Phitech 懇懋科技

04/06/2026

Fortinet是唯一连续七年荣获Gartner Peer Insights SD-WAN客户之选的供应商
我们荣幸地宣布，Fortinet再次获评Gartner Peer Insights™ SD-WAN客户之选，这是客户根据真实使用环境中的体验和成效，连续第七年对Fortinet安全SD-WAN给予的认可。
根据2026年2月发布的《SD-WAN客户之声》报告，Fortinet的综合评分达4.8分（满分5分），客户推荐意愿高达96%。该结果基于202条经过验证的评论得出，评审周期18个月，截至2025年12月31日。在已发布的852条供应商评论中，这一成就突显了Fortinet显著的规模化能力和持续稳定的客户信任。



客户持续选择Fortinet的原因
Gartner将软件定义广域网（SD-WAN）定义为用于将分支机构、其他企业和云端位置进行连接的产品。Fortinet安全SD-WAN则远远超越这一定义范畴。客户在最重要的领域持续给予了高度评价：
○ 产品能力（4.8/5）
○ 销售体验（4.8/5）
○ 部署体验（4.9/5）
○ 支持体验（4.8/5）
这些评价印证了Fortinet安全SD-WAN的差异化优势。
原生内置的安全网络
而非后期附加
Fortinet安全SD-WAN由统一操作系统FortiOS和专为加速网络与安全功能设计的专用ASIC技术提供支持。客户可受益于集成的下一代防火墙、高级威胁防护、ZTNA、网络分段和应用控制——所有这些均无需牺牲性能。
极简规模化运营
通过FortiManager实现集中编排和自动化运维，企业能够更快地部署分支机构、简化策略管理，并获得跨广域网、局域网和云端的深度可见性。零接触部署和一致的安全策略降低了运营复杂性，这也是部署体验获得4.9/5分的关键原因。
经过验证的客户信任
96%的客户推荐意愿已经充分说明了一切。在竞争日益激烈的SD-WAN市场中，客户的持续推荐证明了Fortinet提供安全连接、强劲性能和可衡量业务成果的能力。



基于真实经验的认可
Gartner Peer Insights是一个公开的平台，经验丰富的IT专业人士会在此发布关于企业软件和服务的经过验证的第一手评价。连续七年获得此项荣誉，不仅证明了Fortinet的技术实力，也彰显了跨行业、跨地域的持续的客户满意度。在企业加速上云、支持混合办公、将网络与安全融合到SASE架构的趋势下，安全SD-WAN仍然是企业成功的关键基石。
Fortinet通过以下方式提供这一基石：
○ 统一平台实现网络与安全融合
○ 高性能、ASIC加速的安全服务
○ 无缝演进至安全访问服务边缘（SASE）
○ 业界领先的性价比
我们认为，连续七年获得“客户之选”的认可印证了一个简单的事实：Fortinet安全SD-WAN在最关键的客户体验和业务影响领域始终表现出色。
随着越来越多企业开始进行广域网现代化改造，以满足AI驱动应用、多云环境和分布式办公的需求，Fortinet始终致力于提供安全、高性能且毫不妥协的连接能力。
Fortinet客户对
安全SD-WAN的五星评价



“客户之声”将Gartner Peer Insights上的评价整合为对技术和服务采购者有价值的洞察。这种聚合的同行视角，连同个人的详细评价，是对Gartner专家研究的补充，可以在您的采购过程中发挥关键作用。同行均为经过验证的技术产品或服务的评价者，他们不仅为产品评分，还提供了做出采购决策之前值得考虑的宝贵反馈。

source:

27/05/2026

Fortinet warns AI security failures can affect patient safety in healthcare
A new article published by Hospital + Healthcare argues that AI security should now be treated as a patient-safety issue for healthcare organisations, as AI tools become more deeply embedded in clinical and administrative systems. The article, supplied by Fortinet Australia and written by Cornelius Mare, says AI adoption in healthcare is expanding across care delivery, operations, medical imaging analysis, patient scheduling, and administrative automation.

The Fortinet Australia piece says healthcare organisations have traditionally focused on protecting electronic health records, hospital networks, and connected medical devices, but AI introduces a different attack surface that can affect not only data confidentiality but also the integrity of clinical decisions, operational processes, and patient outcomes. According to the article, treating AI as just another application to mitigate risks overlooks vulnerabilities specific to model-driven systems.

Breach data is used to frame the urgency of the issue. The article cites the Office of the Australian Information Commissioner, saying the health sector accounted for 18% of all notifiable data breaches in Australia between January and June 2025, the highest share of any industry in that period.

The article argues that greater use of digital health systems and AI in care delivery increases the importance of protecting those systems.

Three main AI-related risks are highlighted. First, AI systems depend on large datasets that may contain sensitive patient information, creating risks if training environments are compromised or if data is manipulated. Second, systems using natural language interfaces or automated workflows may be exposed to prompt injection and other input-based manipulation.

Third, AI models themselves may become targets through methods such as model manipulation or model inversion intended to extract sensitive data or influence outputs.

The Fortinet Australia article says the consequences differ from those of conventional cyber incidents because failures can compromise the integrity of medical insights and clinical workflows. A manipulated imaging model could affect diagnostic results, while a compromised system supporting triage or scheduling could disrupt patient prioritisation. Administrative AI systems handling sensitive data may also expose patient records if controls are inadequate.

Regulatory compliance alone is presented as insufficient. Existing privacy and data protection frameworks, the Fortinet Australia article says, were largely built around traditional IT systems rather than AI-driven decision environments. Fortinet’s piece argues that healthcare organisations need governance approaches covering how models are trained, validated, monitored, and secured throughout their lifecycle.

Five broad measures are proposed: establish AI governance frameworks and standards, secure the data pipeline, strengthen identity-centric security, monitor AI behaviour and outputs, and align cybersecurity with clinical resilience. The article also points to ISO 27090, described there as a developing standard relevant to healthcare organisations.

source:
https://dig.watch/updates/ai-fortinet-security-patient-safety-healthcare

20/05/2026

Fortinet advances its Security Operations Platform with Unified SOC, Agentic AI and expanded Endpoint Security
Fortinet has revealed key enhancements to its Security Operations platform. The updates aim to help organisations simplify operations, accelerate threat detection and respond more effectively to increasingly complex, AI-driven cyberthreats.

Fortinet, a global cybersecurity leader driving the convergence of networking and security, has announced major innovations across the Fortinet Security Operations (SecOps) Platform at Fortinet Accelerate 2026. Updates feature next-generation SecOps advancements, including expanded Agentic AI capabilities, a preview of FortiSOC, managed services and endpoint security enhancements delivered through FortiEndpoint.

“As attackers weaponise AI to accelerate reconnaissance, exploit development and social engineering, security operations must function with the same speed and coordination,” said Ken Xie, Founder, Chairman of the Board and Chief Executive Officer at Fortinet. “Fortinet is advancing a unified, AI-powered security operations platform that provides a scalable operating architecture across our defence framework, enabling organisations to build, extend or optimise their SOC through a single architecture spanning self-managed, cloud and managed deployments.”

Advancing security operations for an AI-accelerated threat landscape

Security teams must defend an expanding attack surface across endpoints, identity, cloud, email and networks while facing skills shortages, alert overload and fragmented tooling. The Fortinet Security Operations Platform unifies telemetry, analytics, threat intelligence and response across the kill chain, reducing complexity and accelerating investigations without forcing operational rebuilds.

This release strengthens four core areas for organisations:
• SOC modernisation
• Agentic AI ex*****on
• FortiGuard managed services
• Simplified endpoint security

FortiSOC and FortiAI: Unifying cloud SOC and advancing agentic operations

As security operations mature, tool sprawl and workflow fragmentation slow teams down.

At Accelerate 2026, Fortinet is previewing FortiSOC, a cloud-delivered offering that brings together the core capabilities of FortiAnalyzer, FortiSIEM, FortiSOAR and FortiTIP into a single integrated service, while expanding FortiAI to introduce new agentic workflows across security operations.

FortiSOC supports log ingestion, normalisation, correlation, automation, case management, behavioural analytics and identity-focused investigations through a single console and a unified data model, integrating telemetry from Fortinet and third-party environments. Built-in SOC best practices, shaped by Fortinet’s own global SOC operations, are embedded alongside AI/ML and FortiAI capabilities to accelerate analysis and response. Simplified subscription licensing and elastic cloud scale help streamline deployment, while future endpoint and continuous threat exposure management (CTEM) architectural expansions will be incorporated into the FortiSOC experience.

Fortinet is also expanding FortiAI across FortiAnalyzer, FortiSIEM, FortiSOAR and FortiSOC to move beyond interactive copilots towards agentic ex*****on that connects telemetry, tools and response actions across the SOC. Enhancements include a dedicated agent that automates alert triage, investigation, threat hunting and Model Context Protocol (MCP) support to maintain shared context and ex*****on continuity across detection, investigation and response workflows.

FortiGuard SOC-as-a-Service: Strengthening managed coverage

For organisations requiring continuous monitoring and escalation, Fortinet enhanced FortiGuard SOC-as-a-Service, extending the unified SOC architecture with Fortinet expertise and curated intelligence.

Enhancements include third-party log sources for multivendor monitoring, expanded Security Fabric integrations, FortiNDR telemetry to improve detection fidelity and FortiCNAPP telemetry to extend cloud visibility, strengthening investigation confidence across hybrid environments.

FortiEndpoint: Simplifying endpoint security in the AI era

Endpoints remain a primary attack vector and a source of operational complexity. Fortinet announced unified endpoint security enhancements through FortiEndpoint to consolidate multiple endpoint products, reduce agent sprawl, simplify licensing and management and strengthen protection against emerging threats, including AI application misuse.

Enhancements include single-agent unification across ZTNA, SASE, EPP, EDR and DLP, extending data protection without additional agents. Fortinet also introduced FortiAI-powered application visibility and control to detect and govern AI applications and their communications, reducing unsanctioned usage and data exposure risk. Enhanced EDR integration further streamlines management through a unified console and simplified licensing.

Enabling faster and smarter security operations

Together, these innovations advance Fortinet’s SecOps platform by strengthening unified SOC modernisation, previewing a transformative cloud SOC experience, expanding Agentic AI, enhancing managed coverage and simplifying endpoint security. The result is a single architecture that reduces operational complexity, accelerates investigations and enables organisations to defend against AI-driven threats at scale.

source:

Fortinet advances its Security Operations Platform with Unified SOC, Agentic AI and expanded Endpoint Security Sarah Weston | 23 March, 2026 Fortinet has revealed key enhancements to its Security Operations platform. The updates aim to help organisations simplify operations, accelerate threat dete...

13/05/2026

Fortinet unveils AI-driven cloud SOC & endpoint revamp
Fortinet has announced updates to its Security Operations platform, including a preview of a cloud-delivered security operations centre (SOC) service, additional agentic AI features, expanded managed detection and response coverage, and consolidated endpoint security under a unified FortiEndpoint offering.

Fortinet framed the releases as a response to growing operational pressure on security teams. Many organisations must manage a wider range of signals across endpoints, identity systems, cloud workloads, email, and networks, while also dealing with skills shortages and high alert volumes. Fragmented tools can slow investigations and response.

Fortinet's Security Operations platform aims to unify telemetry, analytics, threat intelligence, and response activities across multiple stages of an attack. It is built on the Fortinet Security Fabric architecture, which connects Fortinet products and third-party data sources through a shared framework.

The updates focus on four areas: SOC modernisation, agentic AI ex*****on, FortiGuard managed services, and endpoint security simplification.

Ken Xie, Founder, Chairman of the Board, and Chief Executive Officer at Fortinet, linked the company's product direction to the way attackers are using AI.

"As attackers weaponise AI to accelerate reconnaissance, exploit development, and social engineering, security operations must function with the same speed and coordination. Fortinet is advancing a unified, AI-powered security operations platform that provides a scalable operating architecture across our defence framework, enabling organisations to build, extend, or optimise their SOC through a single architecture spanning self-managed, cloud, and managed deployments."
Cloud SOC

The centrepiece is a preview of FortiSOC, a cloud-delivered offering designed to consolidate elements of Fortinet's SOC stack into a single service. Fortinet said FortiSOC brings together functions associated with FortiAnalyser, FortiSIEM, FortiSOAR, and FortiTIP.

FortiSOC includes log ingestion and normalisation, correlation, automation, case management, behavioural analytics, and identity-focused investigations. Fortinet said these functions run through a single console and a unified data model.

The service is designed to ingest telemetry from Fortinet products and third-party environments. Fortinet also said FortiSOC includes built-in SOC practices based on its internal operations, and incorporates AI and machine learning, alongside FortiAI functions, within analysis and response workflows.

Fortinet highlighted subscription licensing and elastic cloud scaling as part of the FortiSOC model, and pointed to planned expansions. These include endpoint-related additions and a continuous threat exposure management architecture, which it said will be integrated into the FortiSOC experience.

Agentic workflows

Alongside FortiSOC, Fortinet is expanding FortiAI across FortiAnalyser, FortiSIEM, FortiSOAR, and FortiSOC. The company described this as a move beyond interactive copilots towards agentic ex*****on across SOC workflows.

Enhancements include a dedicated agent to automate alert triage, investigation, and threat hunting. Fortinet also highlighted support for Model Context Protocol, which it said maintains shared context and continuity across detection, investigation, and response tasks.

Managed services

Fortinet also outlined updates to FortiGuard SOC-as-a-Service, its managed service for organisations that want continuous monitoring and escalation. Fortinet said the service extends the same unified SOC architecture with Fortinet expertise and intelligence.

New elements include support for third-party log sources for multivendor monitoring and expanded Security Fabric integrations. Fortinet cited FortiNDR telemetry for improved detection and FortiCNAPP telemetry for cloud visibility across hybrid environments.

Endpoint consolidation

On the endpoint side, Fortinet announced changes under FortiEndpoint, consolidating multiple endpoint products into a unified approach. The aim is to reduce the number of agents deployed on devices and simplify licensing and management.

Fortinet said FortiEndpoint provides a single agent across ZTNA, SASE, endpoint protection, endpoint detection and response, and data loss prevention. It also introduced application visibility and control features using FortiAI. Fortinet said these controls can detect and govern AI applications and their communications, addressing risks tied to unsanctioned usage and data exposure.

Fortinet also described tighter integration with its EDR functions, intended to streamline management through a unified console and simplify licensing.

Fortinet said the combined changes strengthen its unified SOC approach, broaden AI-driven automation, extend managed monitoring coverage, and reduce endpoint tool sprawl. The company added that it will continue to develop FortiSOC and expand its architecture to include additional exposure management and endpoint-related elements.

source:

Fortinet debuts cloud SOC preview and unified FortiEndpoint as it leans on agentic AI to automate security ops and cut endpoint sprawl.

06/05/2026

Fortinet unveils FortiOS 8.0 with AI & quantum-safe

By Mark Tarre, News Chief
Fortinet has released FortiOS 8.0, a new version of the operating system used across its Security Fabric. The update adds AI governance features, expands secure access service edge (SASE) options, and introduces post-quantum cryptography capabilities.

The release targets organisations running hybrid networks spanning branch sites, data centres, and multiple cloud services. It also reflects shifting security priorities as businesses adopt generative AI tools and security teams face rising volumes of encrypted traffic.

FortiOS runs across Fortinet products, including firewalls and SD-WAN systems. Fortinet positions it as a common layer for networking and security policy, monitoring, and enforcement across different environments.

Ken Xie, Founder, Chairman of the Board, and Chief Executive Officer at Fortinet, said: "FortiOS 8.0 reflects more than 25 years of continued innovation at the intersection of networking and security. As organisations embrace AI, cloud, and increasingly encrypted environments, a unified operating system is essential to reduce complexity, improve visibility, and ensure security can scale without slowing the business."

AI controls

A central theme in FortiOS 8.0 is visibility and control over AI application use inside organisations. Many enterprises now manage a mix of approved generative AI services and employee-selected tools. Security and compliance teams have raised concerns about data exposure through prompts, file uploads, and agent workflows.

One new feature, FortiView for AI attack surface and shadow AI, is designed to show how AI applications and services are used across the network. It separates sanctioned tools from unsanctioned ones that can appear when staff use consumer services or trial products without formal approval.

FortiOS 8.0 also adds AI-aware application control, intended to allow approved generative AI applications while restricting actions that could expose sensitive information. These controls are increasingly important in regulated industries that must enforce data-handling rules while employees use AI services for everyday work.

The operating system also adds visibility into Model Context Protocol and agent-to-agent interactions. Fortinet says this helps surface AI activity that traditional monitoring tools may miss, including interactions between applications, agents, and external tools.

Data loss prevention has been updated with optical character recognition to scan images and screenshots for sensitive content. Organisations increasingly see screen captures and image attachments as a common route for data leaving corporate environments because they can bypass controls that only inspect text.

Fortinet has also introduced AI agents across the Security Fabric that use conversational workflows for troubleshooting and configuration. Aimed at firewall and SD-WAN operations, these features are designed to reduce operational overhead and configuration errors that can lead to outages and security gaps.

SASE options

FortiOS 8.0 extends Fortinet's SASE design with a focus on deployment flexibility and data sovereignty. Demand for SASE has grown as organisations move security controls closer to users and applications, particularly as remote work and cloud usage remain structural features for many businesses.

A new option called SASE Outpost allows organisations to run a SASE point of presence in customer-controlled locations, including on-premises sites, private data centres, and co-location facilities. Fortinet says the model retains centralised cloud management while enabling local enforcement.

Fortinet has also added sovereign SASE deployment options. It describes a multi-layer model that can govern where logs are retained, where control-plane systems reside, and whether sovereign points of presence are used. It also supports deployments entirely inside customer data centres. Organisations in government, defence, and critical infrastructure often assess these controls during procurement, particularly where national security rules apply.

On the networking side, the release introduces unified SD-WAN bundles that combine overlay and underlay connectivity with centralised management and reporting. Fortinet is also adding multipath IPsec tunnels, which use multiple paths for encrypted connections between sites to improve resiliency.

Post-quantum steps

FortiOS 8.0 includes additions aimed at post-quantum security planning. While practical quantum attacks remain a future concern, many security teams have started mapping where long-lived data and encrypted management channels could be at risk if decryption methods change.

Fortinet says it has expanded quantum-resilient cryptographic controls for management access paths. It says the update covers agentless VPN connectivity and uses post-quantum cryptography certificates, including ML-DSA, for authentication and key establishment.

Encrypted traffic inspection is also included. Fortinet says SSL deep inspection has been strengthened with hybrid key exchange and post-quantum-safe cryptography, with the aim of detecting threats hidden in encrypted traffic while keeping end-to-end encryption in place.

Fortinet also links quantum-safe cryptography to its SASE design, saying quantum-safe SASE combines encrypted traffic inspection with protection for management access and agentless VPN, delivered through Fortinet firewalls.

The release comes as organisations reassess security architectures across branches, cloud deployments, and remote users. Fortinet is betting that a single operating system layer can simplify policy application, connectivity management, and monitoring across these environments.

"FortiOS 8.0 reflects more than 25 years of continued innovation at the intersection of networking and security. As organisations embrace AI, cloud, and increasingly encrypted environments, a unified operating system is essential to reduce complexity, improve visibility, and ensure security can scale without slowing the business," said Ken Xie.

Fortinet says FortiOS 8.0 adds features to address AI adoption, SASE deployment models, and post-quantum cryptography across the Security Fabric, and signalled further updates in these areas as customer requirements evolve.

source:
https://itbrief.com.au/story/fortinet-unveils-fortios-8-0-with-ai-quantum-safe

29/04/2026

Fortinet Is the Only Vendor Named a Gartner® Peer Insights™ Customers’ Choice for Seven Straight Years
By Rami Rammaha | March 05, 2026

We are proud to share that Fortinet has once again been recognized as a Gartner Peer Insights™ Customers’ Choice for SD-WAN, marking the seventh consecutive year customers have validated Fortinet Secure SD-WAN based on real-world experience and outcomes.

Based on the February 2026 Voice of the Customer for SD-WAN report, Fortinet scored 4.8 out of 5 with 96% willingness to recommend. These results are based on 202 verified reviews during the 18-month review period ending December 31, 2025. Of the 852 published vendor reviews, we believe this achievement highlights significant scale and consistent customer confidence.

Gartner Peer Insights™ Customers’ Choice for SD-WAN
Why Customers Continue to Choose Fortinet
Gartner defines software-defined wide area network (SD-WAN) as products used to connect branch locations to other enterprise and cloud locations. Fortinet Secure SD-WAN goes well beyond that definition. Customers consistently highlight strengths across the areas that matter most:

Product Capabilities (4.8/5)
Sales Experience (4.8/5)
Deployment Experience (4.9/5)
Support Experience (4.8/5)
We believe that these ratings reinforce what differentiates Fortinet Secure SD-WAN.

Secure networking built in, not bolted on
Fortinet Secure SD-WAN is powered by a single operating system, FortiOS, and purpose-built ASIC technology that accelerates both networking and security functions. Customers benefit from integrated next-generation firewall, advanced threat protection, ZTNA, segmentation, and application control—all without performance trade-offs.

Operational simplicity at scale
With centralized orchestration and automation through FortiManager, enterprises deploy branches faster, simplify policy management, and gain deep visibility across WAN, LAN, and cloud. Zero-touch provisioning and consistent security policies reduce operational complexity, as reflected in its 4.9/5 deployment experience score.

Proven customer confidence
A 96% willingness to recommend speaks volumes, in our view. In an increasingly crowded SD-WAN market, customers continue to validate Fortinet’s ability to deliver secure connectivity, strong performance, and measurable business outcomes.

SD-WAN Market
Recognition Backed by Real-World Experience
Gartner Peer Insights is a public platform that offers verified, firsthand reviews of enterprise software and services from experienced IT professionals. In our view, being recognized seven years in a row demonstrates not only technological strength but also sustained customer satisfaction across industries and geographies. At a time when organizations are accelerating cloud adoption, supporting hybrid work, and converging networking and security into SASE architectures, Secure SD-WAN remains the critical foundation for success. Fortinet delivers that foundation with:

Unified networking and security in a single platform
High-performance, ASIC-accelerated security services
Seamless evolution to secure access service edge (SASE)
Industry-leading price-performance
We feel that seven consecutive years of Customers’ Choice recognition reinforces a simple truth: Fortinet Secure SD-WAN delivers where it matters most: customer experience and business impact.

As enterprises modernize their WANs to meet the demands of AI-driven applications, multi-cloud environments, and distributed workforces, Fortinet remains committed to delivering secure, high-performance connectivity without compromise.

Fortinet Customer 5-Star Reviews for Secure SD-WAN
Reviews for Secure SD-WAN
“Voice of the Customer” synthesizes Gartner Peer Insights reviews into insights for buyers of technology and services. This aggregated peer perspective, along with the individual detailed reviews, is complementary to Gartner’s expert research and can play a key role in your buying process. Peers are verified reviewers of a technology product or service, who not only rate the offering, but also provide valuable feedback to consider before making a purchase decision.

Below are examples of some of the Fortinet five-star reviews from Gartner Peer Insights for Secure SD-WAN:

"Industry most matured and stable SD-WAN solution with integrated security benefits"
"Grest SWAN solution for route replacement and efficient bandwidth utilization with world class security"
— Software Manager, Software Industry

"User Identity-Based Application Steering: A Game Changer"
"Solution has both centralised and localised device & policy management available for flexible management and troubleshooting."
— Deputy Manager, Manufacturing

"Fortinet's SD-WAN: A Reliable Solution for Enterprise Environments"
"Fortinet's SD WAN solution delivors solid porformance, efficient security integration, and intuitive centralized management, providing a reliable and effective experience for enterprise environments."
— Senior Network, Banking



Gartner, Voice of the Customer for SD-WAN, By Peer Contributors, 27 February 2026

Gartner, Peer Insights and the Gartner Peer Insights Customers' Choice badge are trademarks of Gartner, Inc. and/or its affiliates.



Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

source:

Fortinet is the only vendor named a Gartner Peer Insights Customers’ Choice for SD-WAN for seven consecutive years, with 4.8/5 ratings and 96% willingness to recommend.…

22/04/2026

How Fortinet is Tackling Manufacturing Cyber Threats
By Maya Derrick
February 03, 2026
5 mins

Fortinet’s 2025 State of Operational Technology and Cybersecurity Report highlights how manufacturers are adjusting to the converged threat landscape
With cyber threats surging, Fortinet outlines the technologies and leadership strategies helping manufacturers protect uptime and safety across operations

The rise in cybersecurity threats – as well as cyber incidents – can be attributed to the upward trend of manufacturers digitising production and connecting more devices across operational technology (OT) networks.

Once isolated factory systems are now linked to corporate IT environments, exposing industrial control systems to cyber threats that can halt production and jeopardise safety.

Fortinet’s 2025 State of Operational Technology and Cybersecurity Report highlights how manufacturers are adjusting to this converged threat landscape – placing OT security under executive oversight and adopting strategies that blend visibility, segmentation and AI-driven detection.

“The seventh instalment of the Fortinet State of Operational Technology and Cybersecurity Report shows that organisations are taking OT security more seriously,” says Nirav Shah, Senior Vice President, Products and Solutions at Fortinet.


“We see this trend reflected in a notable increase in the assignment of responsibility for OT risk to the C-suite, alongside an uptick in organisations self-reporting increased rates of OT security maturity.

“Alongside these trends, we’re seeing a decrease in the impact of intrusions in organisations that prioritise OT security.

“Everyone from the C-suite on down needs to commit to protecting sensitive OT systems and allocating the necessary resources to secure their critical operations.”

OT security now reaches the boardroom
Fortinet’s research shows a cultural shift in a range of industries that are heavy users of OT, particularly manufacturing.

Fortinet finds that more than half (52%) of organisations now report that the CISO or CSO is directly responsible for OT, a stark increase from just 16% in 2022.

That figure climbs to 95% when accounting for all C-suite roles involved in OT oversight.

This trend is also a reflection of how operational technology has become a strategic risk domain.
Connected devices, programmable logic controllers (PLCs) and SCADA systems are now integral to digital transformation ambitions, making cybersecurity inseparable from business continuity.

“Responsibility for OT security continues to elevate within executive ranks,” Fortinet says in the report.

“As accountability continues to shift into executive leadership, OT security is elevated to a high-profile issue at the board level.”

Manufacturing: A threat landscape in flux
The manufacturing sector remains the most targeted industry for cyberattacks, accounting for roughly a quarter of all global incidents.

Statista found that the manufacturing sector faced the highest number of cyber attacks in 2023, with 638 reported.

Another Statista report also found that, on average, the number of phishing attacks per user in 2024 reached 2.91, with manufacturing and construction hitting around 1.65 attacks per user.

Threat actors increasingly deploy ransomware and wiper malware such as Ekans or Industroyer2 to cripple industrial operations and apply financial pressure, Fortinet finds.

This is because these attacks exploit the “flattened” architecture of many older OT environments, where limited segmentation allows malware to move laterally between IT and operational systems.

Fortinet’s research shows organisations with higher OT security maturity levels experience fewer operational outages and revenue impacts, down from 52% to 42% year-on-year.Adopting best practices is the best way to build resilience. Fortinet’s report finds that manufacturers implementing basic cyber hygiene, user awareness and threat intelligence have cut business email compromise significantly.
Consolidating vendors into integrated OT security platforms also enhances efficiency, with some organisations seeing up to a 93% reduction in cyber incidents compared to flat networks and seven times improvements in triage and setup times.

Best practices for OT security
Manufacturers can fortify OT against escalating IT-OT convergence threats using Fortinet's proven strategies from the report.

These six tips prioritise uptime for PLCs, SCADA and HMIs while slashing risks.

Implement strong network segmentation: Isolate critical industrial systems from corporate IT using ISA/IEC 62443 zones – FortiGate Rugged Firewalls thrive in factory conditions, blocking lateral movement from ransomware like Ekans.
Apply strategic patching and updates: Schedule non-disruptive patches during maintenance windows for legacy hardware lacking native security. Balance vulnerability fixes with production continuity to avoid costly downtime.
Enable continuous real-time monitoring: Deploy anomaly detection for protocol misuse and irregular controller patterns. FortiNDR provides AI-driven visibility, spotting threats before they halt assembly lines.
Establish clear governance frameworks: Align cybersecurity with safety and compliance standards, reflecting C-suite OT oversight. Ensure executive accountability drives resource allocation.
Foster cross-team collaboration: Unite IT, OT and security via FortiSIEM for shared playbooks and unified monitoring. This bridges silos, accelerating incident response in converged environments.
Invest in OT-specific training programmes: Train factory staff on industrial phishing and errors. Pair with FortiGuard OT Threat Intelligence for ICS-focused feeds, reducing human error in high-stakes operations.
Manufacturing’s low downtime tolerance makes it a prime target when it comes to cybersecurity threats.

However, Fortinet data showcases how important proactive strategies are and, most importantly, that they work.

As threats continue to evolve, executive buy-in and integrated platforms like Fortinet’s position leaders to protect production, IP and safety amid smart factory growth.

source:

With cyber threats surging, Fortinet outlines the technologies and leadership strategies helping manufacturers protect uptime and safety across operations