Last Wednesday, the Cybersecurity Bootcamp brought together 25 Southwest Ohio manufacturing companies to learn more about the real cyber threat manufacturers face and what they can do to protect themselves.
With more than 60% of small to mid-size businesses falling victim to cyberattacks and closing within six months of the incident, the goal of the event was to provide Ohio manufacturers with the resources and skills needed to kick-start a holistic cybersecurity program.
The half-day workshop included breakfast, lunch, and informative breakout sessions created for three specific job roles. Attendees left with a prioritized risk mitigation plan to take immediate steps towards strengthening, if not starting, their cybersecurity programs.
David Linger, CEO of TechSolve, kicked off the Bootcamp with a welcome and thank you to our event speakers.
Main Event Speakers and Breakout Session Leaders
- Glen Nesbit, Cybersecurity Program Manager at TechSolve
- Traci Spencer, Grant Program Manager at TechSolve (Traci is a member of the National Institute of Standards and Technology (NIST) MEP National Network Cybersecurity Working Group)
- John Skarzynski, Project Management and Deployment Services Supervisor at TechSolve
- Serge Kikonda, Cybersecurity Specialist at TechSolve
- Jim Lash, President of Hylant (former Executive Risk Leader & Cyber Specialist)
- Tim Rettig, CEO of Intrust IT
- Dave Hatter, Cybersecurity Consultant of Intrust IT
We are especially thankful for Tony Strobl, President and Founder of Cincinnati Crane and Hoist, and Troy Mastern, IT Manager at Midwest Filtration, who shared their cyberattack stories with the group. These real-life stories were eye-opening experiences for attendees, and illustrated the urgency for manufacturers to take action to protect their company and their employees today. Watch Tony share his story in the video below:
Key Takeaways from the Cybersecurity Bootcamp
- Cyberattacks come in many forms.
As more, less-sophisticated attackers enter the interconnected world small to mid-size manufacturers face growing risk. News outlets often focus on the blockbuster data breaches like those of Capital One and Facebook. This causes a misperception that small to mid-size companies, like the majority of Southwest Ohio manufacturers, are unlikely targets for cyber criminals. But, attackers do not need to be skilled computer hackers to slip into an unprotected computer system and corrupt data or catch an employee in a phishing scam that exposes the entire manufacturing company and its clients.
- Cybersecurity and compliance are NOT the same.
There is a dangerous misconception among many manufacturers. They believe if they are compliant, they are secure, and alternatively, if they have a cybersecurity system in place, they are compliant. A cybersecurity program can protect a company’s information from attacks by controlling how information is used, consumed and provided. However, compliance is a snapshot of how a company’s security program meets a specific set of security standards as stated by regulatory organizations.
TechSovle recommends NIST 800-171 as a best practice framework. If a manufacturing company is compliant and has implemented the controls as outlined in compliance the company follows best practices to protect themselves.
- Cyber resiliency begins with a strong data protection plan.
Think cyber resilience instead of cybersecurity. A manufacturing company’s resiliency against a cyberattack ensures normal business operations are safeguarded. Resiliency is dependent upon on how well they can manage the attack while continuing to effectively operate business as usual. To do this, a strong data protection program is needed to mitigate the risk of an incident and then, proper and tested incident response protocols are necessary to quickly recover after an attack.
The Cyber Threat Manufactures Face Is Real
The event was a success, as Cybersecurity Bootcamp attendees walked away with a greater comprehension that the implementation of preventative methods and response tools to protect against cyberattacks are essential in today’s interconnected world.
Attendees gained the understanding that manufacturers who practice and execute a strategic cybersecurity plan are poised to have improved recovery time after disruptions, avoidance of potential loss, protection of valuable data and mitigation of risks.
Upcoming Cybersecurity Events at TechSolve
If you missed Techsolve’s Cybersecurity Bootcamp, there are several cybersecurity events in March created for Southwest Ohio manufacturers interested in furthering their cyber risk mitigation efforts.
TechSolve’s Series of Cybersecurity Roundtables for Manufacturers
In this smaller group setting, attendees will receive more one-on-one attention from a cybersecurity expert and move closer to building out their cyber risk mitigation program. The first series of roundtables will take a deeper dive into specific topics and support attendees’ specific job roles and responsibilities as they relate to cybersecurity.
March 17th, 18th, and 19th from 8 – 9:30 am at TechSolve
Spots are limited. Save a seat at your preferred session here: https://techsolve-cybersecurity-roundtables.eventbrite.com
Cybersecurity Resiliency for Manufacturing Defense Contractors
The DoD is zeroing in on cybersecurity where its supply chain is concerned. To continue business or win future contracts, manufacturers will need to take specific steps to protect covered information. The MEP National Network has assembled cybersecurity experts to assist in understanding the consequences of non-compliance and how to achieve and maintain compliance as well as develop a stronger cybersecurity risk program.
March 10, 2020 from 9 am – 3 pm at TechSolve
Register here: https://www.eventbrite.com/e/cybersecurity-resiliency-for-defense-contractors-swoh-registration-93393298871
