OT Security: Why Critical Infrastructure Is More Exposed Than You Think

Operational Technology environments were once considered isolated and inherently secure by design, but the reality has shifted. As OT and IT continue to converge, and as hacktivists and nation-state actors increasingly target Critical National Infrastructure, the threat landscape has fundamentally changed. The introduction of the Cyber Assessment Framework 4 (CAF4) reflects growing regulatory recognition that OT risk can no longer be treated as an IT problem with a different label.

OT attacks aren't about stealing data, they're about disrupting the physical world. Shutting down a power grid, halting a production line, or compromising a water treatment facility carries consequences that no patch or password reset can quickly undo. In this session, we'll explore why OT environments demand a different security mindset, how hacktivist groups and CNI-focused threat actors are evolving their tactics, and what a robust OT security strategy looks like in practice. We'll also examine how CAF4 is shaping expectations for organisations operating in regulated and critical sectors, and how to build resilience across both legacy OT environments and modern converged infrastructure.

Agenda

Welcome & Scene Setting - Principle
Introduction to the session and why OT and IoT risk has moved beyond IT into a threat to life.

The Changing Face of OT & IoT Threats - Fortinet
How OT attacks differ from traditional cyber threats, the rise of hacktivists targeting CNI, and why connected devices can no longer be underestimated.

Deception as a Defence Strategy - Principle
How advanced deception techniques can detect and neutralise attackers before they cause real-world harm.

Navigating CAF4 & Building OT Resilience - Principle & Fortinet
What CAF4 means for critical infrastructure operators and how to build a security posture that holds up across converged IT/OT environments.

Q&A and Open Discussion - Principle & Fortinet