Global glass packaging company PGP Glass is on a multi-year journey to modernize its operational technology (OT) and Internet of Things (IoT) infrastructure, aiming for safer and more efficient manufacturing processes. As the company faced a surge in growth—doubling its revenue in three years and expanding its footprint into new regions—it recognized the need for an integrated and secure system for managing its diverse production operations spread across multiple countries.
The manufacturing sector has become increasingly vulnerable to cyberattacks. Research indicates that 80% of manufacturing firms experienced a rise in security incidents last year, with ransomware attacks skyrocketing by 87%. Although PGP Glass has not yet experienced a breach, these statistics motivated its push for modernization.
The company produces vast quantities of glass products daily, emphasizing the importance of energy management, given that energy costs comprise about 20% of its input expenses. To enhance efficiency, PGP Glass integrated advanced AI and ML technologies into its operations.
However, this digital transformation also expanded the attack surface. As PGP implemented IoT for energy monitoring and collection of data from critical manufacturing machinery, it required a robust security framework to safeguard its operations. PGP’s chief digital officer, Sudip Mazumder, noted the importance of real-time energy monitoring and the high number of sensors deployed to facilitate this initiative.
The challenge became evident regarding cybersecurity, as traditional IT security measures did not adequately protect the manufacturing systems. Amit Jha, the global head of IT and cybersecurity, highlighted that the complex mix of SCADA, PLCs, and CNCs in their ecosystem were not designed with security in mind.
With the support of its major stakeholder, Blackstone, PGP Glass began reevaluating its cybersecurity policies and systems, adopting the ISO 27001 standard for information security management. This overhaul prompted them to assess their perimeter, application, and data security systems systematically.
In early 2023, PGP Glass sought out specialized security platforms for OT monitoring, eventually selecting Armis Centrix, which offers expansive visibility into connected devices. This solution allows PGP Glass to effectively track equipment and ensure compliance across its operations—essential for maintaining a secure environment.
The integration of Armis has enhanced PGP’s security posture as they proceed with the rollout across their plants. They expect to complete this integration by mid-2024. The move represents a significant step in closing the gap between their IT and OT security, a challenge many manufacturing organizations face today.
As a result of these efforts, PGP Glass not only maintains a heightened level of security but also experiences lower cybersecurity premiums and stronger compliance. Ultimately, they aim to protect not only their operating systems but also the reputation and trust cultivated with their global clientele.
Overall, PGP Glass’s proactive approach toward OT and IoT convergence illustrates a broader industry trend toward advanced cybersecurity measures in an age where vulnerabilities can lead to substantial financial and reputational losses.
For further reading, see the reports from Omdia and IBM on manufacturing cybersecurity challenges and breaches.
