Kopenhagen Konsulting was enlisted by a top global pharmaceutical company to bolster cybersecurity within their manufacturing environment, which spans roughly 20 factories worldwide. Faced with rising cyber threats, the company sought our expertise to enhance their protection, detection, and response capabilities across all locations, while also improving visibility for their information security team.
We spearheaded a comprehensive implementation program, bringing together a global project team to cover design, qualification, sourcing, implementation, and operations. After securing approval from the steering group, we rolled out the project over two years. The technical solution featured log collection, Security Information and Event Management (SIEM), vulnerability scanning, Endpoint Detection and Response (EDR), Anti-Malware, intrusion detection, network traffic analysis, and operational reporting.
Our deliverables included creating a tailored solution for the GxP environment, aligning with the Purdue model, and ensuring thorough qualification and validation. We also focused on driving organizational change and raising security awareness among factory staff. Key tasks involved managing vendor relationships, negotiating contracts, setting up SLAs, and establishing control and operational processes for the Security Operations Center (SOC) and local IT teams. We also implemented the required cybersecurity infrastructure within the management, network, and endpoint zones of the production lines.
The project led to a robust cybersecurity infrastructure that greatly enhanced the company’s security posture and response capabilities. Major outcomes included: