Contact us
Resillion logo
  • Solutions
    • Artificial Intelligence and Machine Learning
    • Total Quality
    • Digital Assurance
    • Cyber Security Services
    • Conformance and Interoperability
    • Media Content Services
    • Advisory
    • Tools and Partnerships
    • Service Delivery
    • Transforming Quality with AI
    • Total Quality in AI
    • Governance, Risk and Compliance Services
    • Enterprise Technology and Business Operations services
    • Quality Engineering
    • Enterprise Technology and Business Operations
    • Test Infrastructure Engineering
    • Non-Functional Testing
    • Functional Testing
    • Cyber Security Consulting and Testing Services
    • Security Training and Security-as-a-Service
    • Global Cyber Delivery Centre
    • Security Operations Centres and Managed Security Services
    • Digital Forensics Services
    • Europrivacy
    • High-Speed Serial Data
    • Wireless Connectivity
    • Broadcast and Streaming Media
    • Distributed Energy Resources
    • Wireless Power
    • Digital Mastering Services
    • Digital Restoration Services
    • Home Entertainment Services
    • QC On Demand
    • Governance, Risk and Compliance Advisory
    • Total Quality Advisory
    • Cyber Strategy Advisory
    • QE Transformation Advisory
    • Power Networks Demonstration Centre | Strathclyde
    • Testwizard
    • CRACY Toolkit
    • CI Plus Test Tool
    • Ligada iSuite for HbbTV
    • Digital Transformation
    • Managed Services
    • Transforming Quality with AI Advisory
    • Assuring AI with Total Quality Advisory
    • Assuring AI with Total Quality
    • Governance, Risk and Compliance for AI
    • Governance
    • Cyber Resilience Act
    • EU AI Act and Digital Service Act
    • Quality Intelligence
    • Agile and DevOps
    • Continuous Testing
    • SAP Assurance
    • ERP Assurance
    • Test Data Management (TDM)
    • Cyber Security Testing
    • Accessibility and Usability Testing
    • Performance, Load and Stress Testing
    • Web and Mobile Testing
    • Test Automation
    • CISO-as-a-Service
    • Cyber Security for the Radio Equipment Directive
    • Penetration testing that adapts to your world
    • Red Teaming
    • USB Testing
    • Matter Certification
    • Aliro Certification
    • 4K HDR Immersive Logo
    • Ligada iSuite for HbbTV
    • Evora iSuite for DVB
    • CI Plus Test Tool
    • ATSC NEXTGEN TV
    • Qi Testing
    • Ki tooling and certification
    • Governance, Risk and Compliance for Energy
    • Governance, Risk and Compliance for Banking
    • Governance, Risk and Compliance for Business Operations
    • Governance, Risk and Compliance for Enterprise Technology and Operations
    • Governance, Risk and Compliance for Global Consumer Electronics
    • Governance, Risk and Compliance for Media
    • Governance, Risk and Compliance for Telecom
  • Industries
    • Banking, Financial Services and Insurance
    • Energy and Utilities
    • Global Consumer Electronics
    • Media
    • Telecoms
  • Insights
    • Blog
    • Case Studies
    • Events
    • News
    • Newsletters
    • Resources
  • About
    • Channel Partner Program
    • Compliance
    • Contact
    • Environmental, Social and Governance (ESG) at Resillion
    • Leadership team
    • Working at Resillion
    • Entry Level
    • Intermediate
    • Expert
    • Freelance/Consultant
  • Careers
Contact us
  • Solutions
    • Artificial Intelligence and Machine Learning
      • Transforming Quality with AI
        • Transforming Quality with AI Advisory
      • Total Quality in AI
        • Assuring AI with Total Quality Advisory
        • Assuring AI with Total Quality
        • Governance, Risk and Compliance for AI
    • Total Quality
      • Governance, Risk and Compliance Services
        • Governance
          • Governance, Risk and Compliance for Energy
          • Governance, Risk and Compliance for Banking
          • Governance, Risk and Compliance for Business Operations
          • Governance, Risk and Compliance for Enterprise Technology and Operations
          • Governance, Risk and Compliance for Global Consumer Electronics
          • Governance, Risk and Compliance for Media
          • Governance, Risk and Compliance for Telecom
        • Cyber Resilience Act
        • EU AI Act and Digital Service Act
      • Enterprise Technology and Business Operations services
    • Digital Assurance
      • Quality Engineering
        • Quality Intelligence
        • Agile and DevOps
        • Continuous Testing
      • Enterprise Technology and Business Operations
        • SAP Assurance
        • ERP Assurance
      • Test Infrastructure Engineering
        • Test Data Management (TDM)
      • Non-Functional Testing
        • Cyber Security Testing
        • Accessibility and Usability Testing
        • Performance, Load and Stress Testing
      • Functional Testing
        • Web and Mobile Testing
        • Test Automation
    • Cyber Security Services
      • Cyber Security Consulting and Testing Services
        • CISO-as-a-Service
        • Cyber Security for the Radio Equipment Directive
        • Penetration testing that adapts to your world
        • Red Teaming
      • Security Training and Security-as-a-Service
      • Global Cyber Delivery Centre
      • Security Operations Centres and Managed Security Services
      • Digital Forensics Services
      • Europrivacy
    • Conformance and Interoperability
      • High-Speed Serial Data
        • USB Testing
      • Wireless Connectivity
        • Matter Certification
        • Aliro Certification
      • Broadcast and Streaming Media
        • 4K HDR Immersive Logo
        • Ligada iSuite for HbbTV
        • Evora iSuite for DVB
        • CI Plus Test Tool
        • ATSC NEXTGEN TV
      • Distributed Energy Resources
      • Wireless Power
        • Qi Testing
        • Ki tooling and certification
    • Media Content Services
      • Digital Mastering Services
      • Digital Restoration Services
      • Home Entertainment Services
      • QC On Demand
    • Advisory
      • Governance, Risk and Compliance Advisory
      • Total Quality Advisory
      • Cyber Strategy Advisory
      • QE Transformation Advisory
    • Tools and Partnerships
      • Power Networks Demonstration Centre | Strathclyde
      • Testwizard
      • CRACY Toolkit
      • CI Plus Test Tool
      • Ligada iSuite for HbbTV
    • Service Delivery
      • Digital Transformation
      • Managed Services
  • Industries
    • Banking, Financial Services and Insurance
    • Energy and Utilities
    • Global Consumer Electronics
    • Media
    • Telecoms
  • Insights
    • Blog
    • Case Studies
    • Events
    • News
    • Newsletters
    • Resources
  • About
    • Channel Partner Program
    • Compliance
    • Contact
    • Environmental, Social and Governance (ESG) at Resillion
    • Leadership team
    • Working at Resillion
      • Entry Level
      • Intermediate
      • Expert
      • Freelance/Consultant
  • Careers
  • Contact
Cyber Security Services

Why IT penetration testing skills matter for OT security

January 8, 2026

Antonio Russu

Global Head Cyber Security

A driven and forward-thinking professional, Antonio Russu brings a strong blend of strategic insight, customer focus, and leadership excellence.

Securing industrial environments shouldn’t feel like chasing a rare form of magic. 

The biggest barrier to robust Operational Technology (OT) security today is not a lack of capability. It’s a trust gap, driven by the belief that OT environments require a completely different type of security professional. This misconception pushes organisations toward ‘OT-only’ specialists and limits access to a wider pool of experienced security practitioners. 

The reality is simpler. To secure critical infrastructure, organisations need teams that can bridge IT and OT – applying well-understood security principles through a safety-first methodology that respects the realities of industrial environments. 

With NIS2 raising expectations for cyber risk governance across critical services, OT security can’t sit in a specialist silo. Organisations need defensible, safety-first assurance they can explain to leadership and regulators. 

The core problem and the real solution

Many organisations are reluctant to engage general penetration testing firms for OT work. The concern is understandable: industrial systems are fragile, outages are expensive, and safety risks are real. But this hesitation is often based on a misunderstanding of the actual security issues. 

Most OT vulnerabilities are not exotic or proprietary. They are familiar problems showing up in environments with much higher consequences. 

Challenge 

 

  • OT pentesting requires ‘special powers’ 
  • Fear of outages or safety incidents 
  • Gaps between IT and OT teams 

Common misconception 

  • Industrial protocols need unique, proprietary skills 
  • IT-focused testers will break production systems 
  • OT security requires control engineers, not security testers 

Practical solution 

  • Apply existing skilled IT pentester skills: adaption of existing TCP/IP tools to OT testing, protocol analysis, attacker mindset 
  • Use a safety-first, largely passive testing methodology 
  • Train security professionals on OT priorities and consequences 

This is not about inventing a new discipline. It’s about adapting how testing is done. 

Why OT security is a CISO priority right now

OT security has moved rapidly up the CISO agenda – not because the technology is new, but because the risk landscape has changed and regulation such as NIS2 is accelerating expectations for governance and resilience. 

Select an option
IT/OT convergence has expanded the attack surface
The impact of attacks is much higher
Regulation is catching up
Wireless Charging

IT/OT convergence has expanded the attack surface

The idea of an ‘air-gapped’ OT network no longer reflects reality. Remote access, cloud analytics, and predictive maintenance have connected industrial systems to corporate IT networks. When those IT systems are compromised, attackers can move quickly toward operations. 

A high-profile example is the Jaguar Land Rover cyber attack, which began as a breach of corporate IT systems and forced the automaker to halt production across multiple factories for weeks in late 2025, costing an estimated £1.9 billion and paralysing the supply chain. This incident shows how IT-side breaches can cascade into OT and operational shutdowns. 

IT engineer reviewing code

The impact of attacks is much higher

An OT incident doesn’t just mean data loss. It can halt production, disrupt supply chains, and create safety risks. 

Ransomware and other attacks are surging against critical sectors. Research shows global ransomware attacks against critical industries increased by about 34 % in 2025, with many incidents hitting manufacturing, energy, healthcare and transportation – highlighting that industrial environments are now central targets, not outliers.  

These high-impact events underscore why CISOs cannot treat OT security as a niche concern; a single breach can stop production lines, erode revenue and undermine competitiveness. 

Wireless Charging

Regulation is catching up

Across the EU, NIS2 is part of this shift – increasing focus on accountability, risk management and operational resilience for organisations that provide essential services. 

Governments and regulators are responding to these high-impact incidents with stronger requirements. In the UK, legislators are advancing the Cyber Security and Resilience Bill, which extends oversight to OT suppliers and managed service providers to raise baseline protections for critical systems.  

Similarly, guidance from agencies such as the U.S. Cybersecurity and Infrastructure Security Agency (CISA) now emphasises robust OT asset management and reporting, reflecting a shift from voluntary best practice toward mandated cyber risk governance.  

These developments elevate OT security from an engineering concern to a compliance and governance priority at the executive level. 

The myth-busting truth: It’s still the same fundamentals

At a technical level, OT security is built on the same foundations as IT security. 

It’s basically still TCP/IP 

Modern OT infrastructures uses standard Ethernet and the TCP/IP stack at their core. Protocols such as Modbus/TCP, DNP3, Ethernet/IP, and OPC UA sit at the application layer – just like HTTP or SSH. Non-IP based protocols are still used, but often made available to the wider network via gateway devices (e.g. IP to serial, IP to RS485). 

If a penetration tester can analyse and manipulate network protocols, they already have the core skill required for OT. The questions don’t change: 

  • What is this protocol designed to do? 
  • How could it be misused? 

Familiar vulnerabilities, bigger consequences

Penetration testing in OT Security

The difference is not complexity – it’s impact. 

The essential shift: Safety and methodology

Where OT security truly differs is in how testing is performed. 

Done well, a safety-first methodology also creates repeatable, auditable assurance: clear scope, agreed risk boundaries, and documented decisions about what was tested (and what was deliberately not). 

A different priority order 

  • IT: Confidentiality → Integrity → Availability 
  • OT: Safety → Availability → Integrity 

In OT, safety always comes first. 

The golden rule of OT penetration testing

Replace aggressive exploitation with careful, controlled analysis.

Select an option
Passive testing first
Understand command impact

Passive testing first

Asset discovery and network mapping should be based on passive monitoring via SPAN/TAP ports and OT-aware tools. Aggressive scanning can destabilise or crash legacy equipment.

Implement Automation

Understand command impact

Testers must understand which protocol actions can stop processes or create safety risks. High-risk actions should only be performed in controlled lab environments and with explicit operational approval.

Power of AI-generated code

This isn’t about avoiding testing – it’s about doing it responsibly. 

Bridging the IT/OT divide

The belief that only ‘OT-exclusive’ firms can safely work in industrial environments limits an organisation’s defensive depth. 

Resillion bridges the IT/OT divide by combining deep offensive security expertise with a safety-centric operational framework designed for OT. Our approach applies proven penetration testing skills through controlled, risk-aware methodologies that respect the fragility and importance of the plant floor. 

OT security doesn’t require special powers. It requires the right mindset, the right process, and an uncompromising focus on safety. 

As NIS2 pushes cyber risk into the leadership spotlight, that mindset and process matter as much as tooling – because you need assurance you can evidence, not just intentions you can describe. 

For more information visit our penetration testing services web pages. 

WEBINAR

Supercharging AI assurance with Test Data Automation

Is your test data ready for scalable AI assurance under NIS2?
Watch the recording
Webinar ad  SUPERCHARGING AI Watch the recording

Related Insights

Providing solutions in a unified, structured approach across all critical domains to enable end-to-end quality.

Insights
Person holding a glowing business timeline with plan, build, launch, and scale milestones
July 1, 2026

Resillion wins CloudPay contract to deliver integrated security assurance

Read more
91% customer satisfaction for cybersecurity
June 16, 2026

Resillion achieves 91% customer satisfaction score for cyber security in Q1

Read more
Resillion
June 15, 2026

AI meets Live TV testing for a leading telecoms provider

Read more
IFa event 05
June 13, 2026

Let’s meet at IFA Berlin 2026

Read more
Smart meter testing dashboard
June 11, 2026

How do you know you’re Cyber Resilience Act (CRA) ready?

Read more

Get in touch

Providing solutions in a unified, structured approach across all critical domains to enable end-to-end quality – Because we’re the only ones who can.

Software testing specialist

Our accreditations and certifications

living-wage-employer CREST logo for cybersecurity services including vulnerability assessment, penetration testing, and SOC capabilities NCSC CHECK Penetration Testing logo representing cybersecurity assessment and penetration testing standards Approachable Registered ISO 27001 certification logo representing information security management standards Approachable Registered ISO 27001 certification logo representing information security management standards CCV Cyber Pentest certification logo representing cybersecurity testing and penetration testing standards Cyber Essentials logo for cybersecurity certification and security compliance Cyber Essentials Plus logo for cybersecurity certification and security compliance EPI Logo primary positive RGB scaled Europrivacy living-wage-employer CREST logo for cybersecurity services including vulnerability assessment, penetration testing, and SOC capabilities NCSC CHECK Penetration Testing logo representing cybersecurity assessment and penetration testing standards Approachable Registered ISO 27001 certification logo representing information security management standards Approachable Registered ISO 27001 certification logo representing information security management standards CCV Cyber Pentest certification logo representing cybersecurity testing and penetration testing standards Cyber Essentials logo for cybersecurity certification and security compliance Cyber Essentials Plus logo for cybersecurity certification and security compliance EPI Logo primary positive RGB scaled Europrivacy
living-wage-employer CREST logo for cybersecurity services including vulnerability assessment, penetration testing, and SOC capabilities NCSC CHECK Penetration Testing logo representing cybersecurity assessment and penetration testing standards Approachable Registered ISO 27001 certification logo representing information security management standards Approachable Registered ISO 27001 certification logo representing information security management standards CCV Cyber Pentest certification logo representing cybersecurity testing and penetration testing standards Cyber Essentials logo for cybersecurity certification and security compliance Cyber Essentials Plus logo for cybersecurity certification and security compliance EPI Logo primary positive RGB scaled Europrivacy living-wage-employer CREST logo for cybersecurity services including vulnerability assessment, penetration testing, and SOC capabilities NCSC CHECK Penetration Testing logo representing cybersecurity assessment and penetration testing standards Approachable Registered ISO 27001 certification logo representing information security management standards Approachable Registered ISO 27001 certification logo representing information security management standards CCV Cyber Pentest certification logo representing cybersecurity testing and penetration testing standards Cyber Essentials logo for cybersecurity certification and security compliance Cyber Essentials Plus logo for cybersecurity certification and security compliance EPI Logo primary positive RGB scaled Europrivacy
Resillion logo no strapline CMYK 4 white

24×7 Cyber Incident Response

+44 (0)330 223 0724

Email

[email protected]

Follow us

LinkedIn Icon YouTube Icon

Newsletter

© 2026 Resillion
  • Website Privacy Policy
  • Cookie Policy
  • Reporting bugs and vulnerabilities
  • Complaint Policy
  • ESG at Resillion
  • Modern Slavery Policy
  • Sitemap
GA4 Proxy: JS Loaded