The Monroe Cable Company, Inc. is a leading manufacturer of wire and cable. The company supplies the New York City Transit Authority, the New York City Fire Department, Military & Commercial Marine sector, Oil & Gas and the United States Department of Defense. In addition to being a leading supplier for these entities, The Monroe Cable Company also boasts the ability to manufacture custom wire and cable to customer specifications. Serving the industry since 1978, The Monroe Cable Company has spent its 40 years of operation focused on customer satisfaction and maintaining a competitive edge in the industry.
Due to their relationships with companies affiliated with the Department of Defense, cyber-security is a top concern for Monroe Cable. Also, knowing that preventative measures would benefit them in the long run, they sought out expert help from MTEC, who enlisted David Tooker and Paul LaPorte. Through an in-depth cybersecurity assessment, any possible vulnerabilities would be revealed. With the objective being to have a secure system that they and their clients could trust, The Monroe Cable Company was ready to make the changes and modifications necessary to protect their data.
This process was completed in three parts. The first part was an overview of company assets both in terms of the devices used by Monroe Cable, as well as identifying information valuable to the company and how it is managed. It was at this time that scans were performed both internally and externally on the company network.
External scans were completed on the company network to determine if any open ports or devices were visible or accessible from outside of the company network.
The second part consisted of an in-depth review of the NIST 800-171 standard, as well as a review of company policies, to see what areas of the standards were being met, which ones were not being met, and what exceptions if any, needed to be made.
The third part involved interviews with Monroe Cable employees. These employees were asked general questions regarding IT usage and company policy to see if company policies were being followed and if new policies needed to be put into place. Additionally, an assessment is performed on the physical building to identify any areas of concern to physical security.
Post-assessment, policies, and procedures were written in order to bring The Monroe Cable Company into compliance with the NIST 800-171 document. After remediation, another assessment was performed to confirm compliance and they have issued a letter of compliance through the Advanced Institute for Manufacturing.