Manufacturing Firms Suffer From Under-Performing Cyber Security Providers

Three quarters (75%) of manufacturing organisations admitted their cyber security provider is either underperforming and they’re looking to make changes (27%), or that there’s room for improvement (48%), according to new research by threat detection firm, e2e-assure.

Having a solid cyber security defence strategy is vital for manufacturing organisations, with e2e-assure's study finding the vast majority of Manufacturing organisations (78%) have experienced a cyber attack. Despite this, less than 1 in 5 (19%) would describe themselves as “resilient.”

The research findings highlight the urgent need for a shift in providers’ service offerings with  five key themes or cyber defence becoming apparent:

  • Providers will need to prove their value.
  • Security teams will relinquish more control to trusted providers.
  • Contracts will need to be more commercially flexible.
  • Service and tooling flexibility is a priority for organisations.
  • Quality cyber defence needs to become more accessible to organisations of all sizes

Outsourcing security operations is currently the most popular solution for manufacturing organisations (54%), compared with a hybrid approach (24%) or managing everything in-house (22%).

This is unique in comparison to other sectors e2e-assure surveyed as part of its study, such as Financial Services (45% outsourced vs 40% hybrid vs 12% in house), Healthcare (41% outsourced vs 40% hybrid vs 16% in house) and Professional Services (40% outsourced vs 38% hybrid vs 17% fully in house).  

However, the considerable majority (63%) of CISOs in the Manufacturing sector are either unconfident that threat intelligence is being used as it has had no measurable positive impact (48%), or they know that threat intelligence has not been implemented to detect threats within their environment (15%). Most respondents also said they don’t have flexible contracts (53%), transparent pricing (54%) and real-time visibility of dashboards (56%). In fact, around half (49%) don’t even feel they have client-centric delivery teams who care.  

When asked about their top frustration, CISOs said their providers had been escalating too many false positives (35%). Further pain points included the need to bolt on new services (34%), closely followed by the provider not being proactive (27%) and poor SLA Response Times (26%).  

Clearly, providers are unable to provide the clarity, speed and flexibility required for an industry adapting to innovations like smart manufacturing, and the risks that come with it.

It comes as little surprise then, that when asked “When next procuring cyber security operations what will you be looking for?” the majority (53%) said they’ll be either bringing operations back in house (around a third, 31%), or will be taking a hybrid approach (21%). To fill the gaps where their current providers are falling short, a further 29% said they’ll now be seeking specialist expertise in specific areas.

The CEO of e2e-assure, Rob Demain, commented “Our study sets out to unveil the observations from CISOs and cyber security decision makers as to how their cyber security providers are performing, as criminals deploy increasingly advanced extortion techniques."  

According the the research, most manufacturing organisations current choose to outsource their cyber security operations, but with three quarters saying that they’re underperforming, it’s clear that there is a need for a critical shift to ensure cyber defence providers are meeting the needs of organisations in 2024. 

Providers are on the edge of a huge, missed opportunity in the manufacturing sector. Closer collaboration and a better understanding of the customer’s environment is required to build trust.   

e2e- assure

Image:  Unsplash

You Might Also Read: 

Navigating User Experience, Performance & Security:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible


 

« AI-Driven Cyber Security Is Booming
HackerOne Leads AI-Driven Innovation »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

HANDD Business Solutions

HANDD Business Solutions

HANDD are independent specialists in data protection with expertise at every stage of the Protect, Detect and Respond cycle, from consultancy and design, right through to installation.

evoila

evoila

evoila GmbH is one of the leading providers in consulting, analysis, implementation and management of cloud infrastructure.

Terranova Security

Terranova Security

Terranova is dedicated to providing information security awareness programs customized to your internal policies and procedures.

IDnow

IDnow

IDnow is the world’s fastest, most flexible and most secure identity verification platform, delivering instant verification of the identity documents used by 7 billion people.

Concordium

Concordium

Concordium aims to build the world’s leading open-source, permissionless, and decentralized blockchain with built-in user identity at the protocol level.

Jobsite

Jobsite

Jobsite is an award winning job board in the UK providing job listings in the key sectors of IT, Engineering and Finance.

apiiro

apiiro

apiiro invented the industry-first Code Risk Platform™ that uses developers and code behavior analysis to accelerate delivery and automatically remediate product risk.

Conference on Applied Machine Learning in Information Security (CAMLIS)

Conference on Applied Machine Learning in Information Security (CAMLIS)

CAMLIS is a venue for discussing applied research on machine learning, deep learning and data science in information security.

Bleckwen

Bleckwen

Bleckwen is a proven fraud detection system that helps financial institutions build trust with customers.

CITRA - Information Security and Emergency Response

CITRA - Information Security and Emergency Response

CITRA is responsible for overseeing the telecommunications sector, monitoring and protecting the interests of users and service providers, and regulating the services of telecomms networks in Kuwait.

General Informatics

General Informatics

General Informatics is a team of technology enthusiasts with one mission: to make our clients even more successful through the best use of technology.

Bright Data

Bright Data

Bright Data Inc is the world’s #1 web data platform, enabling organizations to research, monitor, analyze data, and make better decisions.

AdviserCyber

AdviserCyber

AdviserCyber provide Cybersecurity and Compliance Solutions for Registered Investment Advisers.

Hilltop Technologies

Hilltop Technologies

Hilltop Technologies is a cybersecurity company specialized in managed security services and consulting tailored for all sectors from higher education to publicly traded companies.

CyberMass

CyberMass

CyberMass provides Cyber Advisory/Consulting, Professional and Managed Services offering complete cybersecurity as a service protection to businesses.

Infosec Ventures

Infosec Ventures

Infosec Ventures incubates and scales cyber security innovators that solve inefficiencies in cyber security.