IT in Manufacturing


Cybersecurity and cyber resilience for effective data management

February 2025 IT in Manufacturing

The terms ‘cyber security’ and ‘cyber resilience’ are often used interchangeably, which can be misleading. While they are related, these two concepts serve distinct yet complementary purposes, particularly when viewed from a data management perspective. Both are critical to safeguarding data and ensuring business continuity. What are the differences between them, and why does an organisation need both to manage cyber risk effectively?

Cyber security versus cyber resilience

At its core, cyber security focuses on preventative measures that attempt to stop unauthorised access, breaches and attacks. It includes firewalls, antivirus software, strong password policies, and multi-factor authentication (MFA), which are all designed to keep cyber criminals at bay.


Aslam Tajbhai, head of Solutions at DMP.

On the other hand, cyber resilience talks to how well an organisation can recover after an attack. Cyber resilience is not just about preventing breaches, which is not always possible, but about minimising the damage and restoring operations swiftly. Cyber resilience involves strategies for data recovery, damage control and operational continuity following an incident.

In short, cyber security aims to block attacks, while cyber resilience ensures that when attacks happen, their impact is minimised and operations can operations can be resumed as fast as possible. This is why both are critical in an effective and robust data management strategy that not only safeguards business operations, but also assists in compliance with various bodies of legislation such as the Protection of Personal Information Act (POPIA).

Building a strong cyber security strategy

A solid cyber security strategy requires that several core components be incorporated and layered to protect an organisation from a breach as much as possible. Bad actors often gain access to a company’s network through endpoint devices such as laptops, smartphones or tablets. Ensuring these devices are equipped with endpoint protection, like antivirus and antimalware software, is essential. Firewalls act as a barrier between a company’s internal network and the external world, helping to block unauthorised access. Virtual private networks (VPNs) ensure secure communication between remote devices and the corporate network.

On top of these tools, it is critical that strong password policies are combined with MFA, as most breaches today still occur as a result of compromised credentials. This makes it essential to have appropriate access control policies in place, following a ‘least privileged access’ strategy, ensuring that only people who need access to the data and systems can do so. While these measures help prevent unauthorised access and protect data, no system is completely impervious to attack. That is where cyber resilience becomes vital.

Back to business

The role of cyber resilience is to mitigate damage when things go wrong. This is a continuous process that starts long before an attack occurs and ensures a business can recover quickly when the worst happens. The National Institute of Standards and Technology (NIST) provides a framework that helps organisations identify, protect, detect, respond to and recover from cyber incidents.

Cyber Resilience can be broken down into three key areas:

• Risk identification: Understanding and identifying the risks within an organisation is critical, including the knowlege of where sensitive data is stored. The earlier risks are identified, the more steps can be taken to protect that data, such as encryption, deletion or archiving.

• Readiness: Cyber resilience requires organisations to be ready for an attack. This means having early warning systems in place such as threat deception technology, and then testing cyber recovery plans regularly in an isolated environment. A strong recovery plan ensures minimal downtime and protects data integrity.

• Recovery: The most vital aspect of resilience is the ability to recover quickly after an attack. Backups are key, but not just any backups. Organisations need to have immutable backups stored offsite that cannot be tampered with during an attack, and the ability to recover a clean copy of data to a clean environment. This ensures businesses can resume operations with minimal disruption.

Risk versus reward

Failing to implement effective cyber security in conjunction with a robust cyber resilience strategy can have detrimental effects. A successful breach can erode customer trust and damage the organisation’s brand, causing extended periods of downtime and interrupting business operations. These can lead to significant financial losses, either directly through ransom payments or indirectly through lost business.

Preventing attacks is no longer enough, nor is it always possible. It is essential to be able to recover when, and not if, bad actors infiltrate business networks. By implementing both cyber security and cyber resilience strategies, businesses can protect their assets and ensure uninterrupted operations. Together, they form the foundation of a comprehensive, long-term data management strategy that safeguard against both immediate and future threats.

For more information contact Nick Wonfor, DMP South Africa, +27 11 475 6419, [email protected], www.dm-p.co.za




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Fortifying the state in a time of cyber siege
IT in Manufacturing
In an era where borders are no longer physical, South Africa is being drawn into a new kind of conflict, one fought not with tanks and missiles, but with lines of code and silent intrusions. The digital battlefield is here, and cyber space has become the next frontier of conflict.

Read more...
Levelling up workplace safety - how gamification is changing the rules of training
IT in Manufacturing
Despite the best intentions, traditional safety training often falls short, with curricula either being too generic, too passive, or ultimately unmemorable. Enter gamification, a shift in training that is redefining how businesses train for safety and live by those principles.

Read more...
Reinventing data centre design: critical changes to meet surging
Schneider Electric South Africa IT in Manufacturing
AI technologies are pushing the boundaries of what is possible which, in turn, is presenting data centres with a whole new set of challenges. Fortunately, several options are emerging which include optimising design and infrastructure for efficiency, cooling and management systems

Read more...
Watts next - can IT save the planet
IT in Manufacturing
The digital age’s insatiable demand for computing power has collided with an urgent and pressing need for sustainability. As data centres and AI workloads consume unprecedented energy, IT providers are pivotal in redefining how technology intersects with environmental stewardship.

Read more...
South Africa’s digital revolution:
IT in Manufacturing
South Africa stands at a pivotal moment in its technological evolution, poised to redefine itself as Africa’s leading digital powerhouse. Over the past two years, political leaders and media narratives have painted a picture of rapid digital transformation, underscoring the government’s ambition to position South Africa at the forefront of innovation.

Read more...
Smart manufacturing, APC and the
Schneider Electric South Africa IT in Manufacturing
Manufacturers are prioritising the integration of smart technologies into their daily operations to stay one step ahead of the competition. In South Africa, some experts believe the country has the potential to leapfrog its global peers through the creation of smart factories.

Read more...
Schneider Electric’s Five-Pillar Strategy takes the guesswork out of equip
Schneider Electric South Africa IT in Manufacturing
Schneider Electric’s Field Service Cycle, otherwise known as the Five-Pillar Strategy, is a structured approach to managing the lifecycle of equipment to prolong asset lifespan while reducing the total cost of ownership for customers.

Read more...
Enhancing operational safety and efficiency through advanced risk-based modelling
IT in Manufacturing
Now, more than ever, capital and operational cost can be reduced while enhancing operational safety and increasing production uptime by applying transformative methods such as Computational Fluid Dynamics modelling.

Read more...
Laying the groundwork in IT/OT
IT in Manufacturing
In the realm of manufacturing, the core mandate is to deliver value to stakeholders. For many in the industry, this is best achieved through a risk-averse approach. Only upon establishing a robust foundation should a business consider venturing into advanced optimisation or cutting-edge technological innovations such as industrial AI.

Read more...
Looking into the future of machine vision
Omron Electronics IT in Manufacturing
Artificial intelligence (AI) is driving a significant transformation in all areas of industrial automation, and machine vision is no exception. Omron’s AI-powered machine vision systems seamlessly integrate state-of-the-art algorithms, enabling machines to analyse and interpret visual data meticulously.

Read more...









While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd | All Rights Reserved