizations report that miscommunication between network and security teams has harmed their security posture.
Cross-departmental training is vital to overcoming this challenge. When network and security professionals understand each other’s roles and challenges, they can avoid blind spots and align their strategies.
See also: Manufacturing OT cybersecurity increasingly concerning and costly
Rather than adding more tools or personnel, companies should prioritize collaborative training programs that focus on shared tools and risk assessments. This fosters teamwork and reduces delays, enhancing security efficiency.
Incident response and recovery
Improved collaboration also leads to faster incident response times. In manufacturing, any delay in addressing security incidents can cause downtime or even physical damage to equipment.
A real-world example is the 2019 Norsk Hydro ransomware attack. Norsk Hydro, a global aluminum producer, faced severe disruptions across 40 countries when hit by the LockerGoga ransomware. The company had to switch to manual operations, halting production due to inadequate coordination between IT and OT systems.
See also: Oh how far manufacturing has come in adopting emerging technologies
This attack emphasizes the need for integrated incident response plans. Norsk Hydro's recovery was bolstered by enhanced collaboration between network and security teams and the use of CTEM tools, which enabled faster identification and remediation of threats, minimizing production losses and reducing recovery times.
Valuing both technical and interpersonal skills
The next wave of cyber threats, particularly AI-powered attacks, will demand a workforce that values collaboration as much as technical expertise. The convergence of security and network operations is no longer a luxury—it’s an imperative.
Podcast: AI's influence on the evolution of big data
Manufacturing leaders must cultivate an environment that values soft skills like communication alongside technical proficiency. By implementing cross-departmental training, fostering shared tools, and promoting continuous collaboration, manufacturers can build a stronger security posture, ensuring resilience against evolving cybersecurity challenges.
By fostering collaboration, manufacturers can close the gap between network and security teams. This approach not only streamlines operations but also protects productivity and safety, making organizations more resilient to both traditional and emerging threats.