We are thrilled to share that Marco Ayala, an International Society of Automation (ISA) Fellow, an ISA Executive Board member and a respected leader in industrial cybersecurity, appeared on Nasdaq TradeTalks with host Jill Malandrino to discuss why proactive cybersecurity is essential to mitigating risk, ensuring trust and safeguarding critical infrastructure in a digital world.
A key theme of the conversation was supply chain complexity. Even organizations with strong internal controls are only as secure as their least mature partner. Smaller vendors handling sensitive processes — like payments, billing or reverse logistics — are often the target, and breaches there can ripple across major enterprises and critical infrastructure. With returns surpassing a trillion dollars globally and last-mile delivery expanding the number of touchpoints, more data flows through more hands than ever. That enlarges the attack surface and raises the stakes for every participant in the chain.
The panel explored AI’s dual role as both booster and stressor. AI accelerates analytics, monitoring and optimization, but it can also introduce black-box risk and new attack vectors that are hard to model. Marco called for rigorous due diligence: Know which tools are in use, how they handle data and whether they’re designed and deployed ethically. He also highlighted the need for “guardians watching the guardrails” — clear policies, monitoring and verification to ensure the safeguards actually work. As defenders adopt AI, adversaries do too, using it to automate and diversify attacks. It’s a fast-moving race that demands disciplined governance.
Standards emerged as a practical pathway. Marco pointed to the value of widely adopted frameworks and architectures like the ISA/IEC 62443 series of standards to enforce governance, reduce risk and enable secure innovation. Sector-specific standards and certifications help companies “know what good looks like,” streamline vendor selection and create a competitive advantage rooted in trust. When larger organizations require and help disseminate these practices across their ecosystems — encouraging partners to get trained, pursue certifications and adopt controls — the entire value chain becomes stronger.
The group also discussed data minimization and privacy. Global brands must navigate differing regulatory regimes, and many are moving toward harmonized policies to simplify operations and strengthen consumer trust. Data is not free — it carries cost, risk and responsibility. Thoughtful governance, including anonymization where appropriate, protects reputation and reduces long-term exposure.
Marco closed with a message of progress and practicality. Over the last three decades, industry has “moved the needle,” and while standards often trail emerging technologies by several years, organizations don’t have to wait to act. Risk assessment, KPIs, cloud-enabled optimization and AI-driven insights can unlock real value when executed securely. As a longtime ISA cybersecurity instructor who has trained thousands of professionals, Marco sees the impact firsthand: Some teams return ready to implement change immediately, while others need stronger alignment and sponsorship. That’s where culture and governance make the difference.
ISA continues to seek to empower the professionals who drive automation forward. If you’re ready to strengthen your team’s skills, you can explore ISA’s training and certification programs at www.isa.org/training. For thought leadership to guide your governance strategy, visit www.isa.org/position-papers.
We’re proud to celebrate Marco’s Nasdaq TradeTalks appearance and the vital conversation it advanced. You can watch the entire interview here. Cybersecurity is a team sport — and with standards, training and a strong culture, our community can innovate with confidence while protecting what matters most.