How SoterICS helps Atlas Copco enhance their OT security

15/04/2024|Customer cases|

Atlas Copco and SoterICS: A Partnership for a Secure Future

SoterICS began its partnership with Atlas Copco, a global supplier of innovative solutions in compressed air and vacuum, energy, pumps, electric tools, and assembly for over 60 years, in 2022. Today, they are a key extension of the Operational Technology (OT) security team.

Their solutions help Atlas Copco

  • gain insights into its production environment.
  • keep their production up and running.
  • manage their cyber risks.
  • maintain a security-first culture for OT.

Atlas Copco and SoterICS: A Partnership for a Secure Future

SoterICS began its partnership with Atlas Copco, a global supplier of innovative solutions in compressed air and vacuum, energy, pumps, electric tools, and assembly for over 60 years, in 2022. Today, they are a key extension of the Operational Technology (OT) security team.

Their solutions help Atlas Copco

  • gain insights into its production environment.
  • keep their production up and running.
  • manage their cyber risks.
  • maintain a security-first culture for OT.

Challenges

OT security has become a critical concern for manufacturing companies worldwide, as they need to keep up with regulations and safeguard their operational efficiency. Atlas Copco, a global industrial company, recognised this urgent need. They sought an OT security specialist with hands-on experience and a can-do mentality to secure and streamline their operations.

Goals

Atlas Copco approached us to improve network segmentation and visibility across 20 global manufacturing sites for their Vacuum Technique (VT) business.

  • Segment OT from IT while maintaining production uptime.
  • Gain insights into their production environment.
  • Create a sense of awareness and urgency across the organisation.

Strategy, Tactics & Implementation

We utilised our proven methodology to transform Atlas Copco’s high-level requirements into a detailed and manageable plan. We adopt a careful and transparent approach when it comes to network segmentation. By involving people from the business side and obtaining their approval, we can proceed with our work more quickly and comprehensively. The uptime of production and the safety of personnel are our top priorities. Throughout the entire process, we strive to uphold both aspects.

This plan outlined our approach for their security upgrade journey:

  • OT security and program governance
  • Improving network segmentation and visibility
  • Implementing innovative security solutions, including firewall finetuning
  • Assessing the maturity level of new product companies

OT security is as much about people as technology. Therefore, we insisted on being on-site and gathering feedback directly from the people who would use our technology. This ensured our solution was not only effective but also user-friendly.

We also prioritised clear communication. Our recommendations were designed to be easily understood by senior management yet detailed enough to guide specific decisions. We know that time is money, especially in manufacturing, so we kept meetings to a minimum, preferring to demonstrate our expertise through tangible results instead.

Results

  • Seamless integration and stakeholder engagement
    Our team successfully integrated newly acquired companies into Atlas Copco’s operations. We began with a comprehensive assessment and collaborated with key business stakeholders to ensure a smooth and inclusive integration process. This approach streamlined the merging of systems and processes and fostered unity and collaboration. We aligned the new entities with Atlas Copco’s goals through strategic stakeholder engagement, enhancing efficiency and strengthening the collective operational framework.
  • Enhanced proficiency
    We significantly enhanced OT security maturity through meticulous planning and implementing advanced security measures. We have developed a comprehensive security framework that enables Atlas Copco to remain vigilant against potential threats that may arise. Additionally, they are continually staying up to date with the latest emerging vulnerabilities and potential risks, which allows them to mitigate any potential risks and ensure maximum protection for all their systems and networks.
  • Initial NIS2 coverage
    Our team has implemented solutions to provide initial compliance with the NIS2 (Network and Information Systems) Directive, a critical component in safeguarding the Atlas Copco infrastructure from cyber threats. Our rigorous security approach ensures that potential vulnerabilities are identified, assessed, and mitigated to prevent unauthorised access or malicious activities. Our solutions also include real-time monitoring and alerts, proactive threat detection, and incident response plans to minimise potential damage and maintain the continuity of critical services. With our comprehensive security measures, Atlas Copco can operate confidently, knowing its infrastructure is protected against the ever-evolving cyber threats.

"We are very satisfied with the results that SoterICS has delivered. Their expertise and dedication have had a significant impact on our OT security strategy. We look forward to continuing our successful collaboration,"

says Ketan Umrania, Business Area Security Officer at Atlas Copco VT.

After successfully executing our plan in the initial plant, Atlas Copco entrusted us with the mandate to implement our solutions across their entire business area. In addition, we created a checklist of requirements for OT security based on the due diligence protocol of the IT security team. The scope of our work continues to expand, keeping pace with Atlas Copco’s security ambitions. During mergers and acquisitions, we help determine new companies’ strategic and operational OT security levels.

Contact us to discuss how we can help you modernise your OT security approach. We specialise in finding the right balance between people, processes, and technology. Let’s secure your future together.

Challenges

OT security has become a critical concern for manufacturing companies worldwide, as they need to keep up with regulations and safeguard their operational efficiency. Atlas Copco, a global industrial company, recognised this urgent need. They sought an OT security specialist with hands-on experience and a can-do mentality to secure and streamline their operations.

Goals

Atlas Copco approached us to improve network segmentation and visibility across 20 global manufacturing sites for their Vacuum Technique (VT) business.

  • Segment OT from IT while maintaining production uptime.
  • Gain insights into their production environment.
  • Create a sense of awareness and urgency across the organisation.

Strategy, Tactics & Implementation

We utilised our proven methodology to transform Atlas Copco’s high-level requirements into a detailed and manageable plan. We adopt a careful and transparent approach when it comes to network segmentation. By involving people from the business side and obtaining their approval, we can proceed with our work more quickly and comprehensively. The uptime of production and the safety of personnel are our top priorities. Throughout the entire process, we strive to uphold both aspects.

This plan outlined our approach for their security upgrade journey:

  • OT security and program governance
  • Improving network segmentation and visibility
  • Implementing innovative security solutions, including firewall finetuning
  • Assessing the maturity level of new product companies

OT security is as much about people as technology. Therefore, we insisted on being on-site and gathering feedback directly from the people who would use our technology. This ensured our solution was not only effective but also user-friendly.

We also prioritised clear communication. Our recommendations were designed to be easily understood by senior management yet detailed enough to guide specific decisions. We know that time is money, especially in manufacturing, so we kept meetings to a minimum, preferring to demonstrate our expertise through tangible results instead.

Results

• Seamless integration and stakeholder engagement
Our team successfully integrated newly acquired companies into Atlas Copco’s operations. We began with a comprehensive assessment and collaborated with key business stakeholders to ensure a smooth and inclusive integration process. This approach streamlined the merging of systems and processes and fostered unity and collaboration. We aligned the new entities with Atlas Copco’s goals through strategic stakeholder engagement, enhancing efficiency and strengthening the collective operational framework.

• Enhanced proficiency
We significantly enhanced OT security maturity through meticulous planning and implementing advanced security measures. We have developed a comprehensive security framework that enables Atlas Copco to remain vigilant against potential threats that may arise. Additionally, they are continually staying up to date with the latest emerging vulnerabilities and potential risks, which allows them to mitigate any potential risks and ensure maximum protection for all their systems and networks.

• Initial NIS2 coverage
Our team has implemented solutions to provide initial compliance with the NIS2 (Network and Information Systems) Directive, a critical component in safeguarding the Atlas Copco infrastructure from cyber threats. Our rigorous security approach ensures that potential vulnerabilities are identified, assessed, and mitigated to prevent unauthorised access or malicious activities. Our solutions also include real-time monitoring and alerts, proactive threat detection, and incident response plans to minimise potential damage and maintain the continuity of critical services. With our comprehensive security measures, Atlas Copco can operate confidently, knowing its infrastructure is protected against the ever-evolving cyber threats.

"We are very satisfied with the results that SoterICS has delivered. Their expertise and dedication have had a significant impact on our OT security strategy. We look forward to continuing our successful collaboration,"

says Ketan Umrania, Business Area Security Officer at Atlas Copco VT.

After successfully executing our plan in the initial plant, Atlas Copco entrusted us with the mandate to implement our solutions across their entire business area. In addition, we created a checklist of requirements for OT security based on the due diligence protocol of the IT security team. The scope of our work continues to expand, keeping pace with Atlas Copco’s security ambitions. During mergers and acquisitions, we help determine new companies’ strategic and operational OT security levels.

Contact us to discuss how we can help you modernise your OT security approach. We specialise in finding the right balance between people, processes, and technology. Let’s secure your future together.