The SANS 2024 State of ICS/OT Cybersecurity report summarized that one of the main causes of OT incidents is the compromise of IT systems. Therefore, as we continue to prioritize the cybersecurity of IT systems, the prioritization of OT systems will be just as important. While we’ve already seen this focus pick up momentum as reflected through efforts such as the North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards, the pace is poised to increase throughout the rest of 2025. As it does, there are two influences likely to play a significant role – the defense sector and AI.
OT and Defense
Being one of the primary sectors to rely on operational technology or OT, defense has become an active player in the OT cybersecurity arena. Following in the footsteps of IT initiatives such as the Pentagon’s 2022 zero trust strategy, the Department of Defense has also started to explore methods for implementing these strategies in its OT systems. In doing so, DefenseScoop reports that “advancements in adversary cyber threats — such as from the Chinese-linked group known as Volt Typhoon — have put pressure on the department to move faster.” Volt Typhoon, in particular, reflects the increasingly sophisticated capability of threat actors to make base camp in IT, eventually leading to OT.
OT and AI
Cybercriminal groups aren’t the only pressing threat—AI-assisted attacks are becoming an increasing concern. While AI is changing challenges like ransomware, it’s also reshaping solutions. For example, AI can enhance the detection of suspicious activity and drive a new era of real-time intelligence, significantly strengthening proactive cybersecurity measures. To both capture such benefits and avoid the risk associated with AI, it will be essential to limit the attack surface in order to remain effective.
Sources:
“As Critical Infrastructure Focuses On Safety And Uptime, OT Security Takes Center Stage” – Ian Bramson, Forbes
“Navy looks to add zero-trust controls into weapon systems, platforms” – Mikayla Easley, DefenseScoop
https://defensescoop.com/2025/02/19/navy-zero-trust-controls-ot-weapon-systems-platforms/
“OT Security in an AI-Powered World” – Qiang Huang, Automation.com
“Why should manufacturers embrace AI’s next frontier – AI agents – now?” – Yannick Bastubbe and Devendra Jain, World Economic Forum
https://www.weforum.org/stories/2025/01/why-manufacturers-should-embrace-next-frontier-ai-agents/
