Siemens Deploys On-Premises AI for Factory Cybersecurity

The Operational Technology (OT) security market is projected to grow significantly, with forecasts estimating it to reach between $47.95 billion and $83.90 billion by the early 2030s. This growth is driven by the increasing convergence of IT and OT systems, which expands the attack surface for cyber threats against critical infrastructure. Regulations like Europe's NIS2 Directive and standards such as IEC 62443 are compelling industries to adopt more robust, defense-in-depth security architectures. This joint solution was tested and validated at Siemens' Digital Connectivity Lab in Erlangen, Germany. It combines three core components: Siemens' own private 5G infrastructure for on-premise data control, the SINEC Security Monitor for passive anomaly detection, and Palo Alto Networks' Next-Generation Firewall (NGFW) for deep packet inspection of OT protocols. This layered approach is designed to provide high-throughput, low-latency security without impacting real-time production systems. The collaboration specifically targets the unique needs of Operational Technology (OT), which standard IT security solutions often fail to address without creating performance bottlenecks. According to Michael Metzler, a VP at Siemens, a pharmaceutical plant has vastly different security requirements than an automotive assembly line, necessitating this kind of purpose-built, tailored solution. The system performs Layer 7 inspection and analysis of industrial protocols while maintaining the low latency required for time-critical applications. On-premises, or edge AI, is critical for manufacturing because it allows for real-time decision-making without the latency of sending data to the cloud. This is vital for applications like immediate quality control on a production line or predictive maintenance to prevent equipment failure. By keeping sensitive operational data and intellectual property on-site, edge deployments also enhance data privacy and security. Siemens has been developing its own private 5G infrastructure, first launched in 2023, to give industrial clients complete control over their local networks and data. This infrastructure is engineered for harsh industrial environments and supports applications like mobile robotics and autonomous logistics. The system is designed for ease of use by OT personnel, not just IT experts, simplifying configuration and management. Palo Alto Networks has been focusing on 5G-native security that extends zero-trust principles to cloud-native, distributed 5G networks. Their offerings include containerized firewalls and security for network slicing, designed to protect business-critical data across multi-access edge computing (MEC) and private network environments. This AI-powered approach is designed to counter increasingly sophisticated and automated cyberattacks.