As technology advances, threats also increase that, at a business level, can impact productivity and administrative and operational processes. Thinking about how to help companies have effective, efficient and continuous cybersecurity, Johnson Controls presents four recommendations to take into account:

Business continuity is a priority.

One of the main damages that a cyber attack can cause to a company is the interruption of the production chain. This translates into loss of, affects its competitiveness in the market and puts the operation at risk in the medium and long term.

“For this reason, operation technologies, which are directly linked to the efficiency of critical functions as well as the availability of the system, take on greater importance every day, focusing on guaranteeing continuous and uninterrupted operation of the processes,” said Linnete Velez-Mcknight, Senior Global Product Marketing and Cyber ​​Experience Leader – Cyber ​​Solutions at Johnson Controls.

It is important to have a provider that offers a permanent incident response team and helps build bridges between information technologies and operational technologies.

Cybersecurity must be personalized.

In the same way that threats change with each potential victim, this is how cybersecurity must act.

Many of the processes within each company are unique, which is why they have specific needs. Threat intelligence is of great importance there, allowing us to identify potential vulnerabilities and critical points where attacks can occur. It is essential to offer an alternative that includes products designed to offer threat intelligence support.

Correctly choose the cybersecurity provider.

The first thing that companies should take into account when choosing a supplier is that they have the ability to offer truly efficient, professional and customizable products and services. If the company has to adapt its work structure to a pre-established cybersecurity model, key processes can be put at risk and production dynamics affected.

Today, more than ever, providers must be able to help the client achieve their objectives and provide them with the knowledge they lack, while providing services and products focused on making cybersecurity more efficient.

Cybersecurity concerns everyone.

Today, protection against cyber threats is a shared responsibility, involving transversally the different areas, whether IT or not, even extending its field of action to suppliers and customers. In this way, a more secure system can be guaranteed.

Finally, it is not only necessary to have formal knowledge of the solutions that can help avoid any incident, it is also important for companies to be at the forefront of knowledge of the different regulations that govern cybersecurity, such as knowing internal policies, guidelines and existing standards. All this will allow us to design a more robust and efficient structure.

Two clear conclusions emerge from these recommendations: in 2022, like never before, secure development practices will lead to product designs that are more resilient to cybercrime, and cybersecurity education will enable customers to address cyber risks in a much more pragmatic way than in the past.