The security of OT environments presents companies with significant challenges. At the same time, there are some potentially dangerous myths circulating about this topic. This article dispels five of them.
With the increasing IT-OT convergence, so-called operational technology also needs to be secured —for this, expertise is also required to avoid falling for common myths.
Mirco Kloss works as Business Development Director DACH at TX One Networks.
Can you protect your production facility with the same means as your office computer? Is an OT environment really isolated from the rest of the world and thus secure by an air gap? Is the top priority in OT security really to protect the network?
There are many questions about how to best protect an OT environment from attacks. The impact of a successful cyber-attack and the associated interruption of production can have fatal financial and reputational consequences for a company. In the healthcare sector, they can even endanger life and limb. Therefore, OT managers should be well informed about the differences and similarities between IT and OT environments. Correcting the most common myths in OT cybersecurity is the first step in this.
Myth #1: OT Systems are Completely Isolated And Therefore Secure
The widespread notion is that OT systems are protected by a so-called air gap. This means that all machines in the OT network are isolated from the outside world, thereby preventing them from establishing external connections. The OT network can thus neither communicate with the internet nor with the in-house IT and is therefore safe from attacks. That’s the theory. However, the practice nowadays is usually different. A fully isolated production environment is more the exception than the rule. And even when it is isolated, it is often only individual machines, rarely the entire network.
In reality, these systems receive updates, have access via a VPN, or possess other remote access. Especially since the COVID-19 pandemic, this has been integrated into many machines to allow control remotely from home in exceptional cases. Many devices also communicate with in-house IT, which, of course, communicates with the internet. Therefore, in most cases, isolation is not present. Even a Wi-Fi stick that makes device maintenance easier, personal laptops, or USB sticks are a way to break the air gap. A fully isolated OT environment thus rarely exists, and accordingly, protection against attacks is not guaranteed.
Myth #2: Protection Against Malware is Also a Priority in OT
In IT, it is common and entirely correct that protecting the network from any kind of malware and exploiting vulnerabilities is the top priority. After all, you want to protect sensitive data. A PC can also be isolated and disconnected from the network if this prevents the further spread of, for example, malware. In production and other OT environments, this is not so easily possible, as the failure of machines can result in significant financial damage that must be avoided at all costs. Also, in the case of medical devices in hospitals, uninterrupted operation is crucial. Think of life-sustaining equipment. A failure of these could have catastrophic consequences.
In OT, ensuring smooth operation is the top priority. The availability of plants and equipment takes precedence. Based on this, solutions must be devised on how the network can be best protected against external and internal attacks without interrupting operations or having to take machines offline temporarily.
Myth #3: OT Cybersecurity is the Responsibility of IT
The shortage of skilled workers in the IT sector is well-known and likely won't be resolved quickly. The situation is no better in the OT sector, quite the opposite. This reinforces the belief that comprehensive cybersecurity only requires a good IT team. However, this team does not have the experience or necessary expertise to ensure the required protection in OT. Similarly, an OT team alone cannot be responsible for IT security.
The only solution is cross-team collaboration, combining the experience and knowledge from both sides to ensure optimal protection for the entire company. This also addresses the skills shortage by ensuring internal IT teams, often already operating at maximum capacity, are not additionally burdened with OT protection; instead, external professionals are consulted. The best security for IT and OT comes from native IT security and native OT security, both of which eventually converge in a Security Operation Center (SOC).
Myth #4: An OT Environment is Protected With a Firewall And Antivirus Solutions
IT focuses its protection mainly on offices and data centers and on confidential data. Longer latency times are less of an issue here than in OT. Additionally, the systems are usually renewed every three to five years. An OT environment is entirely different: individual machines are sometimes in use for ten, 15, or 20 years because they are expensive to purchase and designed for long-term use. Consequently, the software is also outdated. New patches and updates can often only be installed when the machine is offline, which is often avoided for the reasons mentioned.
Date: 08.12.2025
Naturally, we always handle your personal data responsibly. Any personal data we receive from you is processed in accordance with applicable data protection legislation. For detailed information please see our privacy policy.
Consent to the use of data for promotional purposes
I hereby consent to Vogel Communications Group GmbH & Co. KG, Max-Planck-Str. 7-9, 97082 Würzburg including any affiliated companies according to §§ 15 et seq. AktG (hereafter: Vogel Communications Group) using my e-mail address to send editorial newsletters. A list of all affiliated companies can be found here
Newsletter content may include all products and services of any companies mentioned above, including for example specialist journals and books, events and fairs as well as event-related products and services, print and digital media offers and services such as additional (editorial) newsletters, raffles, lead campaigns, market research both online and offline, specialist webportals and e-learning offers. In case my personal telephone number has also been collected, it may be used for offers of aforementioned products, for services of the companies mentioned above, and market research purposes.
Additionally, my consent also includes the processing of my email address and telephone number for data matching for marketing purposes with select advertising partners such as LinkedIn, Google, and Meta. For this, Vogel Communications Group may transmit said data in hashed form to the advertising partners who then use said data to determine whether I am also a member of the mentioned advertising partner portals. Vogel Communications Group uses this feature for the purposes of re-targeting (up-selling, cross-selling, and customer loyalty), generating so-called look-alike audiences for acquisition of new customers, and as basis for exclusion for on-going advertising campaigns. Further information can be found in section “data matching for marketing purposes”.
In case I access protected data on Internet portals of Vogel Communications Group including any affiliated companies according to §§ 15 et seq. AktG, I need to provide further data in order to register for the access to such content. In return for this free access to editorial content, my data may be used in accordance with this consent for the purposes stated here. This does not apply to data matching for marketing purposes.
Right of revocation
I understand that I can revoke my consent at will. My revocation does not change the lawfulness of data processing that was conducted based on my consent leading up to my revocation. One option to declare my revocation is to use the contact form found at https://contact.vogel.de. In case I no longer wish to receive certain newsletters, I have subscribed to, I can also click on the unsubscribe link included at the end of a newsletter. Further information regarding my right of revocation and the implementation of it as well as the consequences of my revocation can be found in the data protection declaration, section editorial newsletter.
IT solutions like firewalls, antivirus software, and the like do not work in the OT environment. They are ineffective, barely understand native OT protocols, sometimes require high network latency which isn't present in OT, and offer no solutions for limited computer resources or lack of internet access, which is the case with many OT systems. Other conditions in such environments pose additional challenges, such as high temperatures, humidity, and vibrations. Different approaches and solutions must interact here, like security inspections, endpoint protection, network defense, and virtual patching.
Myth #5: You Can Only Protect What you Know is in the Network.
While IT security primarily focuses on the visibility of vulnerabilities to be patched, OT must first ensure necessary prevention. Merely making a threat visible does not help here. It also requires the ability to eliminate it. Good and comprehensive OT security first identifies the devices, protects them with multilayered adaptive OT protection, detects and analyzes anomalies, and continuously adapts protection using threat data. The key is to avoid a recovery process, which is lengthy and costly.
Specialized Knowledge Needed for OT Security
Those who know the common myths surrounding OT security can avoid mistakes in protecting their own production environment and thus make it more secure. A completely isolated production environment is as much an illusion as adequate protection of it through conventional firewalls or antivirus solutions. This task is therefore not an IT problem but must be handled by specialists in OT security.
The visibility of existing vulnerabilities must always go hand in hand with the prevention of attacks. The key to success for comprehensive cybersecurity across the entire company lies in the collaboration of both IT and OT teams. The smooth and uninterrupted operation of machines is always the top priority.
Secure and Compliant Authentication in Laboratories
:quality(80)/p7i.vogel.de/wcms/f9/7d/f97deef8fde21c8630d76411b18a20a7/0129803665v1.jpeg "Skoda has invested well over 220 million US dollars in the high-tech battery plant that has now opened in Mlada Boleslav. It has now started its work, which is highly automated ... (Image:Skoda)")
:quality(80)/p7i.vogel.de/wcms/f5/61/f561ad7c72ed41fd7a67ad9c481cb15d/0129799343v1.jpeg "Engine-generator units (MGU) from Steyr Motors are at work in the Leopard 2 main battle tank and the Leguan bridge vehicle (pictured). An extended contract is now to secure at least 500 more systems of this type for the Bundeswehr ... (Image:German Armed Forces)")
:quality(80)/p7i.vogel.de/wcms/6c/b5/6cb5ce2155433f6e73b16399adc4c561/0113143253v1.jpeg "In our China Market Insider we regularly provide you with relevant information directly from China. (Image:© Eisenhans - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/7f/fd/7ffd32863352c40f562f4245e4766e61/0129745849v1.jpeg "After US President Donald Trump once again resorted to his favorite weapon, tariffs, concerns rose in the EU that the so-called tariff deal could become invalid. But it looks as if the sea remains relatively calm ... (Image:F. Schneidler)")
:quality(80)/p7i.vogel.de/wcms/9c/ac/9cac6246660e746c5a3989399ac4d250/0128561645v1.jpeg "Artificial intelligence can drive efficiency in smart factories through centralized data management and predictive maintenance. (Picture: ©Fardived - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/6b/e2/6be235b5ad8a442ccd9d164b0b300d8b/0129763992v1.jpeg "As early as 2020, the Zimmer Group announced that it would convert its production to be sustainably CO2-neutral. (Image:Zimmer Group)")
:quality(80)/p7i.vogel.de/wcms/d4/ba/d4bab9481e66f8570f40eb8ef2a90198/0129795613v1.jpeg "A camera inspection during removal ensures that the components are placed correctly in the KLTs. (Image:Yaskawa Europe)")
:quality(80)/p7i.vogel.de/wcms/cb/56/cb56e42b01638b618e8d1b9b38f32faa/0129810132v1.jpeg "From summer 2026, \"AEON\" will support people at the BMW plant in Leipzig. (Image:diephotodesigner.de/BMW)")
:quality(80)/p7i.vogel.de/wcms/f5/7e/f57ef535ee35e7b3b7ff15a8a63cef10/eds-keyvisual-8000x4496v1.jpeg "(Source: European Defence Supply)")
:quality(80)/p7i.vogel.de/wcms/af/a3/afa312176d956068af20491957eef642/newsimage418262-3100x1745v1v1.jpeg "The autonomous shuttle of the Aula AI project during a demonstration of sensor data with artificial fog. (Image:University of Magdeburg)")
:quality(80)/p7i.vogel.de/wcms/84/2d/842d51915fa4fe69c72da5cc4ba52ed1/newsimage418103-3408x1917v1v1.jpeg "3 Printing can also be sustainable—if recyclable ink is used. (Image:Hereon/Steffen Niemann)")
:quality(80)/p7i.vogel.de/wcms/b0/78/b078e07634ffd4d5ee6b73af42cc7c55/newsimage418259-1000x563v1v1.jpeg "Magnesium during forming. (Image:TU Bergakademie Freiberg)")
:quality(80)/p7i.vogel.de/wcms/ca/14/ca142d9d19c3fa714a28af5df8288d33/0129781016v1.jpeg "Holon and Charterup have entered into a partnership to put autonomous mobility on the road in the USA. (Image:Holon)")
:quality(80)/p7i.vogel.de/wcms/c7/5e/c75e5942cd1d7e6bce973391af6dafe8/0129757614v1.jpeg "Pony.ai is cooperating with Moore Threads to bring Level 4 autonomous driving to the roads in China more quickly. (Image:Pony.ai)")
:quality(80)/p7i.vogel.de/wcms/a8/9f/a89ff7a3e28a19c03a22fd16cf3404b4/0129761837v1.jpeg "KD and Hitachi High-Tech have concluded a distribution agreement. (Image:KD)")
:quality(80)/p7i.vogel.de/wcms/7f/c1/7fc1c83b8509df676d27518b82aaef02/0129764984v1.jpeg "China Resources Microelectronics (CR Micro) has announced its intention to increase the prices of its own products. (Image:China Resources Microelectronics)")
:quality(80)/p7i.vogel.de/wcms/eb/4e/eb4e449562174ec95a5b3d30fb0137a2/0129648135v1.jpeg "The III-V germanium PV module with an efficiency of 34.2% is currently the most efficient solar module in the world. (Image:Jacob Forster)")
:quality(80)/p7i.vogel.de/wcms/92/c2/92c23fd5d95286c8c8c634314f6b22f8/0129722027v1.jpeg "The Meta Group has signed a five-year contract for GPU and CPU deliveries to expand its AI capacities. The agreement covers the delivery of up to 6 gigawatts of GPU computing power with a total value of around USD 60 billion. (Image:freely licensed)")
:quality(80)/p7i.vogel.de/wcms/01/77/017742db7d5eb5964c297bb8917df701/0129696639v1.jpeg "Mini-STX K3921-N: The motherboard masters Intel's Core i3 and N-Series processors and can connect multiple monitors with Full HD. (Image:Kontron)")
:fill(fff,0)/images.vogel.de/vogelonline/companyimg/76800/76895/65.jpg "FAULHABER_120mm.jpg ()")
:fill(fff,0)/p7i.vogel.de/companies/67/eb/67eba621ef6ea/logo2.png "logo2 (Wuxi InfiMotion)"){kind=logo}
:quality(80):fill(efefef,0)/p7i.vogel.de/wcms/67/ac/67acb931a438c/elatec-wp-gmp.png "Elatec WP GMP")
:quality(80)/p7i.vogel.de/wcms/88/44/88441b497a618976c959afbcba86e87e/0127567165v1.jpeg "Zero Trust security should be an approach for many companies due to increasing attacks on IoT and OT devices. (Image: ©ezra - stock.adobe.com)")
:quality(80)/p7i.vogel.de/wcms/db/01/db0155d9e7ca9fd069bd9bd4161f4d1b/0127315728v1.jpeg "Hackers have become the mafia of the digital age. They block systems, steal sensitive data, and extort money. They no longer operate as individuals in backrooms but as professionally organized groups equipped with top-notch technology. Their targets include both international corporations and medium-sized and small businesses. (Image:Bystronic/Justin Wood)")