Secure-By-Design OT Stack
What is the Secure-by-Design OT Stack
The Secure By Design OT Stack provides a structured framework for Owner’s Engineers and Integrators to design, specify, and implement a secure, enterprise-ready building technology platform.
Built on layered architecture principles from device level security through middleware, secure access, and enterprise integration. This framework aligns operational technology with modern cybersecurity standards while future-proofing facilities for scalability, data interoperability, and portfolio-level performance.
The resources below offer practical specifications and reference materials to support implementation within Division 25 and related construction documents.
SPECIFIER TOOLS
OT Stack Diagram
Secure OT Stack Diagram
This diagram is intended for inclusion within the construction documents as a systems architecture reference. It defines the required layered OT architecture—beginning with device-level security within BAS controllers, extending through the intelligent riser and integration layer, and continuing to secure edge hardware, Zero Trust remote access, centralized network and device management, and enterprise software platforms.
The diagram clearly communicates the Engineer of Record’s enterprise-level design intent while providing the Master Systems Integrator (MSI) with a structured roadmap for compliant deployment. This diagram is intended as a reference and should be edited to suit your particular project.
Guide Specifications
Division 25 05 10.10 – Secure-by-Design OT Stack
Send download link to:
Division 25 – Vykon Niagara Framework Integrated Automation
Send download link to:
KODELabs Specification – Integrated Automation V1.1
Send download link to:
Neeve Secure Edge – Cyber Security, Remote Access & Cloud
Send download link to: