This document discusses securing the manufacturing digital thread and outlines reasons for improving security such as business stability, safety, customer requirements, and legal liabilities. It notes potential consequences of security breaches like loss of production, injury, IP theft, and damaged reputation. The document recommends assembling a cross-functional team and following an agile approach to security that starts with one project like network segregation and allows for iterative improvement.

1. Securing the Manufacturing
Digital Thread
Frank Backes
President - CTRAC
Center for Technology, Research and
Commercialization

2. Why Security
Business Stability & Profitability
Improving Safety, Reliability and Availability
Customer/Market Imposed Requirements
Regulatory Requirements
Corporate Image and Reputation
Legal Liabilities

3. Potential Consequences
Physical – Economic – Social
National Security
Loss of Production
Injury
Damage to Equipment
Environmental Damage
Product Contamination
Loss of Intellectual Property
Impacted Reputation

4. WHO
Information
Technology
Operations
Technology
Build and Train a Cross-Functional Team
CSO
Control Engineers
Control Systems Operators
Subject Mater Experts
CIO
Network Engineers
IT Administrators
IT Support

6. TRADITION
Step 1 – Assess Existing Systems
Step 2 – Document Policies & Procedures
Step 3 – Train Personnel & Contractors
Step 4 – Segment the Control System Network
Step 5 – Control Access to the System
Step 6 – Harden the Components of the System
Step 7 – Monitor & Maintain System Security
EFFECTIVE • PREDICTABLE • COMPLEX • SLOW • EXPENSIVE • HARD TO GET STARTED

7. AGILE SECURITY
ASSESS
PRIORITIZE
EXECUTE
ITTERATE
START NOW – ONE PROJECT – INCREMENTAL IMPROVEMENT

8. FIRST PROJECT
NETWORK SEGREGATION
CONTROL NETWORK
COPORATE NETWORK
Users
Control
Server
DMZ
HMI
Data
Historian
Data
Server
Cross
Domain
Guard Protocol B
Protocol A

9. NIST Recommendation

10. QUESTIONS?