Case Study: Asia-Pacific Energy Company achieves phishing-resistant OT security and swift remote logins with Yubico YubiKeys

Securing critical infrastructure at an Asia-Pacific energy company

An anonymous state-owned Asia‑Pacific energy company serving millions across a large territory needed to harden access to its Operational Technology (OT) environment after board-level mandates and rising nation‑state/APT threats. Users and third‑party contractors accessed OT via F5 VPNs and Active Directory, so the CISO required a phishing‑resistant, user‑friendly MFA solution that integrated without additional software and worked for distributed and remote staff.

They deployed 500 YubiKeys (YubiKey 5 NFC and Nano 5C) through YubiEnterprise Subscription, integrating with existing infrastructure for a rapid proof‑of‑concept and rollout. Deployment was smooth, improved OT security with fast, simple logins and high user acceptance, and the subscription model provided predictable costs, key replacement/upgrades and support—enabling future plans for expanded smartcard and passwordless use.