建筑 OT 网路安全产业分析（2024-2030）

Buildings OT Cybersecurity Industry Analysis 2024-2030

出版日期: 2024年07月31日 | 出版商:

Westlands Advisory Ltd | 英文 | 商品交期: 最快1-2个工作天内

价格

简介目录

概要

虽然建立 OT 网路安全的投资不断增加，但起始水准相对较低，这凸显了整个产业许多网路安全专案的整体发展不足。随着网路安全风险意识的增强，估计2024年全球投资将达到 37亿美元，2023年至2031年年复合成长率为 16%。2024-2031年TAM为517亿美元，其中80%以上投资将在已开发国家。WA预计除北美、欧洲和亚太地区的已开发国家外，到2030年投资有限且成长率较低。

已开发国家有较强的市场推动因素。儘管经济存在不确定性，但从2025年起，建筑施工成长预计将强劲。建筑资产所有者有各种能源绩效目标 - 为了达成EPBD（能源绩效建筑指令）、美国EO 14057（美国联邦建筑到2045年实现净零排放的目标）、印度的节能法案、日本的建筑节能法案等目标，永续发展目标也可能推动改造市场。预计在建构管理平台、智慧感测器和增强连接方面的大量投资将有助于实现这些永续发展目标。科技进步不仅可以降低能源成本、提高永续性，还可以改善居住者的体验。然而，连接性和智慧型装置的增加引进了新的漏洞并扩大了攻击面，迫使资产所有者调整和发展其网路安全计划。

虽然 NIS2 等网路安全法规并非专门针对建筑物，但预计将提高人们的意识并改善网路风险计画。虽然 NIS2 较其前身（NIS）有了显着扩展，但追踪记录显示，如果没有强有力的执行，变化就会缓慢。在WA，认为建筑资产的数位化和董事会对网路安全风险意识的提高是比当前和未来网路安全法规更重要的投资驱动因素。

在一个缺乏网路安全技能、供应商和服务提供者组成的复杂生态系统、有限的执行承诺和预算限制的行业中，很难降低一般建筑业者的网路风险概况。这些障碍需要透过加强产业教育和合作来克服。

WA认为，对网路安全的思考方式正随着 DX 趋势而逐渐改变。随着组织转向零信任架构，这包括更加关注资产和设备管理、漏洞管理、网路分段、威胁侦测和安全远端存取管理。然而，随着资料日益在边缘设备上处理并传输到云端平台进行储存和分析，资产所有者需要致力于保护其 OT 设备和网路，同时需要确保资料受到保护云端。需要更加关注弹性，以使组织能够以最小的中断回应事件并从中恢復。这包括一个治理框架，使网路安全与企业目标和监管要求保持一致，重点关注人员、流程和技术。

建筑物 OT 网路安全的定义

此分析回顾了建筑 OT 网路安全市场，探讨了影响资产所有者和安全领导者的趋势，并评估了当前和未来的OT 网路安全支出。

涵盖用于保护 OT 网路和装置的技术和服务。在普渡大学模型中，这是第3 级及以下级别，涵盖所附图表中所述的监督、自动化和现场层。

建筑术语通常可以互换使用。楼宇管理系统（BMS）、楼宇自动化系统（BAS）、楼宇控制系统（BCS）和设施相关控制系统（FRCS）全部重迭并属于此专案范围。

系统/设备及相关控制器包括暖通空调、能源管理、电梯、消防/安全、照明、电子安全（实体门禁、监视器）、机械系统（水泵等）、停车系统等。

该专案包括用于在 NIST 2.0 框架（治理、识别、保护、检测、回应和復原）中保护建筑 OT 的技术和管理网路安全控制。唯一的例外是排除在分析之外的备份和灾难復原技术。

调查项目遍及全球，调查期间为2023年至2031年。由于2023年是基准年，2024年是预测值，后续报告中可能会有所变动。2024-2031年的总可用市场（TAM）以及2023年至2031年的年复合成长率。

建置 OT 架构与网路安全控制：概述
楼宇自动化系统（BAS）参考架构
楼宇自动化系统的风险
客户面临的挑战
网路安全技术与管理控制
行政控制
OT 网路安全参考架构与技术控制
楼宇自动化系统（BAS）安全架构
建构 OT 网路安全场景
高阶 IoT 架构

技术生命週期与用例

技术概述
建构纵深管理与防御
资产和漏洞管理解决方案的趋势
资产与漏洞管理解决方案
威胁侦测趋势
威胁侦测解决方案
端点保护的趋势
端点保护解决方案
网路保护趋势
网路保护解决方案
安全远端存取管理（SRAM）的趋势
安全营运趋势
安全营运解决方案
其他技术解决方案
专业保全服务的定义
专业保全服务的趋势
託管安全服务定义
託管安全服务的趋势
技术成熟度
投资提升网路安全成熟度
科技与服务领域的投资（2031）

市场支出与前景

促进各地区投资的因素：概述
北美市场预测：依产业细分（2024-2031年）
北美成长产业
北美收入机会
亚太市场预测：依产业细分（2024-2031年）
亚太地区的成长产业
亚太地区的收入机会
欧洲市场预测：依产业细分（2024-2031年）
欧洲的成长产业
欧洲收入机会
中东市场预测：依产业细分（2024-2031年）
中东的成长产业
中东获利机会
非洲市场预测：依产业细分（2024-2031年）
非洲成长产业
非洲的获利机会
拉丁美洲市场预测：依产业细分（2024-2031年）
拉丁美洲成长产业
拉丁美洲的收入机会
中亚市场预测：依产业细分（2024-2031年）
中亚的成长产业
中亚获利机会

生态系

摘要
生态系与通路
打造 OT 网路安全产品供应商

依产业划分的市场趋势

依产业划分的细分市场
教育设施（2023-2031年）
医疗设施（2023-2031）
政府大楼（2023-2031年）
零售店（2023-2031）
资料中心（2023-2031）
饭店与娱乐设施（2023-2031年）
工业建筑（2023-2031）
交通（2023-2031）
商业建筑（2023-2031）

简介目录

Overview

Investment in buildings OT cybersecurity is increasing although it is starting from a relatively low base, highlighting the overall underdeveloped state of many cybersecurity programs across the industry. Global investment is forecast to reach $3.7B in 2024 and will grow at a CAGR of 16% from 2023-2031 as cybersecurity risk awareness improves. The TAM from 2024 to 2031 is $51.7B with over 80% of this investment spread across developed nations. Outside of NA, Europe and developed countries in Asia Pacific, WA expects limited investment and low growth to 2030.

There are strong market drivers in developed economies. Despite economic uncertainties, the construction growth for buildings is expected to strengthen post-2025. Sustainability goals will also drive the renovation market as building asset owners aim to meet energy performance targets such as the Energy Performance Buildings Directive (EPBD), the US EO 14057 which targets net-zero emissions from federal buildings by 2045, India's Energy Conservation Act and Japan's Building Energy Conservation Act, among others. Significant investment in building management platforms, smart sensors, and enhanced connectivity are expected to help reach these sustainability goals. Technological advancements will not only reduce energy costs and improve sustainability but also enhance occupant experiences. However, growing connectivity and smart devices introduce new vulnerabilities and expands the attack surface requiring assets owners to adapt and evolve cybersecurity programs.

Although not specific to buildings, cybersecurity regulations such as NIS2 are expected to enhance awareness and improve cyber risk programs although WA expects the impact to be limited to incremental improvements to current programs rather than large and widespread investment. Although NIS2 has been significantly expanded from its predecessor (NIS), history highlights that without strong enforcement change is slow. WA believes that digital transformation of building assets and growing board awareness of cybersecurity risk are more significant investment drivers than current and forthcoming cybersecurity regulation.

Lowering the typical building operators cyber risk profile is challenging in a sector that lacks cybersecurity skills, has a complex ecosystem of vendors and service companies, limited board commitment, and budget constraints. These barriers need to be overcome through greater industry education and collaboration.

WA believes that attitudes to cybersecurity are slowly changing in response to digital transformation trends. This includes a growing focus on asset and device management, vulnerability management, network segmentation, threat detection and Secure Remote Access Management as organisations move towards zero-trust architectures. However, as data is increasingly processed by edge devices, and forwarded to cloud platforms for storage and analysis, asset owners need to focus on protecting OT devices and networks, whilst ensuring that edge devices and data is protected to and from the cloud. A greater focus on resilience is required, ensuring that organisations can respond and recover from incidents with minimal disruption. This includes a focus on people, processes and technology and a governance framework that aligns cybersecurity with company goals and regulatory requirements.

Buildings OT Cybersecurity Definition

This analysis reviews the Building OT Cybersecurity market, exploring the trends impacting asset owners and security leaders, and evaluates current and future OT cybersecurity expenditure.

The project covers the technologies and services used to protect OT networks and devices. In the Purdue Model this is level 3 and below, covering the supervisory layer, automation layer and field layer described in the accompanying chart.

Building terminologies are often used interchangeably. Building Management Systems (BMS), Building Automation Systems (BAS), Building Control Systems (BCS) and Facility Related Control Systems (FRCS) all overlap and are included within the scope of the project.

Systems, devices and related controllers includes HVAC, energy management, elevators, fire and safety, lighting, electronic security (physical access control, surveillance cameras), mechanical systems (e.g. water pumps) and parking systems.

The project includes technical and administrative cybersecurity controls used to protect buildings OT across the NIST 2.0 framework (Govern, Identity, Protect, Detect, Respond, Recover). The only exception is back-up and disaster recovery technology which has been excluded from the analysis.

The project is global and covers the period 2023 to 2031. The base year is 2023 and 2024 is a forecasted number that may change in subsequent editions of the report. The Total Available Market (TAM) is often quoted for the period 2024-2031 whilst the CAGR for the period covers 2023-2031.