The assumption that manufacturing networks are secure because they’re “air-gapped” or “isolated” represents one of the most dangerous blind spots in industrial cybersecurity today. Kevin Wood, Chief IIoT Architect (Global) at Cisco, regularly encounters operations teams confident in their network security until visibility tools reveal unknown devices and vulnerabilities they never suspected existed. He says the communication gap between these teams often stems from language barriers rather than fundamental disagreements about security priorities.

In his chat with ZJ, Kevin discusses how Cisco’s approach to industrial networking leverages decades of enterprise security best practices adapted for manufacturing environments, including ruggedized hardware with conformal coating and native industrial protocol support. They also explore Kevin’s framework for treating networks as the most powerful sensor environment in manufacturing operations, capable of detecting threats and automatically applying security policies based on device behavior and vulnerability profiles. His team’s methodology focuses on building migration strategies that acknowledge the reality of brownfield manufacturing environments, where legacy machinery often comes with vendor-mandated networking requirements that create security vulnerabilities spanning decades-old operating systems that cannot be patched.

Topics discussed:

• The persistent communication gap between OT and IT teams and how language barriers mask shared security objectives in manufacturing environments.
• Why air-gapped networks create false security assumptions and how maintenance laptops, USB drives, and other access points compromise supposedly isolated systems.
• The distinction between Industry 3.0 and 4.0 readiness, focusing on complete secure connectivity as the defining characteristic rather than automation alone.
• How dark pools of disconnected manufacturing data prevent effective AI and machine learning initiatives, forcing organizations to rely on synthetic data with synthetic results.
• Treating industrial networks as sensor environments rather than just data highways, enabling dynamic security policy application based on device behavior and vulnerability profiles.
• Migration strategies for brownfield manufacturing environments that acknowledge vendor-mandated networking requirements and legacy equipment constraints.
• The compensating controls approach to protecting legacy machinery that cannot be patched, using network-level security policies to contain vulnerabilities.
• Cloud connectivity challenges in manufacturing, including latency considerations when virtualizing control systems and multi-tenancy security concerns.
• Why security functions as an innovation enabler rather than an obstacle, requiring proactive threat prevention to support digital transformation initiatives.
• The importance of paranoid security mindset in manufacturing leadership, acknowledging that visibility gaps create attack vectors regardless of perceived isolation.

Listen to more episodes: 

Apple 

Spotify 

YouTube