This document provides support where modern society can least afford failures: in the ICT systems of critical infrastructures. This applies to food supply as well as, for example, energy supply or healthcare. This ICT minimum standard is intended to help companies in the food industry to avoid ICT disruptions or if they arise to respond to them quickly.
The ongoing digitalisation and centralisation in the food supply industry are increasing the efficiency of processors and retailers as well as the degree of dependence on ICT systems. For example, retailers now use only one system for the entire flow of merchandise (merchandise management system), and cash registers can also only be operated with the help of the digital checkout system. Furthermore, processors also rely on SCADA (Supervisory Control and Data Acquisition) systems to control their production and thus manufacture their products. A clear understanding of the current security challenges as well as the remedies available is necessary.
This is an ICT minimum standard for the food supply industry that contains recognised guidelines and recommendations for improving ICT security. The recommendations are implemented voluntarily by the companies in the industry based on self-regulation. The ICT minimum standard is basically addressed to all companies involved in the production, distribution, import and processing of food. It was produced in collaboration with IG Retail Switzerland and the Swiss Retail Federation.