IT in Manufacturing


Cyber security trends for 2025: The five levels of maturity

March 2025 IT in Manufacturing

As cyber attacks reach unprecedented levels, chief information security officers (CISOs) are increasingly burdened with the responsibility of safeguarding organisations. Recent research indicates that the number of cyber attacks has surged dramatically, highlighting the urgent need for enhanced cybersecurity measures across various sectors. Despite the growing threat landscape, a survey found that only 13% of organisations globally are considered ‘cyber mature’ enough to effectively mitigate and recover from cyber incidents. These mature organisations can recover 41% faster from attacks compared to those at the lower end of the maturity scale. Key factors contributing to this speed include having advanced security tools that can provide early warnings about risks, clearly defined processes for incident response, and reliable backup systems for critical data.


Graham Brown, country manager for SA/SADC at Commvault.

Determining CISO maturity levels

With the onus on CISOs to implement essential security measures, it is crucial for business leaders to evaluate whether they have the right individuals in place, supported by adequate resources. The authority of CISOs varies significantly across organisations, impacting overall cyber security maturity. At the initial stage, security responsibilities may fall to individuals who primarily follow orders, while at more advanced levels, CISOs engage with executive leadership to ensure cyber security is integrated into all aspects of business operations. To understand an organisation’s position within this maturity framework and its implications for cyber security risk and resilience, we can categorise the stages into the five following distinct levels:

Check box security: In organisations at this least mature level, security is often managed by IT staff who lack dedicated cyber security roles. Responsibilities are typically combined with routine IT tasks, such as server maintenance and software updates. These organisations may prioritise other business functions over security, leading to inadequate measures like multi-factor authentication being overlooked.

The right time for a CISO: As businesses grow, their exposure to cyber threats increases, prompting them to consider hiring a senior cyber security professional or CISO. At this stage, the role is often technical in nature, with limited opportunity for strategic planning. Compliance requirements begin to take precedence, necessitating formal monitoring and auditing processes.

Beyond a technical CISO: Organisations soon realise that CISOs require greater autonomy to implement security controls effectively. While decision making may still be limited to recommending technologies, CISOs must gain authority over broader measures that encompass cloud security and access management. This stage calls for strong collaboration between IT and security teams.

The empowered CISO: Approaching full maturity, CISOs participate in strategic discussions with senior management and advise on cyber security risks and recovery capabilities. They help define the organisation’s risk tolerance and develop strategies that align with business objectives while addressing emerging technologies like artificial intelligence.

Secure by design: At this ultimate level of maturity, security is embedded within the organisation’s culture and processes. Employees across all departments adhere to security protocols as part of their daily operations. Continuous testing of systems is standard practice, ensuring that teams are well prepared for incident response and data recovery.

Planning the maturity cycle

It is essential to recognise that no two organisations are alike when it comes to cyber security maturity. Each entity has its unique infrastructure, operational methods and strategic goals. Public companies will have different priorities compared to private ones, and larger organisations will face different challenges to smaller entities.

Measuring progress through the cyber security maturity cycle can be complex; however, understanding the characteristics of each stage allows business leaders to align their development efforts with their specific needs, whether through nurturing internal talent or recruiting skilled CISOs. This alignment will help build a level of maturity that matches their organisation’s risk tolerance as cyber threats continue to escalate into 2025 and beyond.




Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Overcoming the bottling industry’s fragmented visibility
Schneider Electric South Africa IT in Manufacturing Electrical Power & Protection
Beverage bottling facilities are among manufacturing’s most energy-intensive environments, yet many still operate without granular insight into where that energy goes. Rezolia Muller-Potluri of Schneider Electric explains how tiered metering architecture and advanced

Read more...
Advancing intelligent apparel manufacturing with industrial AI and humanoid robotics
IT in Manufacturing
Jack Technology, a global maker of industrial sewing equipment, has chosen Siemens software and engineering tools to bring artificial intelligence and humanoid robots into apparel production, aiming to shorten development cycles and lift manufacturing efficiency.

Read more...
New chiller line for high-density AI data centres
Schneider Electric South Africa IT in Manufacturing
Schneider Electric has launched the Uniflair XCA, a new series of air-cooled and free-cooling chillers designed for artificial intelligence-driven, high-density liquid-cooled data centres.

Read more...
Turning system integrators into trusted technology partners
Schneider Electric South Africa IT in Manufacturing System Integration & Control Systems Design
Schneider Electric’s Alliance Partner Programme is repositioning system integrators from hardware suppliers into lifecycle-value partners. Oriel Soupen explains the competency framework, certification model and real-world results that are already helping African system integrators win higher-value, longer-term engagements.

Read more...
Why renewable projects need integrated protection and control
IT in Manufacturing
Fragmented secondary plant integration in renewable energy projects causes costly delays during commissioning. ACTOM Protection and Control’s Secondary Plant Integration solution consolidates all secondary systems under a single engineering framework, reducing risk and accelerating grid

Read more...
When digital twins move from concept to critical tool
IT in Manufacturing System Integration & Control Systems Design Maintenance, Test & Measurement, Calibration
Digital twins are moving out of the lab and onto the mine, the factory floor and the transport network where they predict failures before they happen. Amritesh Anand looks at where they earn their keep, the data and integration work behind them, and the security questions every organisation should ask before switching one on.

Read more...
How a digital foundation can overcome the LNG trilemma
Schneider Electric South Africa IT in Manufacturing SCADA/HMI
The LNG sector is racing to add capacity, but without a digital backbone, growth creates complexity rather than capability. Christophe Begat of Schneider Electric explains how connecting data, systems and analytics across the LNG value chain can resolve the trilemma of secure supply, lower emissions and tighter costs.

Read more...
Decarbonisation is reshaping mining strategy in Africa
Schneider Electric South Africa IT in Manufacturing Electrical Power & Protection
Mining companies across Africa are embedding decarbonisation into operational strategy, driven by investor, regulatory and customer pressure to reduce emissions while improving resilience.

Read more...
Siemens and HighByte partner to scale industrial AI
Siemens South Africa IT in Manufacturing Fieldbus & Industrial Networking
Siemens is expanding its Industrial Edge ecosystem through a partnership with HighByte, enabling customers to connect, contextualise and transform data from operational technology and information technology sources to build AI models and applications at scale.

Read more...
Africa on the edge of a digital future
Schneider Electric South Africa IT in Manufacturing
Edge computing promises lower latency, stronger reliability and real-time responsiveness across Africa, yet its rollout keeps colliding with one stubborn obstacle, power. Steven Santini explores how renewable microgrids, smart energy management and the right partnerships could turn the continent’s energy gap into its biggest edge opportunity.

Read more...









While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd | All Rights Reserved