AI-Driven Cybersecurity: The Key to Defending the Manufacturing Industry Part 2

Sachin Varghese
By Sachin Varghese

March 29, 2018

The Key to Defending the Manufacturing Industry Part 2

In part 1, we outlined the primary challenges manufacturing organizations face when they attempt to develop next-generation cybersecurity.

In this piece, we’ll explore the one simple action that addresses all of these problems, and allows manufacturing organizations to protect themselves with minimal time, effort, and expense.

How to Bring Next-Generation Cybersecurity to Manufacturing

The solution to a manufacturing organization’s security challenges is simple: they must work with a single vendor (If possible) who can provide them with a comprehensive AI-Driven Managed Detection and Response (MDR) service.

First, it is clear that working with multiple vendors, and purchasing multiple products from each vendor, is not working to provide effective cybersecurity to manufacturing organizations. Cisco’s1 report noted this multiplicity of vendors simply created “a confusing picture for security experts”. A single vendor, with a single comprehensive service, will simply the creation of an effective security posture significantly. That said, Paladion’s agnostic AI platform seamlessly integrates with existing solutions and vendors to combat this multiplicity problem.

Second, only an MDR service can effectively secure a modern manufacturing organization’s increasingly porous networks. As Cisco’s report noted, most manufacturing organizations are not even aware of how many, and what, devices are connected to their system. Their inability to identify their digital perimeter makes it impossible to defend that perimeter with a rules-based security approach. Breaches will occur in manufacturing, and security professionals in this industry will require a partner who knows how to protect their IP and production processes once a breach inevitably occurs.

Finally, the sheer quantity of endpoints created, and data produced, by a modern manufacturing organization can only be effectively monitored using an AI-Driven system. No human-only team can effectively sift through this volume of data, let alone identify and correlate anomalous behavior—within the manufacturing organization, and across the supply chain—to effectively identify and respond to complex, multi-channel cyberthreats criminals now deploy.

While the problems facing a manufacturing organization’s attempt to bring next-generation cybersecurity are complex, their solution is simple— they need to partner with a comprehensive AI-Driven MDR provider.

Here’s what such a provider brings to the table.


New Call-to-action


AI-Driven MDR Defense in Manufacturing: Two Case Studies

While we have deployed this security program effectively within many different industries, we have extensive experience deploying our AI-Driven MDR service to defend manufacturing companies.

One large, U.S. based manufacturing company required higher visibility to identify both infected smart devices within their plant, and suspicious user activity. While this organization already had several security layers in place, their increasingly complex environment had recently opened new vulnerabilities. We implemented our AI-Driven MDR services with a focus on threat hunting and monitoring, as well as threat anticipation. We uncovered anomalous user behavior on day one, identified 90 new vulnerabilities points within our first scan, and improved the CISO’s standing from top management within six months.

In another case, we brought our AI-Driven MDR services to a U.S. based scientific and technical instruments company, whose mature security posture became compromised when they adopted the Cloud and increased their network complexity and threat landscape. Within our first demo, we detected several undetected malwares, and soon deployed or classic AI-Driven MDR architecture to their cloud services. We placed special emphasis on establishing collectors in client locations, integrating fully with their existing Cisco AMP and SUMO logic services, and performing 24/7 security monitoring (in addition to threat hunting and incident response from our global SOC). As a result, we expanded their monitoring, hunting, and responding capabilities beyond end points to include networks and users, reduced attacker dwell time from 91 days to 3 days and improved their remediation time from 12 days to 24 hours.

Bring AI-Driven MDR to Your Defense

In both of these cases—and many others—our AI-Driven MDR services provided comprehensive security to our manufacturing clients. After adopting our services, these organizations were able to:

  • Centralize and coordinate their cyberdefense
  • Secure their expanding attack surface
  • Protect their entire supply chain
  • Catalogue and continuously monitor their vulnerability points
  • Identify previously-undetected, and unknown, threats
  • Mitigate damage from breaches and defend their IP
  • Adopted a scalable approach to cyberdefense that will keep them safe no matter how large, complex, and vulnerable they grow as they adopt additional Industry 4.0 technologies



Tags: blog


Sachin Varghese

Sachin Varghese is EVP AMERICAS & CMO at Paladion. He has over 18 years of experience in Cyber Security, and has helped several leading enterprises in North America and Europe build resilient cyber security frameworks.