Compliance & Regulation
Essential Reading
NIS2 and Manufacturing
NIS2 Directive Article 3 designates manufacturing as an "important entity" sector — subjecting EU-connected manufacturers to binding security requirements and incident reporting.
Cyber Essentials for Manufacturing
MOD contracts require Cyber Essentials Plus from all suppliers handling government information — and major manufacturers are passing this requirement down to their supply chains.
Further Reading
ISO 27001 for Manufacturing
Over 70% of tier-1 automotive suppliers now require ISO 27001 certification from their strategic manufacturing partners — making it a commercial necessity, not just a security best practice.
GDPR in Manufacturing
ICO audits of manufacturing firms find GDPR gaps in 78% of cases — the most common being inadequate data retention policies and missing processor contracts.
Product Security Regulations for Connected Manufacturing
The PSTI Act 2022 covers all consumer-connectable products sold in the UK — manufacturers face fines of up to £10 million for non-compliance.