Rethinking Remote Access Governance in Manufacturing Amid Ransomware Threats
Rethinking Remote Access Governance in Manufacturing Amid Ransomware Threats
In recent times, ransomware incidents targeting manufacturers and industrial suppliers have been on the rise, leading to urgent calls for a reassessment of remote access governance strategies. Secomea, a prominent name in secure remote access, emphasizes the need for manufacturers to rethink how they manage remote access to their operational technology (OT) systems.
The Need for Remote Access
Remote access has become increasingly vital for manufacturers. With the growing reliance on remote monitoring and troubleshooting, third parties such as machine builders and system integrators require access to maintain critical machinery and equipment effectively. While this accessibility enhances operational efficiency, it also opens the door for potential cyber threats as ransomware groups intensify efforts to exploit these access points.
Knud Kegel, Secomea’s Chief Technology and Product Officer, highlights a common oversight: while many companies focus on preventing cyber intrusion, they often neglect evaluating the extent of access granted to those successful infiltrators. In industrial environments, where continuous operation is crucial, the main challenge lies in ensuring that this access remains controlled, time-limited, and visible.
Risks of Permanent Access
One of the major vulnerabilities identified by Secomea revolves around the practice of granting permanent access to external parties. Such arrangements can result in cybercriminals gaining unrestricted freedom within industrial environments once an initial compromise occurs. The current cyber threat landscape necessitates a delicate balance between operational access, cybersecurity measures, and supplier controls.
Recommendations for Enhanced Security
Secomea recommends manufacturers address these concerns through the following strategies:
1. Limit Permanent Access: Access should only be granted to suppliers when necessary and withdrawn post-task completion. By restricting access windows, the potential for unauthorized use and credential theft is reduced significantly.
2. Improve Visibility and Accountability: Companies should implement measures to track who accesses their systems, along with timestamps and the actions performed during these sessions. Detailed audit trails enhance compliance efforts, aid investigations, and facilitate communication with cybersecurity insurers.
3. Prepare for Risk Control: When suspicious activity is detected, security and operations teams need effective tools to isolate affected resources, mitigating disruptions across production environments.
4. Implement Just-in-Time Access: Instead of maintaining ongoing remote connections, manufacturers should adopt a model where suppliers are granted access precisely when needed.
5. Adopt Least Privilege Permissions: Both users and suppliers should have minimum access rights necessary for performance.
6. Establish Useful Audit Trails: These should be in place to support compliance and forensic analysis.
7. Quick Resource Isolation Capabilities: In the event of an attack, businesses need the ability to rapidly isolate compromised systems.
As the landscape of ransomware threats evolves, effective governance of OT remote access becomes increasingly critical. Secomea's search for enhanced cybersecurity reveals that it is no longer sufficient to merely establish remote connectivity; it is essential to manage that connectivity effectively. Companies that can limit, monitor, and control access are generally better positioned to minimize the operational impact of any cyber incidents.
Conclusion
Kegel underscores a fundamental shift: ultimately, resilience against ransomware within the industrial sector increasingly reflects how businesses govern remote access to their OT systems. Focusing on just-in-time access for suppliers, maintaining visibility on remote sessions, and having robust isolation capabilities are now regarded as foundational cybersecurity measures. As manufacturers adopt these recommendations, they improve their overall cybersecurity posture and ensure continuity in an increasingly challenging operational landscape.
About Secomea
Secomea is committed to providing secure remote access solutions tailored specifically for industrial networks and operational technology. With over 8,000 manufacturers relying on Secomea to connect people, systems, and machines securely, the company facilitates safe collaboration and continuity in manufacturing operations. Secomea's reputation has been recognized recently, being noted as a representative vendor in the Gartner® Hype Cycle™ for Cyber-Physical Systems Security 2026.
Topics Consumer Technology)
【About Using Articles】
You can freely use the title and article content by linking to the page where the article is posted.
※ Images cannot be used.
【About Links】
Links are free to use.