Client Overview
- Type: Mid-sized heavy engineering manufacturer
- Location: Visakhapatnam, India
- Sector: Heavy Manufacturing – Industrial components & fabrication
The Challenge
The client had embraced new technology with connected machines, SCADA/PLC integrations, cloud-based inventory systems, and remote maintenance support. However, this increased the risk of cyber-physical threats.
Key concerns included:
- No isolation between OT (Operational Technology) and IT networks
- Unpatched legacy systems controlling CNC and PLC devices
- No monitoring for USB use or lateral movement in the plant network
- Third-party vendors connected via unsecured VPN tunnels
- Employees unaware of phishing or USB-borne threats
- No incident response SOP for production-disrupting cyber events
Leadership was concerned about downtime, data theft, and reputational risk, and wanted to build a basic but effective cyber risk framework tailored to manufacturing.
Our Solution
MitKat led a 45-day engagement focused on OT-IT risk alignment, plant-level resilience, and scalable controls.
Key Interventions:
- Plant-Level Cyber Risk Assessment: Identified critical assets, attack paths, and weak links between OT and IT
- Network Segmentation Plan: Implemented DMZ zones and separated admin systems from machine controls
- Policy & Governance: Drafted Cybersecurity Policy, Vendor Access Policy, and Incident Management SOP
- Access Control: Introduced user-based access on OT systems; removed shared admin credentials
- Awareness Training: Delivered targeted cyber-physical threat sessions for engineers and plant supervisors
- Incident Drill: Simulated ransomware impact on production control system to test response and escalation
Outcome
- OT-IT segregation achieved with minimal production downtime
- Cyber-physical risks mitigated across plants
- USB controls, patching schedule, and endpoint monitoring standardised
- Vendor access governed via hardened VPN and role-based restrictions
- First cyber drill conducted, leading to faster incident triaging
MitKat’s OT-IT integrated strategy empowered a heavy manufacturing firm to secure its production environment, reduce cyber-physical risks, and embed cybersecurity into plant operations without disrupting uptime or productivity.