Strengthening digital resilience in regulated and innovation-driven sectors

How can highly regulated, innovation-driven sectors strengthen their cybersecurity posture in an era increasingly shaped by artificial intelligence? This was one of the questions discussed on 26 February at the event “Cybersecurity and AI Fundamentals for MedTech, Life Sciences and Engineering.”

The discussions highlighted that cybersecurity in MedTech, life sciences and engineering is no longer just a technical discipline. It is a strategic, operational and cultural priority.

Cybersecurity in regulated environments: beyond compliance

One of the core themes of the event was the distinction between compliance and resilience. In sectors such as MedTech and life sciences, organisations operate under strict regulatory frameworks. Systems are validated, processes are documented and audits are routine. However, compliance alone does not automatically protect against evolving cyber threats.

Participants discussed a critical insight: A validated system is not necessarily a secure system.

Regulations ensure conformity to defined standards at a given point in time. Cybersecurity, however, requires continuous adaptation. Threat actors innovate constantly, leveraging automation and AI to exploit vulnerabilities faster than ever before. For organisations in regulated environments, this means cybersecurity must be treated as a living process – not a static checklist.

The expanding attack surface in connected environments

Manufacturing facilities, laboratories, connected medical devices and industrial control systems are increasingly networked. While digitalisation enhances efficiency and innovation, it also expands the attack surface.

Operational Technology (OT) environments present specific challenges:

  • High availability requirementsL
  • Legacy systems with limited patching capabilities
  • Safety-critical processes
  • Long product lifecycles

A cyber incident in these settings can result in production downtime, supply chain disruption, regulatory implications and, in the case of medical devices, potential patient safety risks.

Discussions emphasised the need for closer alignment between IT and OT teams, as well as increased cybersecurity awareness among shopfloor personnel who may not traditionally see themselves as targets.

Attackers do not focus on job titles. They focus on access.

The human factor: From the weakest link to the strongest defence

A recurring theme throughout the event was the need to reframe the narrative around people in cybersecurity. Rather than viewing humans as the weakest link, speakers emphasised that humans are the most adaptable and intuitive component of any security system.

Technology detects and responds. Humans anticipate and question.

In sectors where collaboration, speed and innovation are critical, attackers often exploit urgency, authority and trust. This makes behavioural awareness a decisive factor in preventing incidents.

Effective cybersecurity culture is characterised by:

  • Employees who pause before reacting to unusual requests
  • Teams that question urgency
  • A working environment where reporting suspicious activity is encouraged

Psychological safety was identified as a key enabler. When employees fear blame, incidents go unreported. When they feel supported, they become active defenders.

Artificial Intelligence: opportunity and risk

AI was a central topic of discussion – both as an opportunity and as a challenge.

AI as an enabler

In MedTech and engineering, AI supports:

  • Data analysis and diagnostics

  • Process optimisation

  • Predictive maintenance

  • Accelerated research and development

In cybersecurity awareness, AI enables adaptive learning, personalised simulations and more realistic training scenarios.

AI as a threat multiplier

At the same time, AI enhances attackers’ capabilities. Participants discussed how AI-driven tools now enable:

  • Highly personalised phishing campaigns
  • Realistic voice cloning and deepfake audio
  • Automated vulnerability discovery
  • Rapid scaling of social engineering attacks

The era of poorly written scam emails is largely over. Modern attacks are context-aware, technically sophisticated and often indistinguishable from legitimate communication.

This increases the importance of human judgement and critical thinking.

Interestingly, participants observed a dynamic shift: While cybersecurity initiatives are often driven top-down, AI adoption frequently occurs bottom-up. Employees are already experimenting with AI tools in their daily work, prompting organisations to rapidly develop governance, usage policies and security guidelines. This requires proactive leadership and open dialogue rather than reactive restriction.

From control to empowerment

Another key insight was the importance of moving from control-based approaches to empowerment-based strategies. Ownership of cybersecurity cannot be imposed. It must be enabled.

Organisations can foster ownership by:

  • Making cybersecurity relevant to daily work
  • Integrating short, practical learning formats into routines
  • Demonstrating leadership commitment
  • Creating safe reporting mechanisms
  • Encouraging cross-functional collaboration between IT, engineering and operations

In highly specialised sectors such as MedTech and life sciences, role-based training is particularly effective. Engineers, quality managers, laboratory staff and executives face different risk scenarios and require tailored awareness approaches.

Building sustainable cyber resilience

The event concluded with a strong message: Cyber resilience is not about eliminating human error. It is about creating an environment in which people are informed, supported and confident in handling digital risks.

For MedTech, life sciences and engineering organisations, this means:

  • Embedding cybersecurity into innovation processes
  • Integrating security considerations early in product development
  • Aligning IT, OT and compliance functions
  • Continuously educating and empowering employees

As digital transformation and AI adoption accelerate, cybersecurity must evolve in parallel.

Events like this demonstrate that resilience is built not only through technology, but through collaboration, awareness and shared responsibility.

What can CYRUS offer?

CYRUS provides free, multilingual cybersecurity training designed to raise awareness and build confidence – not fear. With more than 40 courses ranging from basic cyber hygiene to advanced topics, the programme offers accessible and structured learning pathways for beginners and experts alike.

What makes CYRUS different is its core philosophy: People are not the problem – they are the solution.

When training is practical, inclusive and relevant to real work situations, employees do not feel blamed. They feel capable.