14-07-2025
Fortinet Reveals 2025 OT Cybersecurity Report Findings
Home » Emerging technologies » Cyber Security » Fortinet Reveals 2025 OT Cybersecurity Report Findings
Fortinet® (NASDAQ: FTNT), announced the findings of its global 2025 State of Operational Technology and Cybersecurity Report.
The report presents insights into the current state of operational technology (OT) cybersecurity. It also highlights key trends, challenges, and best practices for securing IT and OT environments.
According to Fortinet, organizations are showing greater maturity in OT cybersecurity. The assignment of OT risk responsibilities to executive leadership, especially the CISO or CSO, has significantly increased. In 2025, 52% of organizations reported the CISO/CSO now oversees OT security, up from 16% in 2022.
'The seventh installment of the Fortinet State of Operational Technology and Cybersecurity Report shows that organizations are taking OT security more seriously. We see this trend reflected in a notable increase in the assignment of responsibility for OT risk to the C-suite, alongside an uptick in organizations self-reporting increased rates of OT security maturity,' said Nirav Shah, Senior Vice President, Products and Solutions, at Fortinet. 'Alongside these trends, we're seeing a decrease in the impact of intrusions in organizations that prioritize OT security. Everyone from the C-suite on down needs to commit to protecting sensitive OT systems and allocating the necessary resources to secure their critical operations.'
Fortinet revealed that self-reported OT security maturity is improving. At Level 1 maturity, 26% of organizations have implemented visibility and segmentation, compared to 20% last year. Most organizations now fall under Level 2, involving access and profiling.
The company reported a decline in the impact of cyber intrusions. Notably, operational outages that impacted revenue dropped from 52% to 42%. Organizations with higher OT maturity levels are facing fewer attacks or are better prepared to respond to basic threats like phishing.
Fortinet also highlighted that adopting cybersecurity best practices, such as cyber hygiene and employee training, has led to a significant reduction in business email compromise. There has also been a notable increase in the use of OT-specific threat intelligence.
The report showed that vendor consolidation is a sign of growing cybersecurity maturity. In 2025, 78% of organizations are working with one to four OT vendors, compared to previous years. Fortinet reported that its platform approach resulted in a 93% reduction in cyber incidents and a 7x improvement in setup and triage performance.
Key recommendations in the report include: Establish visibility and compensating controls for OT assets.
Deploy segmentation aligned with standards like ISA/IEC 62443.
Integrate OT into SecOps and incident response plans.
Adopt a platform-based security architecture.
Use OT-specific, AI-powered threat intelligence.
Fortinet's report is based on a global survey of over 550 OT professionals. Respondents came from industries including manufacturing, healthcare, energy, oil and gas, and utilities. Participants were from countries such as the U.S., UK, Germany, India, Japan, and others. Most respondents are actively involved in cybersecurity purchasing decisions or OT operations.
Fortinet continues to emphasize the need for executive-level commitment and strategic investment to protect critical OT systems and infrastructure.
