Secolve’s latest OT Security Awareness Training Insights Report reveals the state of operational technology (OT) cybersecurity training across critical industries
from energy to manufacturing and water. The findings highlight key maturity gaps, risks, and actionable steps to build a cyber-safe culture.
Top 5 Immediate Actions
1. Launch quarterly, role-based OT simulations tied to real failure modes.
2. Integrate cyber risk into operational safety briefings and permits-to-work.
3. Assign clear ownership across Cyber, OT, and Safety teams.
4. Convert annual training to onboarding + quarterly + monthly refreshers.
5. Extend awareness to vendors and contractors before site access.
See how your organisation compares
0
%
53.6% of organisations remain at a “developing” OT security culture.
0
%
Only 28% offer tailored OT-specific training.
0
%
24% of staff have never received OT training.
0
%
Just 15.5% of frontline staff feel very confident detecting digital threats.
0
%
79% list cyber threats as their #1 organisational risk.
GAP Generic IT training → SOLUTION OT-specific, scenario-based modules
Training remains too IT-centric, infrequent, and disconnected from operational safety.
To move from compliance to culture, organisations must adopt hands-on, scenario-based learning integrated with day-to-day operations.
Weak
Ad-hoc, IT-centric,
low relevance
Establish ownership,
start role-based modules
Developing
Some role-based &
scenario use
Add quarterly refreshers,
micro-lessons, 1-click reporting
Embedded
Continuous learning, cyber
integrated with safety
Run vendor drills, publish
OT learning bulletins