Operationalizing Cyber Resilience
Today's complex global cyber ecosystem is comprised of sector and cross-sector interconnected and interdependent cyber-physical systems relying upon sustainable cyber resilience to protect, detect, respond and recover from potentially catastrophic cascading cyber incidents.Read More
Speed to Market
Sustaining Quality & Public Trust
Manufacturing Cyber Resilience is dependent upon integration of cybersecurity into lean processes, iterative design, development and testing; customer prototyping, staff innovation and education, supply chain policies and performance metrics measured against organizational goals and objectives.Read More
The Manufacturing Industry stands an extraordinary opportunity to leverage connecting globally trusted public/private cybersecurity assets and resources to manage cyber risk, breaking down long-standing barriers and silos. Strengthening cyber resilience requires innovative leadership to move from a reactive to a proactive stance, engagement and sustainable collaboration, coordination and action....a shared stakeholder responsibility.Read More
The Global Manufacturing Information Sharing & Analysis Organization (GM-ISAO) strengthens manufacturing critical infrastructure cyber resilience via a trusted national and international public/private partnership to advance the ability to prepare for and respond to threats, incidents, and vulnerabilities, and to foster adaptation of best practices supported by workforce education..
WHAT ENABLES MANUFACTURING CYBER RESILIENCE
Manufacturing innovation combines information and operations technology to drive advanced manufacturing (additive manufacturing, advanced materials, SMART/ automated machines. the Internet of Things (IoT) and other technologies) that are igniting intelligent physical production and connected supply chains. Manufacturers must decide how and where to invest in new technologies and identify which ones will drive the most benefits – all of which must be cyber resilient.
Five common Manufacturing business/mission objectives provide the necessary context for identifying and managing all hazards (cyber and physical) risk mitigation efforts. These five core objectives map to key security practices that enable each objective. The Manufacturing sector is then able to better prioritize actions and resources required to sustain cyber resilience in a global marketplace, meeting each individual organization’s business and mission goals and objectives.
CYBER RESILIENCE RISK LEVELS
Manufacturing organizational risk is unique requiring risk-based management strategies that inform and prioritize cybersecurity decisions. A clear understanding of the environment’s business drivers and security requirements (internal and external) including the supply chain is critical. Recurring risk assessments and validation of business drivers support selection of cyber resilience target states and required cybersecurity activities and resources that reflect desired outcomes.
HOW WORKING TOGETHER STRENGTHENS RESILIENCE
NASA/KENNEDY SPACE CENTER
To enable critical infrastructure cyber resilience, a public/private collaborative partnership (led by the private-sector) established the Global Situational Awareness Center (GSAC) at the Global Institute for Cyber Security Resilience (GICSR) at NASA/Kennedy Space Center – the Global Manufacturing ISAO’s (GM-ISAO) headquarters.
The GSAC provides the GM-ISAO, the International Association of Certified ISAOs (IACI), and Information Sharing & Analysis Organizations (ISAOs) worldwide with secure facilities and technology operationalizing critical infrastructure and cross-sector threat intelligence multi-direction information sharing and incident response; a Secure Telecommunications Center (STC); Disaster Recovery Services (DRS); Vulnerability Support; Security Training; and Conference facilities (events, intelligence summits, workshops, seminars, etc.)
FROM A REACTIVE TO PROACTIVE SECURITY STANCE
Moving from a reactive to a proactive security stance requires addressing cybersecurity from a risk-based approach, expanding beyond the physical aspects of security, and advancing the accessibility to greater real-time information exchange of ‘actionable intelligence’ and countermeasure solutions.
The GM-ISAO leverages IACINet, the International Association of Certified ISAOs’ (IACI) secure global threat intelligence, intel sightings, communications (military-grade encryption), and incident response multi-directional information sharing technology.
IACINet serves as the “Center of Gravity” connecting ISAOs worldwide to actionable intelligence. (ISAOs, Security/Technology Partners, US DHS, US-CERT, FBI, NATO (48 Countries), 6000+ organizations, and 139 global CERTs, all working together.
To achieve cyber resilience, the GM-ISAO’s mission includes emerging and promoting a robust network of manufacturing stakeholders to operationalize manufacturing-specific cyber resilience best practices, workforce education, and cyber exercises.
To fulfill this mission, the GM-ISAO working in partnership with the Global Institute for Cyber Security Resilience begins working with manufacturing stakeholders in June 2018 to leveraging existing and new standards, and best practices to develop the “Manufacturing-Specific” Cyber Resilience Operational Guidance…supported by role-based workforce education (instruction-led and online), and cyber resilience (all-hazards) exercises – alignment of physical and cyber response protocols.
General cybersecurity classes currently being offered at NASA/Kennedy Space Center (on-site and on-line).