Cybersecurity for manufacturing

Get your seat for this free webinar taking place November 8, 2023 at 12PM ET.

The vulnerability of government, enterprise, and small business organizations alike to supply chain attacks is a rapidly evolving threat. One commonly overlooked supply chain attack vector, recently identified within initiatives supporting the National Cybersecurity Strategy, is the use of Remote Monitoring and Management (RMM) software by threat actors to effectively bypass many existing security controls. RMM software historically has been employed principally by Managed Service Providers (MSPs). With approximately 85% of commercial organizations that employ fewer than 500 employees utilizing the services of one or more MSPs, the presence of multiple RMMs within the trusted supply chain of most commercial enterprise and government entities is nearly certain.

This session will explore in depth the origins, identification, and effective risk mitigations for this highly successful emerging threat. Delivered from the perspectives of a technologist and practitioner, two experts who first raised concerns in 2016 about the potential for attacks using RMMs will explore proven methods to cooperatively improve the security of the supply chain from enterprise to SMB against RMM attacks.

Presented by Lawrence Cruciana, founder and president of Corporate Information Technologies, Cruciana, focuses on identifying and mitigating information-centric cybersecurity risks using risk-informed methodologies. With over 20 years of experience in regulated industries, Lawrence brings unique insight into third-party supply chain risk mitigation. Most recently, his emphasis is on those risks introduced by smaller organizations and Managed Service Providers (MSPs) into larger commercial and government organizations. His efforts in this area are reflected in his nomination to the CISA Joint Cybersecurity Defense Collaborative (JCDC) as a Remote Management and Monitoring subject matter expert.