Fortinet: AI-based detection is transforming security in manufacturing

As operational technology (OT) networks expand, manufacturing companies are increasingly deploying solutions based on artificial intelligence and machine learning to protect themselves from increasingly complex cyber threats. This is highlighted in Fortinet’s 2025 State of Operational Technology and Cybersecurity Report.

Increased executive oversight of OT security

More than 50% of organizations report that the CISO or CSO is directly responsible for OT security — a significant increase from 16% in 2022. When all C-level roles involved in oversight are included, this share rises to 95%.

According to Nirav Shah, Senior Vice President, Products and Solutions at Fortinet, companies that prioritize OT security report a measurable reduction in the impact of incidents.

Manufacturing remains the most targeted sector

Manufacturing accounts for roughly one quarter of all global cyberattacks. In 2023 the sector experienced 638 attacks, while in 2024 an average of 1.65 phishing attacks per user was recorded.

Among the main threats are ransomware and malware such as Ekans and Industroyer2, which exploit weak segmentation in older OT environments.

AI monitoring reduces incidents

AI-based anomaly detection systems allow early identification of unusual behavior in industrial protocols and controllers.

Fortinet reports that organizations with higher OT maturity — including those using AI monitoring — reduce operational disruptions and financial impact from 52% to 42% year-over-year.

Companies that consolidate vendors into integrated OT security platforms achieve up to 93% reduction in incidents compared with networks without segmentation, as well as seven-times faster incident response.

Recommended security measures

Fortinet recommends:

• segmenting OT and IT environments according to the ISA/IEC 62443 standard
• strategically applying patches without interrupting production
• implementing AI-based real-time monitoring
• coordination between IT and OT teams
•  employee training and the use of specialized threat intelligence

The manufacturing sector has minimal tolerance for downtime, making it a preferred target for cybercriminals. The data shows that a combination of executive commitment and intelligent monitoring systems is key to sustainable protection of industrial infrastructure