Senior Product Manager Software and Technologies
Mr Bücker, you are responsible for the area of industrial security at Pilz. What is your main focus here?
Security should be considered across the entire product lifecycle, which is why at Pilz we already start thinking about security during product development. Our development processes are certified in accordance with the international security standard IEC 62443–4‑1 from TÜV Süd, meaning they are verifiably secure. We determine the protection needs of individual product functions, implement the functions securely and continuously monitor potential vulnerabilities across the entire lifecycle of our products.
This means that our customers can count on the security of Pilz products?
We have a team just for this at Pilz, and I am a member. Here we analyse, evaluate and process potential vulnerabilities in our products. If the vulnerability could negatively affect the security of our products, we use a Security Advisory to report on these gaps. We also use this to highlight updated firmware and to recommend alternative countermeasures before damage can occur.
What tips can you give to customers about industrial security?
We recommend that our customers also engage in a holistic approach – starting with the risk analysis: What security risks are present on my machine? Will they affect the functional safety? How can I guarantee the best possible protection? These considerations are necessary in order to implement the right technical and organisational measures to protect the machine.