Shortages of talent, training haunt cybersecurity efforts
Manufacturers face serious cyber security concerns, including those related to Internet of Things-integrated devices and employee error, but they continue to struggle with finding skilled professionals and might be underspending on security training.
Those are some of the findings of a new report from ISACA, a global association of IT professionals, and the Digital Manufacturing and Design Innovation Institute, an organization that supports U.S. factories with technology initiatives.
The organizations surveyed 167 executives from their memberships in August 2018, and found that 78 percent of manufacturing organizations have a formal process for dealing with cyber security incidents, and 68 percent have one for ransomware attacks.
A majority of the respondents (77 percent) expressed confidence in their security team’s abilities to detect and respond to advanced persistent threats, and 74 percent said they think their organization’s cyber security training budgets would either increase or at least be maintained at current levels.
The survey also revealed a number of areas where the industry still needs to make progress, however. Three quarters of the manufacturing companies have a program in place to promote cyber security awareness among their employees, but only 37 percent think their programs are very to completely effective.
Nearly half (47 percent) are spending less than $1,000 on average each year on continuing education opportunities for their staff, and about 10 percent reported that their company spent nothing on these educational opportunities.