We’re living in a fascinating era where digital systems no longer operate in silos. Instead, they are deeply embedded in the physical world, monitoring, controlling, and shaping it in real time. This is the world of cyber–physical systems (CPS), and trust me, it’s not just a buzzword; it’s already shaping your city’s traffic flow, your hospital’s surgical precision, and the way products are manufactured and delivered.
But how do we go from understanding CPS in theory to applying it in practice, primarily as professionals focused on digital trust, cybersecurity, and risk?
In this post, I’ll share a few practical ways digital trust professionals like us can embrace and safeguard this powerful convergence.
Why Cyber–Physical Convergence Matters Now
The lines between digital and physical have blurred. From smart factories and robotic-assisted surgeries to autonomous vehicles and intelligent agriculture, CPS is improving productivity, reducing waste, and enabling efficiency that once seemed like science fiction. It’s powered by an ecosystem of technologies, IoT, AI, machine learning, edge/cloud computing, and increasingly, blockchain.
And this isn't just happening in high-tech labs. In my work with clients, I’ve seen IoT sensors used in manufacturing to detect machine wear before a breakdown occurs, cutting down time in half. I’ve watched AI-driven logistics models cut delivery times significantly. CPS is real, and it’s here.
But so are the risks.
Risks We Can’t Ignore
As we connect more physical systems to the internet, we dramatically increase the surface of our attack. Just ask anyone involved in healthcare cybersecurity during the 2017 WannaCry ransomware attack. That incident brought hospitals to their knees and showed how cyberattacks in the CPS realm can have life-or-death consequences.
On top of that, there are ethical and regulatory challenges. How do we ensure privacy in real-time health monitoring? How do we build standards for devices that span manufacturers and industries?
From my perspective, the key lies in shifting our mindset from reactive security to embedded resilience.
What Can Digital Trust Professionals Do Today?
If you’re reading this, chances are you already play a key role in shaping your organization's governance, security, or risk strategy. Here are a few actions I recommend based on practical application:
- Move Security to the Design Table
Don’t bolt it on later. When evaluating CPS projects, advocate for secure software development life cycles (SSDLC), robust encryption, and zero-trust architecture. - Embrace Cross-Functional Collaboration
CPS is inherently multidisciplinary. Work closely with OT (operational technology) teams, engineers, and compliance officers. Bridge the knowledge gaps between IT security and physical infrastructure. - Stay Regulation-Aware—and Push for More
Staying compliant with regulations like GDPR and standards from ISO/IEC and NIST is non-negotiable. But also—where standards are lagging—be part of the advocacy. We need unified global protocols to make CPS secure and scalable. - Upskill Continuously
This space moves fast. Whether it’s learning more about blockchain for securing medical data or AI ethics for autonomous systems, staying ahead means we don’t get left behind. I follow CPS trends through white papers, explainer videos, and collaborative webinars.
Looking Ahead: The Converging Future
Cyber–physical convergence will only accelerate, especially as 5G, quantum computing, and augmented reality (AR) expand. But it won’t just be about innovation. It will be about trust. Trust in systems, trust in data, and trust in professionals like us to secure it all.
As someone who actively mentors young cybersecurity professionals and creates educational content, I believe now is the time to bring more voices into this conversation. We need thinkers, implementers, and guardians.
So, let’s not just observe the convergence. Let’s lead it securely, ethically, and intelligently.
Editor’s note: For further insights on this topic, read Omotayo F. Salako’s Journal article, Navigating the Future: Exploring Opportunities and Challenges of Cyber-Physical Systems - ISACA Journal, volume 4, 2025.
About the Author:
Omotayo F. Salako, CISA, Security+, Network+, ITIL, is an IT risk governance professional with over 7 years of experience in cybersecurity, internal audit, and risk management. She has a strong background in identity and access management (IAM), ITGC SOX testing, and risk assessments, supporting critical cybersecurity initiatives and enhancing compliance frameworks.
Salako is an ISACA Social Media Advocate, ISACA Mentor, and peer reviewer for IEEE conferences and ISACA’s COBIT framework. She actively contributes to the growth of the next generation of cybersecurity professionals and champions the convergence of cyber–physical systems, focusing on increasing security and resilience in interconnected environments. She shares her expertise through LinkedIn and creates engaging cybersecurity content, including videos and tutorials.
