FICAP’s Wake-Up Call: Experiencing the Realities of Cyber attacks

FICAP,a company specializing in the design,manufacturing,and maintenance of industrial conveyors and treadmills with over 4,500 installations worldwide,learned the importance of cybersecurity the hard way. Jérôme Besnard, Chairman of the Ficap Management Board, recounts the company’s experiences:

Having undergone two successive cyber attacks in 2022 and 2023, we have long been aware of the cyber risk. During the first attack, I thought I was going to lose the business.

Jérôme Besnard, Chairman of the Ficap Management Board

The initial attack, occurring during a peak season, resulted in a ten-day production halt. While lucky to have a responsive service provider,the incident served as a stark reminder of the potential consequences. A second, less severe attack solidified the need for a comprehensive cybersecurity strategy.

Seeking Expert Guidance: Partnering with Local Resources

Recognizing the need for expert assistance, FICAP turned to the CCI Seine-et-Marne, where cybersecurity is a priority. This highlights the importance of leveraging local resources and expertise. Mathilde Plantier, head of the Industry pole, connected FICAP with Sylvain Gauduchon, a digital advisor specializing in cybersecurity, who played a crucial role in developing and implementing FICAP’s cybersecurity system.

Building a Human Firewall: Employee Awareness and Training

A critical component of any cybersecurity strategy is employee awareness. FICAP prioritized training its 70 employees on cyber risks. in collaboration with the local gendarmerie, FICAP conducted training sessions to educate employees on IT security best practices. This proactive approach aimed to transform employees from potential vulnerabilities into active participants in the company’s defense.

Empowering Key Personnel: Specialized Training for Leadership

FICAP also invested in specialized training for its administrative and financial director,Laurent Bouache. This intensive training, facilitated by Sylvain Gauduchon, equipped Bouache with the knowledge and skills to implement and maintain robust cybersecurity practices. This strategic move established a dedicated Cybersecurity Referent within FICAP, demonstrating a commitment to ongoing security management.

Identifying Vulnerabilities: The Importance of Cybersecurity Audits

While initial assessments can provide a general overview, comprehensive cybersecurity audits are essential for pinpointing specific vulnerabilities. FICAP participated in the Cybiah program, a cybersecurity and artificial intelligence hub, to conduct a thorough audit of its information systems. This audit identified critical flaws, leading to the immediate implementation of measures such as double authentication.

According to a recent report by Cybersecurity Ventures, global spending on cybersecurity is projected to reach $1.75 trillion cumulatively from 2017 to 2025, underscoring the growing recognition of the importance of proactive security measures.

The Funding Gap: A Challenge for Small and Medium-sized Businesses (SMBs)

Despite identifying necesary investments through the Cybiah audit, FICAP faced challenges in securing public funding to implement all recommended improvements. this highlights a common obstacle for SMBs, which often lack the resources to fully address cybersecurity vulnerabilities. This is a critical issue, as studies show that SMBs are increasingly targeted by cyberattacks.

Conclusion: A journey of Continuous Improvement

while FICAP’s cybersecurity journey is ongoing, the company’s proactive approach, leveraging local resources and prioritizing employee training, demonstrates a commitment to protecting its assets and ensuring business continuity. The support of the CCI and cybersecurity advisor Sylvain Gauduchon proved invaluable in navigating the complexities of the cyber landscape.

For businesses seeking to bolster their cybersecurity posture, FICAP’s experience offers valuable lessons: prioritize employee training, seek expert guidance, conduct regular audits, and advocate for increased funding opportunities for SMBs.