With the publication of the new EU Machinery Regulation (MR), the forthcoming Directive NIS 2 and the planned Cyber Resilience Act (CRA), equipment and machinery manufacturers, integrators and operators are now aware: industrial information security is a legal requirement! From January 20, 2027, any use of the CE marking on a machine must ensure that the control of the machine is adequately protected against accidental or intentional damage and to avoid any dangerous situations that may arise.

Why is it so hard to get started

SCA640-120GM The complexity of laws and regulations requires machine manufacturers and operators to make necessary adjustments to existing machinery safety and industrial information security processes. In the industrial field, information security and machinery safety are inseparable.

In the field of information security, IT (Information technology) and OT (operational technology) have different goals and technical requirements. In an IT environment, protecting the confidentiality of data is often the most important goal; In an OT environment, ensuring the availability of the system is a priority. In addition, there are differences in the knowledge and maturity of industrial information security among different enterprises, which provides multiple possible paths for cyber attacks. Unlike physical security, the risks and potential impacts of information security are often difficult to visualize.

In the face of these challenges, how should companies go about it? First, there needs to be a comprehensive review of existing security processes to ensure they can adapt to new information security requirements. Secondly, enterprises should strengthen the training of employees to improve their awareness of the importance of information security. Finally, enterprises should establish an effective monitoring and response mechanism to detect and respond to potential security threats in a timely manner.

SCA640-120GM

One-stop shop for mechanical safety and information security

SCA640-120GM As a mechanical safety specialist, Pielmagneto provides users with comprehensive safety solutions, including equipment and machinery safety assessment, analysis and conceptual design, as well as machine industry information security services. These services are based on national, European and international standards and help companies avoid incompatible solutions. The process begins with an analysis of protection requirements, the determination of applicable laws, the availability of personnel and the certification of the office environment, followed by the identification of potential hazards and their severity. This is followed by risk analysis, development of security concepts, implementation and validation of security measures to ensure corporate security compliance.

Customized support

Peel Magnetic offers a comprehensive range of services for machinery safety and industrial information security. The services offered include basic information and guidance as well as training courses such as the qualification of “CESA – Automated Information Security Certified Specialist” and “ISCS – Industrial Information Security Consulting Services”, which provide practical support for the implementation of the new requirements of the machinery regulations.