Manufacturers Must Reduce Risk of Upstream and Downstream Supply Chain Attacks>
– Emily Newton
Manufacturers need to be proactive in addressing both upstream and downstream supply chain security and risk.
Upstream security refers to the secure sourcing and production of components, materials, and products from a supplier or from a manufacturer’s internal production.
Downstream security refers to the secure delivery of the product to customers and to protect against the theft or misappropriation of the product and its supporting materials.
Manufacturers must reduce the risk of attack from upstream and downstream threats by taking steps to ensure the security of their supply chain operations.
This includes introducing effective authentication and monitoring of suppliers, as well as implementing rigorous production protocols, such as the validation of approved suppliers.
Additionally, organizations should aim to ensure the secure movement of parts and systems between manufacturers and suppliers, as well as suppliers and customers.
To mitigate the risks posed by upstream and downstream supply chain threats, manufacturers should also take steps to establish and maintain a strong cybersecurity posture.
This includes using encryption and digital signature technologies to protect proprietary communications and data, and the regular implementation of vulnerability scans, penetration testing, and systems analysis to identify cyber security vulnerabilities.
Furthermore, when developing and deploying systems and products, manufacturers should also provide appropriate security training and product assurance services, as well as cybersecurity risk
Link: https://blog.isa.org/manufacturers-must-reduce-risk-of-upstream-and-downstream-supply-chain-attacks