Cybersecurity & Risk Management Archives

Zero Trust, Edge AI, and Confidential Computing — The Technologies Redefining Edge Security

June 10, 2026

The security architecture being built for the edge is fundamentally different from what came before. Perimeter defence — the logic of a hard external wall and a trusted interior — does not work when the “perimeter” is a sensor on a wind turbine, a camera on a factory floor, or a controller on a substation. These devices sit in physically uncontrolled environments, often connected via public networks, and there are too many of them to manage individually. The industry is converging on a new model built around three core technology trends.

Zero Trust is the foundational shift. In a Zero Trust architecture, no interaction between an edge device and its gateway is assumed safe: every request must be authenticated and authorised, regardless of where it originates or what it claims to be. For edge environments with hundreds or thousands of endpoints, this is architecturally demanding — but it is increasingly the baseline expectation set by both regulators and enterprise customers. NIS2 and the CRA effectively mandate Zero Trust principles without using the term.

Edge AI is making Zero Trust operationally viable at scale. The ENISA Threat Landscape 2024 documents that edge devices such as routers and IoT hardware are prime targets precisely because of outdated firmware and limited local monitoring capabilities. Running AI-native threat detection models directly on the edge node — rather than routing raw telemetry to a central Security Operations Centre — addresses this structural weakness head-on: a smart meter or industrial gateway can apply lightweight anomaly detection locally, flagging suspicious behaviour in milliseconds without transmitting sensitive operational data to the cloud.

In many industrial and healthcare contexts, local inference is the only architecture that simultaneously meets latency, bandwidth, and data sovereignty requirements.

Confidential Computing addresses a different but equally critical problem: what happens when sensitive workloads must run on third-party infrastructure? Hardware-based Trusted Execution Environments (TEEs) — such as Intel SGX — process data inside an encrypted enclave, meaning the infrastructure provider physically cannot access the raw data being computed. This allows organisations to use shared or commercial edge infrastructure without surrendering data confidentiality — a capability that is increasingly essential as edge deployments scale beyond what any single organisation can own outright.

Two further developments are reshaping the threat landscape itself. Private 5G Networks combined with Multi-access Edge Computing (MEC) enable compute to be placed at mobile base stations, offering high security through physical isolation of industrial traffic from public networks. ModelOps Security (AI TRiSM) is emerging as a response to adversarial attacks that target not the network infrastructure, but the integrity of the AI model itself. Recent incident analysis of cloud-edge deployments documents cases where attackers manipulated communication links between edge and cloud nodes to modify sensor data — underscoring that in environments where AI drives automated decisions, securing the model pipeline is as critical as securing the network.

These technologies are not on the horizon. They are being deployed now, in real industrial environments, by the same organisations that CyberNEMO works with.

Who Secures Europe’s Edge? A Map of the Key Players

June 8, 2026

The European edge security market is not dominated by a single category of player. It is a fragmented, competitive landscape where global hyperscalers, European industrial giants, telecom operators, and specialist security firms are all competing — and sometimes partnering — to own different layers of the stack. Understanding who does what, and where the tensions lie, is essential for anyone operating in or procuring from this market.

Hyperscalers — Microsoft (Azure IoT Edge), AWS (Greengrass), and Google Cloud (Distributed Cloud) — dominate the software stack and developer ecosystems. Their “cloud-to-edge” integration is technically seamless and benefits from enormous R&D investment. But they carry a structural liability in the European context: exposure to the US Cloud Act creates trust and sovereignty friction that no product feature can fully resolve, particularly for government, defence, and critical infrastructure customers.

The counterweight is a group of European Industrial and Security Sovereigns. Siemens Industrial Edge offers measured boot and digital signatures to ensure only authorised software runs on edge devices. Bosch IoT Suite provides secure Over-the-Air (OTA) updates. Thales leverages its defence background for high-grade encryption and identity management. Eviden (Atos) focuses on cybersecurity, encryption technologies, and trusted digital infrastructures aligned with European security requirements. These companies hold a structural “home court advantage”: deep OT expertise, long-standing relationships with EU institutions, and a trusted status that no marketing spend can replicate.

Telecommunications providers — Deutsche Telekom, Orange Business, and Telefónica — occupy a distinct strategic position: they own the network (5G/fibre) and the physical edge locations. They are moving up the value chain toward “Managed Edge Services,” bundling connectivity with security. Orange Business combines its network with Orange Cyberdefense to offer SASE (Secure Access Service Edge) and Virtual Network Edge solutions. Deutsche Telekom promotes Campus Networks for Industry 4.0, packaging connectivity and security together for industrial customers.

Providers like OVHcloud, T-Systems, and CloudFerro are carving out a distinct niche, capitalising on enterprise distrust of hyperscalers by offering sovereign cloud and edge infrastructure with contractual guarantees of data residency. This segment is growing directly in proportion to regulatory pressure — every new NIS2 enforcement action is, indirectly, a sales event for sovereign infrastructure providers.

Finally, as the talent shortage bites across the board, Managed Security Service Providers (MSSPs) are becoming increasingly critical. The European managed security services market is valued at over $11 billion in 2025 and is projected to grow at a CAGR of approximately 10% through 2033, reflecting the reality that most organisations — and virtually all SMEs — cannot build in-house edge security expertise. MSSPs are, in practice, becoming the primary delivery mechanism for edge security for a large portion of the market.

Europe’s Edge Computing Boom and the Security Gap

May 28, 2026

Europe’s digital infrastructure is being rewired. Data processing is migrating away from centralised hyperscale data centres toward the logical and physical periphery of networks — the “Edge.” This shift, often described as the evolution toward a Cloud-Edge Continuum, is no longer a future scenario: it is the present reality of Industry 4.0, the Internet of Things, and autonomous systems that simply cannot tolerate the latency of a round-trip to the cloud.

The numbers confirm the scale of what is happening. The European edge computing market is projected to grow from approximately €4.5 billion in 2024 to over €56.6 billion by 2033, driven by a Compound Annual Growth Rate exceeding 31%.To put that in perspective, this is one of the fastest-growing technology segments on the continent, outpacing most of the broader digital economy.

Yet behind these extraordinary growth figures, a structural problem is forming — one that CyberNEMO was built to address. While infrastructure investment accelerates, cybersecurity spending is not keeping pace. Security budgets are actually forecast to drop to 10.9% of overall IT spend in 2025 (Figure 1), even as the threat landscape intensifies.

*Figure 1. The average security budget as a percentage of IT spending had been growing steadily until this year.* *Chart: CFO.com Source: IANS Research and Artico Search*

ENISA’s own reporting confirms the picture: EU organisations spent an average of €1.5 million on cybersecurity in 2024, representing roughly 9% of their total IT allocations — and even that figure is under pressure from ongoing budget cuts across the continent.The result is a widening “vulnerability deficit”: European enterprises are deploying more distributed, more exposed infrastructure with proportionally fewer resources dedicated to defending it.

This is not a marginal risk. The broader European cybersecurity market — covering cloud, endpoint, and network security — is valued at approximately €53 billion in 2024 and is expected to reach €100 billion by 2030 at a CAGR of roughly 11.2%.The gap between edge deployment speed and security investment speed is, in other words, a gap between two very large numbers — and it is growing in the wrong direction.

There is also a currency dimension that often goes unnoticed. A significant share of edge hardware and software licences is priced in US dollars, sourced from American hyperscalers (AWS, Microsoft, Google). Euro-denominated European firms are therefore exposed to exchange rate volatility on top of their infrastructure costs. This is one of the quiet drivers behind the “Sovereign Cloud” movement, pushing enterprises toward local providers like Deutsche Telekom or Orange Business whose cost bases sit in euros — and whose legal obligations sit within EU jurisdiction.

The edge is where Europe’s industrial future will be computed. CyberNEMO’s mission is to ensure it is also where it will be secured.