- 20 November 2017
In the recent ERP Cybersecurity Survey 2017, the most-cited cyber defense measures that respondents were taking were penetration testing or security assessments from a third-party cybersecurity provider. That sounds great — until you read the numbers.
Only 33% of respondents had actually conducted such a test or assessment. In fact, respondents weren’t even in agreement on which C-level executive’s job includes protecting the company’s enterprise resource planning (ERP) system.
The poll surveyed companies in industries ranging from healthcare to government to manufacturing. The lack of consistent answers should serve as a wake-up call, especially for manufacturers in the Aerospace and Defense sector, where hacks and security breaches could pose a threat to national security.
Fortunately, modern ERP systems are adapting to the shifting threat landscape, and many new cloud options can help companies better manage their security risks and meet protocols. Let’s take a closer look at today’s ERP security environment.
ERP Security Today
Manufacturers face a diverse set of challenges regarding ERP security. Specifically, companies need to consider the following:
- The costs of cyberattacks: 89% of ERP Cybersecurity Survey respondents expect that cyberattacks on ERP systems will increase in the next year. The survey also found that the average breach costs $5 million, with one-third costing more than $10 million.
- Compliance: On top of managing security-related costs, A&D companies also need to adhere to the International Trade in Arms Regulations (ITAR). Set by the U.S. government, ITAR regulates companies involved in trading defense-related goods and services. Companies may also have to follow regulations set forth by other nations where they do business.
- Lack of ERP security knowledge: Only two-thirds of survey respondents had heard of any SAP security incident, while only 4% had heard of the now-infamous USIS data breach.
- Lack of security initiatives: The survey also highlighted the fact that knowledge of ERP security measures doesn’t actually mean that any are in place. In fact, 33% of respondents said they hadn’t started any initiatives, though doing so is on the agenda.
ERP Security Initiatives
Given the pressure and risks put on A&D companies, they should be able to trust the security capabilities of their technology. ERP developers have been pushing the envelope in this category recently.
Dedicated Tenancy Cloud
Epicor will now offer its North American clients a dedicated tenancy cloud option, along with its multi-tenancy and single-tenancy options. This option includes the standard Epicor cloud infrastructure, with one big difference — it provides clients with their own database, while still offering the flexibility of a shared server. The heightened security associated with this offering can be vital in industries such as Aerospace and Defense, which must comply with stringent security requirements.
Many professionals have long viewed the cloud as sacrificing security for the sake of convenience, but we’re happy to say that this notion is increasingly untrue.
Embracing the Right ERP
Security should always be top-of-mind for today’s manufacturing leaders. Choosing the right ERP solution can help reduce security risks while helping ensure compliance with all regulations.
At Cre8tive Technology & Design, we provide manufacturers with ERP solutions that are designed not only for efficiency and quality, but also security. Get in touch with us today to learn more about our offerings.