Securing the Industrial Enterprise

1. ACHIEVING CYBER RESILIENCE ININDUSTRIAL EQUIPMENT SECURING THEINDUSTRIAL ENTERPRISE

2. 2 Being connected is the new normal but can increase cyberattack risk Greater connectivity provides an opportunity for industrial equipment manufacturers to: • Improve service levels • Be more responsive to dealers and customers • Make better use of data of industrial equipment executives said that “cyberattacks are a bit of a black box, we do not quite know how or when they will affect our organization.” 74% Copyright © 2019 Accenture Security. All rights reserved. 2

3. There is a disconnect between confidence… Industrial equipment companies are high-performing in just 19/33 capabilities 19/33 Industrial equipment executives are confident about their cybersecurity capabilities 8/10 Cyberattacks are doubling threats and are more sophisticated …and capability Copyright © 2019 Accenture Security. All rights reserved. 3

4. Three areas can positively impact industrial equipment cyber resilience: Protect core assets Make hyper-connectivity a security opportunity CISOs must become a business enabler Copyright © 2019 Accenture Security. All rights reserved. 4

5. Protect core assets Security basics are lacking. Industrial equipment companies need: • A product security response team • Manufacturing that adheres to regulations and industry standards • Networks that are properly segmented • Advanced security monitoring Industrial equipment executives recognize they need to improve network security 46% Industrial equipment executives recognize they need to improve security monitoring 44% Copyright © 2019 Accenture Security. All rights reserved. 5

6. 6 Make hyper-connectivity a security opportunity Industrial equipment companies can rotate to the new if they: • Make their defenses more robust • Convert data into economic reward • Imbed a product security program that addresses gaps in the product lifecycle Industrial equipment executives say only two-thirds of their organizations are actively protected by their cybersecurity program 66% Copyright © 2019 Accenture Security. All rights reserved. 6

7. CISOs must become a business enabler Security behaviors and roles must evolve so CISOs can: • Protect the digital value chain, not just information security • Be business savvy and support business objectives • Be agile and ready to demonstrate the art of the possible to the CTO and CIO Industrial equipment executives say that cybersecurity budgets rest with the CEO or Executive Committee 29% Copyright © 2019 Accenture Security. All rights reserved. 7

8. From the individual employee to strategic corporate decision makers, cybersecurity is an opportunity to improve and enhance the business. A window of opportunity Industrial equipment executives lack confidence that their organizations can protect connected devices/Internet of Things devices as they are deployed in factories, warehouses, or equipment. 20% Copyright © 2019 Accenture Security. All rights reserved. 8

9. 01 02 03 Secure core assets Establish a security-by-design culture Evolve the CISO role Focus on the fundamentals. Regularly harden and protect core assets and pressure-test resilience. Keep pace with the changing nature of connected environments. Develop a more proactive security posture that is fully operational from the outset. Next-generation CISOs should be business-minded and adept at communicating effectively across all levels of the business. Manufacturing change actions to achieve cyber resilience Copyright © 2019 Accenture Security. All rights reserved. 9

10. 313 Industrial equipment respondents Australia Brazil Canada France Germany Ireland Italy Japan Netherlands Norway Singapore Spain United Arab Emirates United Kingdom United States 250 companies with revenues up to US$10B About the research Survey conducted 2018 15countries Respondents titles Chief Information Officer Chief Security Officer Chief Compliance Officer Chief Risk Officer Chief Security Architect Corporate Security Officer Copyright © 2019 Accenture Security. All rights reserved. 10

11. www.accenture.com/industrial-cyber-resilience /showcase/accenture-industrial /showcase/accentureconsulting About Accenture Accenture is a leading global professional services company, providing a broad range of services and solutions in strategy, consulting, digital, technology and operations. Combining unmatched experience and specialized skills across more than 40 industries and all business functions—underpinned by the world’s largest delivery network—Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. With 469,000 people serving clients in more than 120 countries, Accenture drives innovation to improve the way the world works and lives. Visit us at www.accenture.com. Copyright © 2019 Accenture. All rights reserved. Accenture, its logo, and New Applied Now are trademarks of Accenture. Stay Connected @AccentureInd @AccentureConslt Note: Unless otherwise stated, the statistics in this point of view represent retail respondents in the survey report “Gaining ground on the attacker: 2018 State of Cyber Resilience,” Accenture 2018. Read the full report: