Technology company NVIDIA announced Wednesday at the ongoing S4x25 industrial cybersecurity event their adoption of the NVIDIA cybersecurity AI platform to enhance real-time threat detection and safeguard critical infrastructure protection. The technology will enhance the operation of critical infrastructure installations, which functions in highly complex environments. The convergence of IT and OT (operational technology), often driven by digital transformation, creates a significant array of vulnerabilities. Traditional cybersecurity measures are inadequate to tackle these evolving threats.
Industry partners Armis, Check Point, CrowdStrike, Deloitte and World Wide Technology (WWT) are integrating the platform to help customers bolster critical infrastructure, such as energy, utilities and manufacturing facilities, against cyber threats.
NVIDIA’s cybersecurity AI platform, combined with the expertise of its ecosystem partners, delivers a ‘powerful and scalable’ solution to protect critical infrastructure environments against evolving threats. Bringing NVIDIA AI and accelerated computing to the forefront of OT security can help organizations protect what matters most, both now and in the future.
“By harnessing NVIDIA’s cybersecurity AI platform, these partners can provide exceptional visibility into critical infrastructure environments, achieving robust and adaptive security while delivering operational continuity,” Itay Ozery, director for product marketing at NVIDIA, wrote in a company blog post. “The platform integrates NVIDIA’s accelerated computing and AI, featuring NVIDIA BlueField-3 DPUs, NVIDIA DOCA and the NVIDIA Morpheus AI cybersecurity framework, part of the NVIDIA AI Enterprise. This combination enables real-time threat detection, empowering cybersecurity professionals to respond swiftly at the edge and across networks.”
Ozery added that unlike conventional solutions that depend on intrusive methods or software agents, BlueField-3 DPUs function as a virtual security overlay. “They inspect network traffic and safeguard host integrity without disrupting operations. Acting as embedded sensors within each server, they stream telemetry data to NVIDIA Morpheus, enabling detailed monitoring of host activities, network traffic and application behaviors — seamlessly and without operational impact.”
Speaking at the S4x25 conference, Ofir Arkin, senior distinguished engineer at NVIDIA, mentioned that his company is not positioning itself as a traditional cybersecurity vendor but as a platform provider that enables cybersecurity solutions. The objective is to utilize accelerated computing and AI to help partners improve critical infrastructure protection.
Arkin explained that the platform consists of two key technologies – NVIDIA BlueField DPU (Data Processing Unit) that functions as both a network interface and a processing unit with its own secure OS, and operates as a sensor and enforcement point to monitor and control network traffic. The second is NVIDIA AI (with Morpheus Framework) that processes network data using AI models to detect anomalies and provide security insights; and supports use cases like threat detection, network discovery, and predictive maintenance.
The platform functions as a security overlay, extending enterprise-grade security features to operational network nodes. This includes network visibility and control across systems and workloads; AI-driven anomaly detection for identifying potential threats; and operational resilience, with tamper-resistant hardware designed for continuous monitoring.
Arkin detailed that the platform integrates with the Purdue Model, deploying BlueField DPUs at critical network layers (Levels 2, 3, and the DMZ). This setup helps with zero trust access control enforcing strict network access policies; threat detection identifying suspicious activities through AI analysis; secure remote access that manages access for remote technicians with layered security; and session monitoring that tracks remote sessions for unauthorized activity.
He also noted that NVIDIA’s approach combines passive discovery that monitors network traffic for visibility; and active discovery using isolated interfaces to scan operational networks securely. This combination improves asset inventories and supports dynamic digital twins for operational insights. Additionally, the platform also offers live memory analysis through direct memory access (DMA), enabling real-time monitoring that maps process relationships and system behaviors; and breach detection that identifies potential system compromises.
Cyolo also announced on Wednesday the launch of AI-driven cybersecurity solutions tailored for cyber-physical and OT environments. With the integration of NVIDIA’s advanced cybersecurity AI platform, Cyolo aims to revolutionize and enhance the security of cyber-physical systems.
Integrating Armis Centrix, Armis’ AI-powered cyber exposure management platform, with NVIDIA cybersecurity AI helps secure critical infrastructure like energy, manufacturing, healthcare and transportation.
“OT environments are increasingly targeted by sophisticated cyber threats, requiring robust solutions that ensure both security and operational continuity,” said Nadir Izrael, chief technology officer and cofounder of Armis. “Combining Armis’ unmatched platform for OT security and cyber exposure management with NVIDIA BlueField-3 DPUs enables organizations to comprehensively protect cyber-physical systems without disrupting operations.”
CrowdStrike is helping secure critical infrastructure such as ICS and OT by deploying its CrowdStrike Falcon security agent on BlueField-3 DPUs to boost real-time AI-powered threat detection and response.
“OT environments are under increasing threat, demanding AI-powered security that adapts in real time,” said Raj Rajamani, head of products at CrowdStrike. “By integrating NVIDIA BlueField-3 DPUs with the CrowdStrike Falcon platform, we’re extending industry-leading protection to critical infrastructure without disrupting operations — delivering unified protection at the edge and helping organizations stay ahead of modern threats.”
Deloitte is driving customers’ digital transformation, enabled by NVIDIA’s cybersecurity AI platform, to help meet the demands of breakthrough technologies that require real-time, granular visibility into data center networks to defend against increasingly sophisticated threats.
“Protecting OT and ICS systems is becoming increasingly challenging as organizations embrace digital transformation and interconnected technologies,” said Dmitry Dudorov, an AI security leader at Deloitte U.K. “Harnessing NVIDIA’s cybersecurity AI platform can enable organizations to determine threat detection, enhance resilience and safeguard their infrastructure to accelerate their efforts.”