.png)
How Morgan Stanley Isolated OT Threats with Automated Micro-segmentation
In this presentation from NexusCast January 2026, Qian (Grace) Lai, Executive Director at Morgan Stanley, dives into the high-stakes world of securing the Internet of Things within a global financial enterprise. Addressing the reality that modern buildings now house more IoT and OT devices than traditional PCs, Lai explains the shift from legacy OT to "smarter" but more vulnerable internet-connected systems. The session focuses on a critical challenge for facility managers: how to stop a successful hack on a simple device, like a CCTV camera, from jumping across the network to compromise critical BMS panels or printers. Lai shares the specific architectural choices Morgan Stanley made to move beyond flat networks and manual VLAN management.
Nexus Pro members will get an inside look at the automated "golden template" Morgan Stanley uses to deploy secure, rule-based routing at scale. Lai details the transition from manual network curation to using Software Defined Access (SDA) and scalable group tagging to enforce "intent-based" security that prevents abnormal device communication. You will learn why agentless IoT devices require a different monitoring strategy than standard IT assets and how to establish traffic baselines to catch compromises without jeopardizing business uptime. This recording is essential for any OT or IT leader who needs to move from simple device discovery to an active, automated defense-in-depth posture.
Watch the full recording inside Nexus Pro →
In this presentation from NexusCast January 2026, Qian (Grace) Lai, Executive Director at Morgan Stanley, dives into the high-stakes world of securing the Internet of Things within a global financial enterprise. Addressing the reality that modern buildings now house more IoT and OT devices than traditional PCs, Lai explains the shift from legacy OT to "smarter" but more vulnerable internet-connected systems. The session focuses on a critical challenge for facility managers: how to stop a successful hack on a simple device, like a CCTV camera, from jumping across the network to compromise critical BMS panels or printers. Lai shares the specific architectural choices Morgan Stanley made to move beyond flat networks and manual VLAN management.
Nexus Pro members will get an inside look at the automated "golden template" Morgan Stanley uses to deploy secure, rule-based routing at scale. Lai details the transition from manual network curation to using Software Defined Access (SDA) and scalable group tagging to enforce "intent-based" security that prevents abnormal device communication. You will learn why agentless IoT devices require a different monitoring strategy than standard IT assets and how to establish traffic baselines to catch compromises without jeopardizing business uptime. This recording is essential for any OT or IT leader who needs to move from simple device discovery to an active, automated defense-in-depth posture.
Watch the full recording inside Nexus Pro →
This is a great piece!
I agree.