The OT cyber security landscape is changing rapidly — and it’s no longer optional.
With regulations like the EU Cyber Resilience Act (CRA) and frameworks such as the UK Cyber Assessment Framework (CAF), organisations operating in industrial environments and Critical National Infrastructure are being pushed towards measurable, auditable cyber resilience.
What’s changed?
It’s no longer just about perimeter security or reactive patching. The focus has shifted to:
Full asset visibility (what do you actually have?)
Lifecycle management (firmware, updates, vulnerabilities)
Risk-based security aligned to standards like IEC 62443
Documented processes and evidence of compliance
Ongoing monitoring and continuous improvement
The UK CAF in particular raises the bar for CNI operators, moving beyond technical controls into governance, risk ownership, and operational resilience.
What we’re seeing in the market is clear: Many organisations know they need to act but don’t know where to start.
Safe & Secure Seminars
The Machinery Regulation, along with the CRA (Cyber Resilience Act) will come into effect next year. The question is, are you ready?
Phoenix Contact will be holding a free to attend workshop at the Midlands Air Ambulance HQ in Telford on 5th November 2026.
Let our experts at guide you through these extremely important topics using our years of valuable experience. We will also look at other areas, such as Surge Protection Regulations, that compliment these subjects.
Key topics that will be included are:
• CRA (Cyber Resilience Act)
• CAF (Cyber Assessment Framework)
• Machinery Regulations
• IEC 62443
