Cyber security is constantly evolving

As technology advances, the use of digital solutions is increasing at the BIRN Group and in its companies. This requires a high standard of cyber security, which must be reassessed and updated on an ongoing basis as companies introduce new technology and the external threat landscape changes.

As part of creating robust cyber security, the crisis response team at BIRN Group has been expanded to include the Operational Technology department (OT). The department in charge of the machinery in production has thus become affiliated with the IT organisation and is now an integral part of contingency plans and the test roll-out of AI tools. The changes reflect the need to prepare production departments for cyber attacks, as production is increasingly digitalised and connected to external networks.

With the new set-up, we align with the requirements of the EU’s new NIS2 Directive for cyber security, which aims to increase digital resilience in the European Union. This is despite the fact that the BIRN Group is not directly covered by the new directive – among customers, the requirements are of great importance. Compliance with the requirements of the NIS2 Directive ensures that the Group’s internal policies comply with the requirements expected by the market.

Increased security without passwords
Time is running out for passwords, which are often cybercriminals’ gateways to sensitive data in businesses.
At the BIRN Group, we have therefore taken the initiative to eliminate passwords and introduce so-called passwordless login, which uses biometric login.

The initiative aims to eliminate phishing threats, and thus data is even better protected, so both our customers and employees can feel in safe hands. Passwordless login also makes it easier for employees who in the future no longer have to remember passwords and update them continuously. At the same time, employees receive ongoing cyber security training that maintains a focus on good
IT hygiene and secure handling of data. The roll-out of passwordless login will be implemented in the companies on an ongoing basis.

AI still on the radar
At the BIRN Group, we are testing AI solutions that among other things make it possible to analyse data more efficiently. In the past year, we have continued with test groups and workshops that provide us with insight into how we can best exploit the opportunities presented by AI in the individual departments and companies.

In parallel, BIRN Group has developed an AI policy based on EU requirements, and we continue to limit the use of AI tools to solutions where we can guarantee that our own data is kept in a closed loop and thus comply with the policies relating to cyber security in the organisation.

In the coming years, we will also increase the integration of AI into IT systems, which we expect will create major benefits in production.