Fortinet Report Shows Rising CISO Responsibility for OT Security

More than half (52%) of organizations reported that the Chief Information Security (infosec) Officer (CISO) or Chief Security Officer (CSO) is responsible for Operational technology (OT), an increase from 16% in 2022. Additionally, 95% of organizations stated that the C-suite oversees OT, rising from 41% in 2022. These findings are part of Fortinet's 2025 State of OT and Cybersecurity Report, which emphasizes the growing significance of OT cybersecurity.

The report shows that organizations are increasingly prioritizing OT security, with a significant number of companies planning to integrate cybersecurity responsibilities under the CISO in the next year. Nirav Shah, Senior Vice President, Products and Solutions at Fortinet, stated that the shift in OT risk responsibility reflects a broader recognition of its importance at the executive level. As cyber threats evolve, organizations that invest in OT security tools report fewer and less severe intrusion impacts.

Key findings from the report indicate that the maturity of OT cybersecurity is linked to a decrease in the effects of cyber intrusions. Organizations that have established visibility and implemented segmentation—26% reported achieving these basic measures—are more likely to withstand attacks. Furthermore, best practices such as enhanced training and the use of threat intelligence have reportedly led to a decrease in incidents, enhancing overall security posture.

Model Context Protocol Enhances LLM Effectiveness

SEALSQ advances quantum-resistant security modules for compliance by 2027.

CISA, NSA guide global software supply chain transparency with SBOM