On a secure path to Industry 4.0 - Management system for information security (ISMS) at SICK
Waldkirch / Hanover, April 2017 – At the start of the Hannover Messe trade fair, SICK is presenting its integrated approaches to IT security to meet the requirements of Industry 4.0. As a specialist in products, systems, and services, SICK works together with its customers to develop tailored responses to the future challenges of the digital world – whether in the field of remote maintenance, remote service, or cloud services, to name just a few examples. All of these efforts provide customers with the assurance that their data is secure.
IT security in the world of Industry 4.0 is a key competitive factor. In times of increasing digitization and networking, state-of-the-art IT structures are a necessity when it comes to ensuring global commercial success and technology leadership. Yet only when the network of parties involved think and act beyond the boundaries of their own production systems is it possible to fully exploit the potential of Industry 4.0. Supplier, manufacturer, and customer processes will then be able to link up seamlessly and automatically.
“The security of information and communication systems is an essential element in Industry 4.0. Without data security, it will be extremely difficult to gain the trust of customers,” explains Andreas Teuscher, CISO at SICK AG and the person responsible for the introduction of the ISMS.
SICK started to introduce a Group-wide information security program back in 2009. It was first launched at the head office in Waldkirch and then rolled out to the German, European, and finally to all international subsidiaries. In parallel to the data protection management system, the information security program was developed, and the two systems work in tandem on technical and organizational measures. The aim was to introduce the specifications of ISO 27001 step by step into the operational processes of the central IT services, to establish an ISMS (plan, do, check, act), and to then have this independently verified by means of certification in 2017.
As part of the information security program, comprehensive security tests, known as penetration tests, were carried out at regular intervals and internal ISO 27001 audits were performed, which have provided information on how to progressively improve the IT security technologies used. Encryption and authentication systems are deployed, which offer reliable protection for data and connections. A security incident event management system is used to evaluate and – where necessary – analyze security-related messages.
In March, SICK AG received the top prize at the Sicherheitspreis Baden-Württemberg 2017 security awards for the introduction of its global information security program.
SICK is one of the world’s leading producers of sensors and sensor solutions for industrial applications. Founded in 1946 by Dr.-Ing. e. h. Erwin Sick, the company with headquarters in Waldkirch im Breisgau near Freiburg ranks among the technological market leaders. With more than 50 subsidiaries and equity investments as well as numerous agencies, SICK maintains a presence around the globe. In the fiscal year 2016, SICK had more than 8,000 employees worldwide and achieved Group sales of just under EUR 1.4 billion.
More information about SICK is available on the Internet at http://www.sick.com or by phone on +49 (0) 7681 202-4183.