Security Risk Management for Data Centre Infrastructure

'External threats a rising cause of outages for data centres'

External infrastructure failures and outages linked to fibre and connectivity issues are becoming more prominent for data centres, according to new research from the Uptime Institute, a US-based independent data centre standards and certification body. Despite that, on-site outages for data centres have declined for the fifth consecutive year, with approximately one in 10 noting that their last outages had a serious or severe impact. The cost of major outages continued to rise, with 57% stating that their most recent major outage cost over $100,000 (£74,800) and one in five reporting a cost of over $1 million (£748,000). Richard Petrie, CTO of the London Internet Exchange (LINX), comments, “Networking and connectivity continue to sit at the top of the most common causes of IT outages, reinforcing the importance of resilience in this area. "As organisations face growing pressure from network congestion, external threats, and increasing reliance on third-party providers, resilience across both network and data centre infrastructure is becoming critical. "While it’s encouraging to see on-site outages declining as infrastructure providers continue to prioritise resilience, the risks posed by external failures mean organisations still need robust redundancy policies in place for when outages do occur. "The backbone of a strong redundancy strategy is a secondary fabric that allows data to be rerouted during periods of disruption or risk, helping organisations remain operational even when the primary network is compromised. "By providing multiple options to route traffic, organisations can strengthen resilience and help networks stay online.” Power failures a contributing a factor The leading cause of impactful outages was power, with failures involving UPS systems, transfer switches, and generators remaining prominent. Worsening grid constraints and high-density workloads were also found to contribute to outages as a newer challenge. To adapt, the research outlined that operators are adapting investment strategies towards automation and control systems in order to manage complexity, despite acknowledging that more automation can cause different classes of problems. In line with the causes of outages, resilience assessments were found to focus more on internal systems than on external and systemic risks. Andy Lawrence, founding member and Executive Director of Uptime Intelligence, says, “Outages overall have slowed down and, overall, digital infrastructure is remarkably resilient. But further resiliency gains are becoming harder to achieve. “We believe that over time, failures will increasingly not be the result of a single point of failure, but instead be linked to complex interactions between systems, including software, networks, and external dependencies. "While site-based electrical and mechanical infrastructure remain a critical building block that needs to be resilient, digital infrastructure is becoming more distributed with outages originating outside the data centre, including those tied to power availability, network connectivity, or the reliance on external cloud services playing a larger role.”

Gardner Engineering expands data centre security range

Gardner Engineering, a security products manufacturer, has launched a new range of products for data centres, digital infrastructure, and access control environments, as demand for physical resilience in AI and cloud infrastructure continues to grow. The Lancashire-based manufacturer produces precision-machined security mounts, components, and CCTV brackets, and says it is seeing increased demand linked to data infrastructure security. The latest additions include a 3U rack mount access control drawer, designed to house multiple control PCBs within standard 19-inch cabinets. According to the company, the unit is intended to improve cable management and simplify servicing through a sliding access design. Gardner Engineering has also introduced a 6U wall-mounted 19-inch rack enclosure for environments where floor space is limited. The enclosure is designed for the vertical installation of networking, surveillance, and access control hardware. New tools target infrastructure deployment challenges Alongside the hardware launches, Gardner Engineering is expanding its digital sales support with an online product selector and configurator. The tool is already available through the company’s website and is being developed as a white-label platform for distributors and partners. The configurator is intended to help users manage product selection and specification more efficiently, including options such as height, finish, mounting plates, and bespoke requirements. Matt Phillip, CEO of Gardner Engineering, comments, “As digital infrastructure expands, customers are looking for products that solve practical problems around space, organisation, security, and deployment. "Our focus is not just on launching more hardware; it is about making specification easier as well. The white-label configurator is an important step because it gives partners a practical tool they can place directly on their own websites, linked to the Gardner products they actually sell.” The wider Q2 2026 launch programme also includes a surface mount lock cassette kit for Assa Abloy EL160 and EL560 applications, an expanded access control and vehicle posts range, and integrated entrance control bases developed with ZKTeco. Gardner Engineering says the new products reflect growing demand for physical infrastructure that supports resilience, deployment efficiency, and channel integration.

Mitie acquires Nordic data centre security firms

Mitie, a UK facilities management and professional services company, has acquired two fire and security businesses in Denmark and Norway to expand its data centre capabilities across the Nordics. The company has purchased El Team Vest and ABC Elektro for a combined initial cash consideration of £8.1 million, with additional deferred payments linked to performance. The acquisitions are intended to strengthen Mitie’s project delivery and maintenance capabilities in the European data centre fire and security systems market. The group is already active in the sector, supporting clients including Microsoft, Google, and Equinix. El Team Vest, based in Horsens, Denmark, has around 20 years’ experience in electrical design, installation, and maintenance. Its work includes data and fibre networks, fire and security systems, building management systems, and high-voltage electrical connections. Recent projects include electrical retrofit work for Velux, as well as contracting for the headquarters of ABB Group and DSV Logistics. ABC Elektro, based in Horten, Norway, provides fire and security services alongside electrical capabilities such as data connections and building management system installations. The company primarily serves commercial and construction customers in the Oslo region. Nordic expansion driven by data centre growth Demand for data centre capacity continues to grow, driven in part by increased use of AI and machine learning technologies. The Nordic region has become a key location for new developments, supported by renewable energy availability, grid capacity, and cooler operating conditions. Mitie already operates in the Nordic data centre market through its fire and security business, GBE Converge, acquired in 2023. The addition of El Team Vest and ABC Elektro is expected to strengthen its regional presence, with a combined workforce of around 100 employees. El Team Vest will operate as a regional centre of expertise, providing technical and operational support across Mitie’s Nordic activities. For the 12 months to 31 December 2025, El Team Vest reported revenue of £16.6 million and EBITDA of £3.2 million. ABC Elektro reported revenue of £2.7 million over the same period, with break-even EBITDA following investment. Jason Buttle, Managing Director - Fire & Security Projects at Mitie, comments, “The acquisitions of El Team Vest and ABC Elektro strengthen our ability to deliver complex fire, security, and electrical solutions across the Nordics, one of Europe’s most important and fast-growing data centre hubs. "With Mitie’s financial backing and [its] deep technical expertise, strong local reputations, and track records supporting major commercial and technology clients, we expect these businesses to scale up our data centre offering. "We look forward to welcoming their highly skilled colleagues to Mitie as we support our hyperscale and colocation customers in meeting the rapidly increasing demand for data centre capacity.”

Palo Alto expands AI factory security partnerships

Palo Alto Networks, a US provider of cybersecurity platforms including firewalls and cloud security services, has announced an expanded security ecosystem aimed at protecting AI-focused data centre and telecoms infrastructure, unveiling new partnerships at Mobile World Congress 2026. The company has confirmed collaborations with Nokia, U Mobile, Aeris, and Celerway. The agreements are intended to support high-performance AI infrastructure, 5G networks, and distributed edge environments. Palo Alto Networks says the partnerships are designed to integrate AI-driven security controls across data centres, telecom networks, and IoT deployments, supporting data sovereignty requirements and multi-terabit throughput for AI model training. Telco and edge security integrations With Nokia, the companies are aligning data centre security with AI infrastructure deployments, including support for large-scale European facilities. The collaboration focuses on integrating security from network layers through to workloads. Greg Dorai, Senior Vice President and General Manager, IP Networks at Nokia, comments, “In the race to build the world's AI factories, you cannot leave the door open at the infrastructure layer. "Nokia and Palo Alto Networks jointly envision comprehensive architectural and operational frameworks that expand security solutions from the network layer to workloads. The validated architecture will allow our customers to build future-proof, sovereign data centres.” Palo Alto Networks has also signed a memorandum of understanding with U Mobile to develop a network-embedded Security-as-a-Service platform within its 4G and 5G infrastructure. Integration with Aeris links Aeris IoT Watchtower and Prisma SASE 5G to apply data loss prevention and zero-trust policies across large IoT device estates. Meanwhile, collaboration with Celerway incorporates VM-Series Next-Generation Firewalls into 5G edge devices, extending enterprise-grade security controls to remote and mobile deployments. Anand Oswal, Executive Vice President at Palo Alto Networks, says, “We are establishing the secure foundation for the AI economy through extensive ecosystem collaboration. "By seamlessly integrating our AI-powered security services directly from the data centre into the most vital 5G and IoT networks globally, we are ensuring the AI factory is secure by design. "These partnerships enable us to create a secure digital infrastructure capable of managing the multi-terabit throughput required for training AI models.” For more from Palo Alto Networks, click here.

Vertiv launches AI predictive maintenance service

Vertiv, a global provider of critical digital infrastructure, has launched a new AI-powered predictive maintenance service, Vertiv Next Predict, aimed at modern data centres and facilities supporting AI workloads, including AI factories. The managed service is designed to move maintenance away from time-based and reactive models, using data analysis to identify potential issues before they affect operations. Vertiv says the service supports power, cooling, and IT systems with the aim of improving visibility and supporting more consistent infrastructure performance. The company notes that, as AI workloads increase compute intensity, data centre operators are under pressure to maintain uptime and performance across increasingly complex environments. In this respect, predictive maintenance and advanced analytics are positioned as a way to support more informed operational decisions. Ryan Jarvis, Vice President of the Global Services Business Unit at Vertiv, says, “Data centre operators need innovative technologies to stay ahead of potential risks as compute intensity rises and infrastructures evolve. “Vertiv Next Predict helps data centres unlock uptime, shifting maintenance from traditional calendar-based routines to a proactive, data-driven strategy. We move from assumptions to informed decisions by continuously monitoring equipment condition and enabling risk mitigation before potential impacts to operations.” AI-based monitoring and anomaly detection Vertiv Next Predict uses AI-based anomaly detection to analyse operating conditions and identify deviations from expected behaviour at an early stage. A predictive algorithm then assesses potential operational impact to determine risk and prioritise responses. The service also includes root cause analysis to help isolate contributing factors, supporting more targeted resolution. Based on system data and site context, prescriptive actions are defined and carried through to execution, with corrective measures carried out by Vertiv Services personnel. According to Vertiv, this approach is intended to support earlier intervention and reduce the likelihood of unplanned outages by addressing issues before they escalate. The service currently supports a range of Vertiv power and cooling platforms, including battery energy storage systems (BESS) and liquid cooling components. Vertiv says the platform is designed to expand over time to support additional technologies as data centre infrastructure evolves. Vertiv Next Predict is intended to integrate as part of a broader grid-to-chip service architecture, with the aim of supporting long-term scalability and alignment with future data centre technologies. For more from Vertiv, click here.

Warnings of drone‑enabled cyber threats to critical infrastructure

As drone technology becomes more sophisticated and accessible across the globe, researchers from Innovation Central Canberra (ICC) at the University of Canberra have teamed up with Australian tech company DroneShield to understand the risk profile of cyber attacks to critical infrastructure. With the rapid expansion of drone tech reshaping Australia’s security landscape, Defence, national security, and critical infrastructure are facing new challenges; meeting these requires capability that is not only technologically advanced, but also assessed and refined through rigorous, independent research environments. “We know how drones have changed traditional warfare, but are we oblivious of the role they play in cyber security?" questions Professor Frank den Hartog, Cisco Research Chair in Critical Infrastructure at the University of Canberra. "That's a worry, and an opportunity for our drone and cyber industry.” The project began with a team comprising Professor den Hartog and ICC students - namely Andrew Giumelli and Simone Chitsinde - undertaking targeted analysis and interviewing critical infrastructure operators to further understand the cyber threat environment through the use of drones. Increasing threats to critical infrastructure In the independent report, researchers found no recorded domestic cyber incidents using drones to date, but also noted that limited drone detection capabilities and awareness, minimal government guidance, and rising drone use are creating vulnerabilities. This highlights a gap in reporting on drone-enabled cyber threats in Australia. The findings warn that the combinations of steadily increasing drone capability, limited awareness across industries, and a lack of targeted government guidance is creating a widening gap. The report emphasises that drones are no longer emerging technology. Their capability, affordability, and accessibility have increased dramatically in recent years, and malicious actors are experimenting with drone-borne cyber techniques overseas. Within the next five years, as drone and cyber capabilities continue to evolve, operators may need to reassess the likelihood and relevance of drone-enabled cyber threats. Professor den Hartog continues, “This research highlights the need for greater education, more industry collaboration, improved knowledge sharing, and broader consideration of counter-drone capabilities across critical infrastructure sectors. “We need to encourage operators to periodically and critically review how drones are used within their operations, assess the cybersecurity implications of increased adoption, and explore strategies to integrate drone risk into existing security and resilience programs.” DroneShield’s engagement with ICC highlights the broader importance of research-industry collaboration in strengthening countries' sovereign capabilities. Acknowledging this, both organisations say they are exploring opportunities to continue the partnership.

SIA launches data centre advisory board

The Security Industry Association (SIA), a trade association for global security solution providers, has launched a new Data Center Advisory Board to provide guidance on data centre security matters to its Board of Directors and to support SIA members with relevant resources. The group will be chaired by Jim Black, Senior Director and Security Architect at Microsoft, who has been involved in the company’s cloud and data centre operations since 2011. The establishment of the advisory board comes as global demand for data centre capacity continues to rise, driven by artificial intelligence, cloud services, and other digital technologies. As facilities that host large volumes of sensitive information, data centres face increasing pressure to maintain robust and resilient security practices. A focus on collaboration and guidance According to SIA, the Data Center Advisory Board will contribute to the development of guidance and information related to security deployments, encourage collaboration between security providers and data centre security professionals, and engage with SIA’s government relations team on legislative and regulatory matters where relevant. In his role at Microsoft, Jim is responsible for defining security technology strategy to protect assets and personnel across a global portfolio of more than 400 data centres. He holds several professional certifications, including Certified Protection Professional and Physical Security Professional from ASIS International, as well as Certified Information Systems Security Professional from ISC². Commenting on his appointment, he notes, “The data centre industry is experiencing unprecedented growth and heightened risks driven by emerging technologies and global operational challenges. "I am honoured to serve as SIA’s inaugural Data Center Advisory Board Chair and look forward to working with this accomplished group of industry experts to advance and publish modern security standards that will strengthen cloud critical infrastructure protection worldwide.” Don Erickson, CEO of SIA, says Jim’s experience makes him well suited to the role, commenting, “The Data Center Advisory Board is an important venture for SIA, and we are very pleased that it will be able to benefit from Jim’s experience and expertise in data centre security from its inception. “Jim has for many years been an enthusiastic and generous supporter of SIA, contributing to multiple groups and projects that have advanced the industry’s professionalism and knowledge base. We are excited about what the advisory board will accomplish under his leadership.”

SPP Pumps brings fire and cooling experience to DCs

SPP Pumps, a manufacturer of centrifugal pumps and systems, and its subsidiary, SyncroFlo, have combined their fire protection and cooling capabilities to support the expanding data centre sector. The companies aim to offer an integrated approach to pumping, fire suppression, and liquid cooling as operators and contractors face rising demand for large-scale, high-density facilities. The combined portfolio draws on SPP’s nearly 150 years of engineering experience and SyncroFlo’s long history in pre-packaged pump system manufacturing. With modern co-location and hyperscale facilities requiring hundreds of pumps on a single site, the companies state that the joint approach is intended to streamline procurement and project coordination for contractors, consultants, developers, and OEMs. SPP’s offering spans pump equipment for liquid-cooled systems, cooling towers, chillers, CRAC and CRAH systems, water treatment, transformer cooling, heat recovery, and fire suppression. Its fire pump equipment is currently deployed across regulated markets, with SPP and SyncroFlo packages available to meet NFPA 20 requirements. Integrated pump systems for construction efficiency The company says its portfolio also includes pre-packaged pump systems that are modular and tailored to each project. These factory-tested units are designed to reduce installation time and simplify on-site coordination, helping to address construction schedules and cost pressures. Tom Salmon, Group Business Development Manager for Data Centres at SPP and SyncroFlo, comments, “Both organisations have established strong credentials independently, with over 75 data centre projects delivered for the world’s largest operators. "We’re now combining our group’s extensive fire suppression, HVAC, and cooling capabilities. By bringing together our complementary capabilities from SPP, SyncroFlo, and other companies in our group, we can now offer comprehensive solutions that cover an entire data centre's pumping requirements.” John Santi, Vice President of Commercial Sales at SyncroFlo, adds, “Design consultants and contractors tell us lead time is critical. They cannot afford schedule delays. Our pre-packaged systems are factory-tested and ready for immediate commissioning. "With our project delivery experience and expertise across fire suppression, cooling, and heat transfer combined under one roof, we eliminate the coordination headaches of managing multiple suppliers across different disciplines.” Tom continues, “In many growth markets, data centres are now classified as critical national infrastructure, and rightly so. These facilities cannot afford downtime, and our experience with critical infrastructure positions us to best serve this market."

R&M introduces radio-based access control for racks

R&M, a Swiss developer and provider of infrastructure for data and communications networks, is introducing radio-based access control for data centres. The core product is an electromechanical door handle for the racks of the BladeShelter and Freenet families from R&M. Technicians can only open the door handles with authorised transponder cards, while administrators can control them remotely via encrypted radio connections and data networks. R&M says it is thus integrating high-security digital protection into its "holistic infrastructure solutions" for data centres. Package details One installation comprises up to 1,200 door handles for server and network racks, as well as radio and control modules for computer rooms. The door handles do not require any wiring in the racks. Their electronics are powered by batteries whose power is sufficient for three years of operation or 30,000 locking cycles. The personalised transponder cards communicate with the door handles via RFID antennas. In addition, there is software to manage users, access rights, the transponder cards, and racks. The software creates protocols, visualises alarm states, and supports other functions. It can be operated remotely and integrated into superordinate systems such as data centre infrastructure management (DCIM). The new offer is the result of the collaboration with German manufacturer EMKA, being based on the company's 'Agent E', an intelligent locking system. The R&M offering aims to integrate complementary systems from selected manufacturers into infrastructure for data centres. In Europe, R&M notes it is already working with several independent partner companies that pursue comparable medium-sized business models and sustainability goals. For more from R&M, click here.

OPTEX introduces indoor LiDAR sensor for DC security

OPTEX, a manufacturer of intrusion detection sensors and security systems, has launched the REDSCAN Lite, a short-range indoor LiDAR sensor designed to provide precise and rapid detection for protecting critical infrastructure within data centres. Founded in Japan in 1979, OPTEX has developed a series of sensor innovations, including the use of LiDAR technology for security detection. The company says its REDSCAN range is recognised for improving the accuracy and reliability of intrusion detection in sensitive environments. Addressing physical security risks in critical environments As data centres across the UK and EU are now classified as critical infrastructure, operators face increasing pressure to meet strict security standards and mitigate both internal and external risks. Industry data indicates that nearly two thirds of data centres experienced a physical security breach in the past year. The REDSCAN Lite uses 2D LiDAR technology to detect intrusions within a 10 m x 10 m range, reportedly responding in as little as 100 milliseconds. The sensor can be positioned vertically to create invisible ‘laser walls’ around assets such as server racks, ventilation conduits, and access points, or horizontally to protect ceilings, skylights, and raised floors. Engineered for high-density environments, the REDSCAN Lite is capable of detecting small-scale activities such as the insertion of USB drives or LAN cables through server racks. It is designed to operate effectively despite temperature fluctuations, low light, or complete darkness, helping reduce false alarms common in traditional systems. Purpose-built for confined data centre spaces Mac Kokobo, Head of Global Security Business at OPTEX, says the product was developed in response to growing demand from data centre operators, noting, “In today’s modern environments, such as data centres, spaces are becoming tighter and tighter filling with racks and processors. "This latest REDSCAN Lite has been developed to meet the specific need for rapid detection in tight indoor spaces where high security is crucial. “Feedback from customers highlighted a clear need for enhanced protection in small, narrow areas and spaces, so the REDSCAN Lite sensor has been designed to fit into the narrow gaps and is engineered to provide highly accurate and fast detection in indoor spaces that other technologies simply cannot reach.” The REDSCAN Lite RS-1010L is now available for deployment.