Meer weten over veilige IT/OT-integratie in kritieke infrastructuur? Meld je nu aan voor de Round Table op 17 april 2025

Troy Gratama: “Only using a firewall is no longer sufficient in Critical Infrastructure”

Troy Gratama: “Only using a firewall is no longer sufficient in Critical Infrastructure” cover

In critical infrastructure—where water treatment facilities, energy companies, and other essential services operate—cybersecurity is paramount. Troy Gratama, Partner Manager at Fox Crypto, witnesses daily how organizations struggle with the balance between operational continuity (OT) and modern IT requirements. Troy shares his perspective on how a DataDiode can help create a more secure and stable OT environment without compromising innovation.

Why Critical Infrastructure requires extra protection

“We’re seeing a growing demand coming from the OT side,” says Troy. “That’s mostly because companies are becoming more aware of increasing digital threats and the need to exchange data between OT and IT environments. Only using a firewall is no longer sufficient.”

Troy notes that many organizations aim to analyze their operational data in the cloud. Think of monitoring water treatment processes or identifying spikes in power usage that might indicate upcoming maintenance. The main challenge? Ensuring that a cloud connection does not pose a risk to the underlying OT systems.

The power of the DataDiode

A DataDiode provides a physical separation between OT and IT while still allowing one-way data flow. “By implementing a DataDiode, information can securely travel from OT to IT without creating any pathway back in,” Troy explains. “It guarantees 100% that no one from the outside can penetrate your OT systems.”

Troy tells us about a water treatment plant as an example: “Previously, they had a two-way connection. If something went wrong, they’d disconnect the entire link. With a DataDiode, the outbound data flow continues uninterrupted, while the OT environment remains protected. This allows the company to maintain insight into what’s happening and prevent unexpected downtime.”

According to Troy, there are three key reasons why companies increasingly opt for a DataDiode in current times:

  1. Cloud adoption in OT: “We’re seeing more OT data sent directly cloud services like AWS or Azure for big data analysis. A DataDiode ensures that no unwanted traffic can flow back into the OT environment.”
  2. Enhanced uptime: “Organizations want to minimize downtime. With a DataDiode, they can monitor systems remotely and schedule maintenance before equipment fails.”
  3. Compliance and legislation: “New regulations, such as NIS2, require critical sectors to sharpen their focus on cybersecurity. A DataDiode helps them meet these stricter requirements.”

Use cases

In addition to the previous examples, Troy gives another insight: “We work with organizations that can’t afford any downtime availability of critical processes is key. By implementing a DataDiode to transfer data from their OT environment into a SIEM platform, they gain real-time insights without exposing critical systems to outside threats. The result is a remarkable drop in security incidents, plus a boost in confidence that their operations remain uninterrupted.”

Troy points out that the secure one-way flow not only helps detect potential cyber threats early, but also streamlines compliance with industry regulations: “Auditors and regulators look for demonstrable safeguards. With our hardware-enforced DataDiode, organizations can show they’ve taken decisive steps to protect their most important assets. It’s a clear and credible security measure that makes a real operational difference.” Read more through this link: How to: Secure data transfers between OT and IT environments with the DataDiode.

Conclusion

A DataDiode is not a magic solution for every security challenge, but it does offer a robust and straightforward layer of protection. For critical infrastructure companies, it’s a measure they are increasingly considering. “It’s all about ensuring you’re secure today and tomorrow,” says Troy Gratama. “A DataDiode provides that peace of mind.”

By leveraging this technology, organizations can seamlessly utilize their vital OT data for modern IT and cloud applications while safeguarding core systems against external threats.