Leonardo brings cyber protection into platform engineering

Leonardo brings cyber protection into platform engineering

Leonardo has introduced a Cyber Defence Suite for military systems. The architecture links strategic awareness, tactical coordination, and onboard cyber protection, supporting connected vehicles, naval platforms, avionics mission systems, space infrastructure, and ground control segments.


IN Brief:

  • Leonardo’s Cyber Defence Suite combines a Global Cybersec Platform, Tactical Cybersec Platform, and distributed Cyber Cells.
  • The system is designed for connected platforms, deployed assets, logistics bases, and strategic coordination centres.
  • Cyber protection is moving deeper into platform engineering, software support, supply assurance, and through-life sustainment.

Leonardo has introduced a Cyber Defence Suite designed to protect connected military platforms, mission systems, and defence infrastructure across strategic, tactical, and deployed operating layers.

The architecture brings together three elements: a Global Cybersec Platform, Tactical Cybersec Platform, and distributed Cyber Cells. The Global Cybersec Platform supports remote strategic coordination, cyber intelligence, threat awareness, continuous updates, and a central dashboard. The Tactical Cybersec Platform operates at logistics bases, connecting strategic cyber functions with systems in the field. Cyber Cells sit onboard or near deployed assets, giving platforms autonomous protection when connectivity is limited or unavailable.

That distributed model reflects the way military systems now operate. Armoured vehicles, ships, aircraft mission systems, satellites, ground stations, logistics facilities, and command networks are increasingly connected through software, sensors, data links, maintenance tools, and operational networks. Each connection supports capability, but each also creates exposure to intrusion, disruption, manipulation, or degraded trust.

Leonardo’s suite is intended for armoured vehicles and ground systems, naval platforms, avionics mission systems, space infrastructure, and ground control segments. That range reflects a shift in cyber protection from enterprise IT into platform engineering. Security can no longer sit only in headquarters networks or central data centres. It has to be designed into vehicles, vessels, aircraft systems, payloads, ground stations, and support equipment.

A modern armoured vehicle may include a battle-management system, digital radio, navigation equipment, cameras, remote weapon stations, active protection, mission computers, electronic architecture, software-defined subsystems, and maintenance diagnostics. A naval platform carries a still broader mix of combat systems, sensors, communications, propulsion controls, navigation, electronic warfare, and machinery automation. Each system has to remain trusted under operational pressure.

The Cyber Cell concept addresses one of the main problems in deployed cyber defence: platforms cannot always rely on reach-back. Communications may be jammed, lost, restricted, or deliberately limited. A security model that depends entirely on central connectivity becomes fragile. Placing autonomous defensive functions closer to the asset allows platforms and forward locations to retain a degree of protection even when network conditions deteriorate.

Cyber resilience is also becoming part of the supplier-risk debate. Defence companies, subcontractors, software providers, and support organisations now sit inside the national attack surface, particularly where adversaries seek access through smaller suppliers or maintenance pathways. Platform protection and supply-chain assurance are therefore linked. A system can be compromised through software updates, diagnostic tools, insecure components, unmanaged credentials, or poorly controlled support access.

Connected navigation and electronic-warfare resilience follow the same trend. Anti-jam GNSS equipment, secure datalinks, protected mission computers, and cyber-hardened command systems are moving into scale-production territory because more platforms depend on trusted digital inputs. A cyber suite that protects deployed systems belongs inside that wider move toward resilient, software-intensive defence hardware.

For manufacturers and systems integrators, this changes the production and sustainment model. Cyber protection has to be designed, tested, certified, updated, and maintained across the platform lifecycle. Secure development practices, vulnerability management, access control, patching, software bill-of-materials tracking, test environments, and update procedures all become part of the defence product. That work continues long after the platform is delivered.

The challenge is particularly acute where equipment will remain in service for decades. Mechanical systems can be overhauled on long cycles, but cyber threats change quickly. A vehicle, ship, or ground station without an update path risks becoming insecure even if the hardware remains sound. Sustainment contracts will therefore need to include software support, threat updates, secure build environments, and recurring testing.

Leonardo’s architecture also points to a future in which cyber status becomes part of operational awareness. Commanders may need to understand whether vehicles, sensors, networks, and mission systems remain trusted, partially degraded, isolated, or compromised. That creates demand for dashboards and decision-support tools that translate technical cyber data into operationally useful information without overwhelming users.

For the defence industrial base, cyber security is no longer a compliance layer attached to a finished platform. It is becoming part of architecture, production, integration, and support. Leonardo’s Cyber Defence Suite reflects that shift by tying strategic monitoring, tactical coordination, and onboard protection into one structure. As military platforms become more connected, their availability will increasingly depend on whether their software and networks can survive the same battlefield as their armour, engines, and weapons.


  • T-7A modernisation arrives before production settles

    T-7A modernisation arrives before production settles

    The US Air Force is planning early T-7A capability upgrades. Navigation resilience, collision avoidance, flight-control changes, emergency support, and cockpit improvements must be introduced while production, certification, and fleet entry continue.


  • Russian router campaign reaches the defence factory edge

    Russian router campaign reaches the defence factory edge

    Allied agencies warn Russian operators are targeting defence network edges. The campaign places asset visibility, router configuration, supplier access, unsupported hardware, and production continuity inside the same industrial-security problem.