India has already witnessed increasing cyber targeting of critical infrastructure sectors

Vaibhav Dutta, Vice President and Global Head-Cybersecurity Products & Services at Tata Communications.

As industries accelerate digitalisation through smart factories and connected supply chains, how do you see the cyber threat landscape evolving, particularly in critical sectors like energy and utilities where disruptions can directly impact sustainability outcomes?

As industries rapidly adopt smart manufacturing, connected supply chains, and digital utility operations, the cyber threat landscape is evolving beyond traditional IT attacks into cyber-physical threats that can directly impact industrial operations and critical infrastructure.

In sectors such as power, oil & gas, metals, mining, and utilities, operational environments are becoming highly interconnected. Industrial systems that were earlier isolated such as SCADA systems, PLCs, DCS environments, substation networks, and plant automation systems are now connected with enterprise IT, cloud platforms, remote vendor access, IoT devices, and AI-driven analytics platforms. While this improves operational efficiency and predictive maintenance capabilities, it also significantly increases the attack surface.

A practical example can be seen in modern power distribution and transmission environments. Utilities today rely on smart grid technologies, remote monitoring systems, and distributed energy management platforms. If attackers exploit vulnerable VPN access, insecure APIs, or weak segmentation between IT and OT networks, they can potentially move laterally into operational environments. In such scenarios, attackers may not always attempt a complete shutdown; even manipulation of telemetry data, alarm systems, or operator visibility can create operational instability and impact service continuity.

India has already witnessed increasing cyber targeting of critical infrastructure sectors. Multiple reports have highlighted attempts to target Indian power infrastructure and essential service environments through malware, remote access exploitation, and advanced persistent threat (APT) activity. Similarly, ransomware attacks on healthcare and manufacturing organisations have demonstrated how disruption of operational systems can affect both business continuity and public services.

The manufacturing sector is also facing a growing risk from ransomware and supply chain attacks. Smart factories today depend heavily on Industrial IoT devices, robotics, manufacturing execution systems (MES), and connected vendor ecosystems. Attackers are increasingly targeting weak remote access pathways, unpatched edge devices, and legacy OT assets that lack modern security controls. In many global incidents, attackers initially compromised IT environments and later pivoted into production networks, resulting in plant downtime and operational disruption.

Another growing concern is API and edge infrastructure security. As industries enable remote operations, predictive analytics, mobile workforce integration, and third-party connectivity, APIs are becoming critical communication layers between applications, cloud services, and operational platforms. Poorly secured APIs can expose industrial environments to DDoS attacks, credential abuse, bot-driven attacks, and unauthorised data access.

At the same time, AI adoption within industrial operations is creating a new layer of cyber risk. Utilities and industrial operators are increasingly deploying AI-driven systems for predictive maintenance, automated fault detection, energy optimisation, and operational analytics. Compromised AI models, manipulated operational datasets, or machine-speed attacks can directly affect automated decision-making processes in critical environments.

In this evolving threat landscape, organisations require integrated cybersecurity strategies that cover both IT and OT environments instead of treating them separately. Traditional perimeter-based security approaches are no longer sufficient for distributed industrial operations.

Tata Communications addresses these challenges through a combination of advanced digital infrastructure security and specialised OT security services. Platforms such as Tata Communications Edge Distribution Platform (EDP) help organisations secure distributed digital ecosystems through integrated DDoS protection, API security, edge security, and AI-driven threat monitoring closer to operational environments.

In addition, Tata Communications’ OT security portfolio helps industrial organisations improve cyber resilience across critical infrastructure environments through services such as:

• OT security assessments aligned to IEC 62443 and global industrial security standards
• OT asset discovery and visibility across industrial networks
• IT-OT network segmentation and industrial firewall implementation
• Secure remote access architecture for plants and substations
• OT SOC and continuous security monitoring for industrial environments
• OT threat detection and anomaly monitoring for industrial protocols
• Vulnerability management for industrial assets and legacy systems, and
• OT incident response and cyber resilience planning.

This integrated approach enables organisations to improve operational visibility, reduce cyber risk exposure, and strengthen resilience across connected industrial environments without impacting plant availability or operational safety.

Going forward, cybersecurity in critical infrastructure sectors will increasingly focus on operational resilience. The objective will not only be to prevent attacks, but also to ensure safe and continuous operations even during active cyber incidents.

With sustainability initiatives increasingly dependent on digital infrastructure, how important is a ‘secure-by-design’ approach in ensuring that transformation efforts remain both scalable and resilient over the long term?

A secure-by-design approach is becoming essential for any organisation pursuing long-term sustainability and digital transformation goals. Today, sustainability initiatives are deeply dependent on digital infrastructure whether it is smart manufacturing, intelligent energy management, connected supply chains, or AI-driven operational optimisation. If security is not built into this foundation from the beginning, the overall transformation becomes difficult to scale and vulnerable to disruption.

Many organisations still treat cybersecurity as a separate layer added after digital systems are deployed. In highly connected environments, this approach creates operational risk. A vulnerability in a cloud platform, remote access system, API, or edge device can impact production operations, energy usage, plant availability, or critical business services.

This becomes even more important in sectors such as utilities, manufacturing, transportation, and energy, where digital systems directly interact with operational technology environments. For example, smart energy grids, predictive maintenance platforms, industrial IoT devices, and automated control systems continuously exchange data between IT, cloud, and OT environments. Without proper segmentation, visibility, and security controls, a single compromise can spread across interconnected systems very quickly.

A secure-by-design strategy ensures that cybersecurity, resilience, and operational continuity are considered at every stage of digital transformation from architecture and connectivity design to application deployment and operational monitoring.

At Tata Communications, we are seeing customers increasingly move towards integrated digital architectures where connectivity, cloud, security, observability, and operational resilience are designed together instead of being managed independently. Through platforms such as Digital Fabric and Edge Distribution Platform (EDP), organisations can build secure and scalable digital ecosystems with built-in security controls closer to users, applications, and operational environments.

In parallel, Tata Communications’ OT security portfolio helps industrial organisations secure critical infrastructure environments through OT asset visibility, IT-OT segmentation, industrial firewall implementation, secure remote access, OT SOC monitoring, threat detection, and cyber resilience services aligned to industrial security frameworks such as IEC 62443.

This integrated approach helps organisations reduce operational risk while supporting scalability, automation, and sustainability objectives. Over the long term, successful digital transformation will depend not only on innovation and connectivity, but also on how securely and resiliently these environments are designed and operated.

Many enterprises are investing heavily in Industry 4.0 technologies – where do you see the biggest gaps or blind spots in cybersecurity spending as organisations modernise operations in pursuit of efficiency and decarbonisation?

One of the biggest gaps we see in Industry 4.0 transformation is that organisations are investing aggressively in digitalisation, but cybersecurity maturity is not keeping pace with operational modernisation.

Most enterprises today are deploying smart sensors, industrial IoT, AI-based analytics, connected manufacturing platforms, remote operations, and cloud-integrated production systems to improve efficiency and support sustainability goals. However, cybersecurity investments are often still focused mainly on traditional IT environments, while operational technology (OT) environments continue to remain underprotected.

A major blind spot is visibility. In many industrial environments, organisations still do not have complete visibility of all connected OT assets, industrial protocols, remote engineering workstations, or third-party access pathways inside plants and production networks. During assessments, it is common to find legacy PLCs, HMIs, and engineering stations directly communicating with enterprise IT or external networks without proper segmentation or monitoring.

Another critical gap is around secure remote access. After the pandemic, many industries enabled remote operations and vendor access very quickly to support distributed operations and plant support models. In several cases, remote access was enabled using shared credentials, always-on VPNs, or unmanaged endpoints without strong monitoring controls. Attackers are actively targeting these weak entry points because they often provide direct pathways into industrial environments.

API and edge security are also becoming major blind spots. Industry 4.0 environments rely heavily on APIs for communication between applications, machines, cloud platforms, OEM systems, and analytics engines. However, many organisations still do not treat APIs as part of their critical attack surface. Weak authentication, insecure integrations, and lack of runtime monitoring can expose industrial environments to bot attacks, credential abuse, and service disruption.

Supply chain dependency is another growing challenge. Modern manufacturing and utility environments operate through highly interconnected ecosystems involving OEMs, system integrators, software vendors, contractors, and cloud providers. Even if an organisation has strong internal security controls, vulnerabilities introduced through third-party software updates or vendor access can create significant operational risk.

We are also seeing that many organisations still approach cybersecurity as a compliance activity instead of an operational resilience function. Security controls are often implemented after digital systems are deployed, rather than being integrated during architecture and design stages. In Industry 4.0 environments, this creates long-term scalability and operational challenges.

At Tata Communications, we see increasing demand for integrated cybersecurity models that combine IT security, OT security, cloud security, edge security, and network resilience into a single operational framework. Through our OT security portfolio, we help organisations improve industrial asset visibility, implement IT-OT segmentation, secure remote access, strengthen OT monitoring, and build cyber resilience aligned to industrial standards such as IEC 62443.

In addition, platforms such as Tata Communications Edge Distribution Platform (EDP) help secure distributed digital ecosystems through integrated DDoS protection, API security, edge-based threat visibility, and AI-driven monitoring capabilities.

As organisations continue modernising operations for efficiency and decarbonisation, the biggest differentiator will not only be how fast they digitise, but how securely and resiliently they scale these connected industrial environments.

From your perspective at Tata Communications, how can resilient and intelligent network architectures help organisations maintain continuity in sustainability

initiatives, especially in the face of rising cyber threats and operational disruptions?

Resilient and intelligent network architectures are becoming a foundational requirement for organisations pursuing large-scale digital transformation and sustainability initiatives. Today, business operations, industrial systems, supply chains, and sustainability programs are all dependent on highly connected digital ecosystems. If the underlying network infrastructure is not resilient and secure, even a small disruption can affect operational continuity, production efficiency, and business outcomes.

In sectors such as manufacturing, energy, utilities, logistics, and mining, operations are increasingly distributed across plants, cloud platforms, edge locations, remote users, IoT devices, and OT environments. Traditional hub-and-spoke connectivity models are no longer sufficient for these dynamic environments. Organisations now require intelligent network architectures that can provide secure connectivity, real-time visibility, automated threat response, and application-aware performance across distributed operations.

For example, in a modern manufacturing environment, production systems continuously exchange data between shop-floor OT systems, MES platforms, cloud analytics engines, and remote operational teams. If network latency increases, connectivity fails, or a cyberattack impacts communication pathways, it can directly affect production scheduling, predictive maintenance systems, and operational efficiency targets.

Similarly, in utilities and energy environments, intelligent grid operations, smart metering systems, and remote substations depend heavily on secure and resilient connectivity. A cyberattack targeting network infrastructure, APIs, or remote access systems can disrupt operational visibility and delay response to critical events.

This is why networks today must evolve from simple connectivity infrastructure into intelligent and secure digital platforms. Organisations need architectures that can dynamically identify anomalies, prioritise critical operational traffic, isolate threats quickly, and maintain continuity even during cyber incidents or infrastructure failures.

At Tata Communications, we are seeing strong demand for integrated network and security architectures that combine connectivity, cloud, edge, and cybersecurity into a unified operational framework. Through Tata Communications Digital Fabric, organisations can build scalable and resilient digital ecosystems with intelligent traffic management, high availability, and secure connectivity across distributed environments.

In parallel, Tata Communications’ Secure Access Service Edge (SASE) capabilities help organisations converge networking and security by integrating SD-WAN, secure web gateway, zero trust access, cloud security, and threat protection into a single architecture. This improves visibility across users, applications, branch locations, and operational environments while enabling secure and seamless access.

For industrial and critical infrastructure sectors, Tata Communications also brings specialised OT security capabilities that help secure operational environments through:

• IT-OT network segmentation
• Industrial firewall deployment
• Secure remote access for plants and substations
• OT asset visibility and monitoring
• Industrial threat detection and OT SOC services, and
• OT vulnerability management and incident response.

Additionally, Tata Communications Edge Distribution Platform (EDP) strengthens distributed environments through integrated DDoS protection, API security, edge-based threat filtering, and AI-driven monitoring capabilities closer to operational workloads.

Together, these capabilities help organisations improve cyber resilience, reduce operational downtime, and maintain continuity across critical business and sustainability initiatives. As enterprises continue adopting Industry 4.0 technologies, resilient network architecture will become a key enabler for secure growth, operational efficiency, and long-term sustainability outcomes.

How do you balance the need for rapid digital adoption – often essential for achieving net-zero targets- with the equally critical need to embed robust cybersecurity controls without slowing innovation?

The key is to ensure cybersecurity moves at the same speed as digital transformation instead of becoming a checkpoint added later. In many organisations, the pressure to achieve operational efficiency, sustainability targets, and net-zero commitments is driving rapid adoption of AI, IoT, cloud platforms, smart factories, and connected industrial systems. However, if security is treated as a separate activity, it can either slow down innovation or leave major risk gaps.

The organisations that are scaling successfully are the ones embedding security directly into the architecture from the beginning. This includes secure network design, identity controls, OT segmentation, API protection, secure remote access, and continuous monitoring across IT and OT environments. When these controls are built into the foundation, organisations can adopt new technologies faster without repeatedly redesigning security later.

This is especially important in sectors such as manufacturing, energy, and utilities where digital systems directly interact with operational environments. For example, smart energy management systems, connected production lines, and predictive maintenance platforms generate significant operational benefits, but they also increase exposure to cyber threats if visibility and security controls are not integrated early.

Modern cybersecurity frameworks must therefore support agility rather than restrict it. AI-driven threat detection, zero-trust architectures, automation, and integrated SOC operations help organisations identify and respond to threats in real time without impacting operational continuity.

At Tata Communications, we see enterprises increasingly moving towards integrated digital ecosystems where connectivity, cloud, edge, security, and observability work together as a unified framework. Through platforms such as Digital Fabric, SASE, and Edge Distribution Platform (EDP), organisations can securely scale digital operations while maintaining resilience and performance.

In parallel, Tata Communications’ OT security portfolio helps industrial organisations secure connected operational environments through OT asset visibility, IT-OT segmentation, industrial firewall deployment, secure remote access, OT SOC monitoring, and cyber resilience services aligned to industrial standards such as IEC 62443.

Ultimately, cybersecurity should not be viewed as a barrier to innovation. When implemented correctly, it becomes a key enabler for sustainable and scalable digital transformation.

Looking ahead, what role will emerging technologies such as AI-driven threat intelligence and zero-trust frameworks play in safeguarding the digital backbone of sustainable industrial ecosystems?

AI-driven threat intelligence and zero-trust frameworks will become foundational for securing next-generation industrial ecosystems as enterprises continue expanding connected operations across cloud, edge, IoT, and OT environments.

Industrial environments today are far more interconnected than before. Smart factories, digital utilities, connected supply chains, and AI-driven operational platforms rely on continuous communication between users, devices, applications, and industrial systems. In such environments, traditional perimeter-based security models are no longer sufficient because threats can originate from compromised identities, remote access pathways, APIs, third-party ecosystems, or even unmanaged OT assets inside the network.

Zero-trust architectures help address this challenge by continuously validating users, devices, workloads, and access requests instead of assuming implicit trust within the network. This becomes especially important in industrial environments where remote operations, vendor access, and distributed assets are increasing rapidly. Zero trust helps reduce risks related to lateral movement, compromised credentials, and unauthorised access to critical operational systems.

At the same time, AI-driven threat intelligence is becoming critical because cyberattacks are increasing in speed, scale, and sophistication. Industrial environments generate enormous volumes of telemetry across IT and OT systems, making manual monitoring increasingly ineffective. AI-powered security analytics can help organisations detect abnormal industrial traffic patterns, identify anomalies across operational environments, correlate threats faster, and automate incident response before operational disruption occurs.

For sectors such as manufacturing, energy, utilities, and transportation, this is critical because cyber incidents can directly affect production availability, operational continuity, and critical services.

However, many organisations still operate fragmented security environments with separate tools for network security, cloud security, endpoint protection, OT monitoring, and identity management. In highly distributed industrial ecosystems, this creates operational complexity and visibility gaps.

At Tata Communications, we see the future of cyber resilience being shaped by integrated and intelligence-driven security architectures that combine connectivity, security, observability, and operational resilience into a unified framework. Through capabilities such as Digital Fabric, SASE, AI-led security operations, and Edge Distribution Platform (EDP), organisations can improve visibility across distributed environments while strengthening protection against evolving cyber threats.

In parallel, Tata Communications’ OT security portfolio helps industrial organisations strengthen cyber resilience through OT asset visibility, IT-OT segmentation, industrial firewall deployment, secure remote access, OT SOC monitoring, industrial threat detection, vulnerability management, and incident response services aligned to industrial security frameworks such as IEC 62443.

Going forward, AI-driven security and zero-trust frameworks will not simply support cybersecurity strategies – they will become core architectural requirements for protecting the digital backbone of sustainable industrial transformation.

Vaibhav Dutta is Vice President and Global Head-Cybersecurity Products & Services at Tata Communications. Vaibhav has around 23 years of experience in multiple functions including product management, engineering, business development, practice COE, solution design and strategy advisory. He has a rich domain experience across all sub-areas of cybersecurity. He has been a pioneer in creating various managed security service offerings and frameworks during his tenure with one of the leading GSI’s around Threat Management, Identity Management and OT Security. Vaibhav is recognised as a thought leader in the industry owing to his work with various advisors’ communities and analysts. In his current role at Tata Communications, Vaibhav leads Strategic ventures for Cybersecurity Business including New Product & Service Initiatives, Analyst Relations, New Investment & Market Exploration and more.