NIS2 for the plastics & rubber industry

Injection moulding machines, extruders and vulcanisation lines run on PLCs that are twenty to thirty years old. NIS2 sets requirements for securing this production technology. We help you comply, without stopping the line.

In scope

OT systems that fall under NIS2

Arburg / Engel / KraussMaffei PLCs (Selogica, CC300)
Battenfeld controllers
Siemens S7-300/400 on extrusion and calender lines
HMI workstations on Profibus/Profinet
SCADA systems for process monitoring
Energy and utility management (cooling, compressed air)
Sector risks

What NIS2 means for your OT

Legacy communication

Profibus-DP and RS-232 links have no authentication. Anyone with access to the network segment has access to the machine.

OEM remote access

Maintenance access by machine suppliers often runs via RDP or modem. Uncontrolled connections are a NIS2 supply chain risk.

Outdated firmware

Many injection moulding PLCs run firmware from before 2010. Patches are not available. Compensating controls (network segmentation, monitoring) are required.

Our approach

Three steps to NIS2 compliance

01

OT network segmentation

Isolation of machine groups in separate Profinet segments with firewalls. No direct connection between office IT and machine controllers.

02

Remote access policy

Central jump server for OEM access with logging, time windows and multi-factor authentication. No more direct modem or RDP connections.

03

Compensating controls for legacy

Passive OT monitoring to detect abnormal behaviour on legacy PLCs. No patching required, but demonstrable management is.

Also relevant
Machine refit in Plastics & rubber

OT security and machine refit often go hand in hand. A refit to a modern PLC also improves your NIS2 posture.

View refit page

Start your NIS2 assessment for Plastics & rubber

A gap analysis starts with a technical intake specific to your sector and OT landscape.