IT solutions for manufacturing: what software manufacturers need

Jun 24, 2026

Contents

Most mid-size manufacturers don't struggle because they lack software, they struggle because ERP, MES, shop-floor sensors, and security controls were bought separately and never designed to work as one stack. The result is data silos, stalled modernization, and cybersecurity exposure that stays invisible until a line goes down.

This guide cuts through the vendor noise to give senior operations and technology leaders a clear architectural view of the manufacturing IT stack: the core software categories, how they integrate, build-vs-buy by layer, and a practical sequence for building it without disrupting production.

The manufacturing IT stack at a glance (TL;DR)

Manufacturing Execution System (MES) sits between your ERP and the shop floor, and the gap between those two layers is where most operational data gets lost.

The modern manufacturing stack has five interlocking layers: enterprise resource planning (ERP) for financials and demand signals, MES for production scheduling and work-order execution, IIoT sensor networks for real-time machine data, OT/IT convergence infrastructure to move that data securely, and analytics for OEE and quality visibility. Industry research indicates that a significant share of manufacturers report data silos between ERP and shop-floor systems as a top operational barrier. Our engineering teams have delivered ERP migrations, MES integrations, and IIoT deployments across discrete and process manufacturers, including brownfield environments where legacy PLCs and modern cloud stacks had to coexist. The article maps each layer, its TCO profile, and where to invest first. As manufacturers modernise this stack, IT outsourcing delivery models are evolving rapidly. Understanding the key trends helps teams decide which layers to build in-house versus partner externally.

Core software categories every manufacturer needs

Enterprise resource planning (ERP) is the planning tier's foundation: it owns demand signals, financials, procurement, and production schedules. Every other system in the stack either feeds data into the ERP or consumes outputs from it.

Get the ERP integration wrong and you get data silos. Fix it and the rest of the stack has a single source of truth to reason from.

The five categories cluster into three operational tiers:

Planning tier

System	Operational job	TCO note
ERP	Financials, orders, procurement, production schedules	Highest TCO; vendor lock-in risk is real, migration projects average 18-24 months
MRP	Material requirements, BOM explosion, reorder triggers	Often a module inside ERP rather than a standalone system
SCM software	Supplier management, inbound logistics, inventory positioning	SaaS options carry lower upfront cost but weaker brownfield integration
PLM	Product data, engineering change orders, BOM versioning across the product lifecycle	Critical for manufacturers with frequent design revisions or regulatory submissions

Execution tier

Manufacturing resource planning and ERP tell the factory what to make. The execution tier handles how. A warehouse management system (WMS) manages putaway logic, pick paths, and real-time inventory locations: separate from ERP stock records, which lag. WMS sits at the boundary between supply chain and production floor; synchronizing the two without creating duplicate records is one of the more common integration failure points we see in brownfield deployments.

Quality and compliance tier

A quality management system (QMS) manages non-conformances, corrective actions (CAPAs), audit trails, and document control. According to the American Society for Quality (ASQ), many organizations have true quality‑related costs as high as 15-20% of sales revenue, with some reaching up to 40% of total operations; in thriving companies, costs of poor quality alone are typically about 10-15% of operations, and effective quality improvement programs can reduce this substantially (American Society for Quality — Cost of Quality). In regulated sectors, medical devices, aerospace, food, QMS is not optional; it directly supports traceability requirements and supplier qualification records.

Across all three tiers, the integration layer is what determines whether these systems share data in near-real-time or batch-sync overnight. M2M data flows between IoT-connected assets and ERP or MES are only reliable when the middleware is designed for idempotent API calls: otherwise, network interruptions in the OT environment produce duplicate production records. That integration design decision, made early, determines whether your stack helps or obstructs production visibility.

How IT systems connect: Middleware, data backbone, and OT/IT convergence

OT/IT convergence is the architectural problem every manufacturer hits at scale: operational technology (PLCs, SCADA, CNC machines) typically speaks in real-time, deterministic protocols, while IT systems speak in transactional, request-response patterns. Bridging that gap without collapsing either side is what the middleware integration layer exists to do.

The Purdue Model gives you the canonical stack sequence: Level 0-2 is the shop floor (sensors, controllers, SCADA), Level 3 is the Manufacturing Execution System (MES), and Levels 4-5 are ERP and enterprise platforms that support business operations. MES sits in the middle deliberately. It translates production orders from ERP into machine-level work instructions, and it pushes real-time production status, yields, cycle times, scrap rates, back up to ERP without flooding the business layer with raw sensor noise. Removing MES and wiring ERP directly to the shop floor is an architecture we've seen fail: ERP poll rates and OT event rates are typically orders of magnitude apart, and the mismatch produces either stale planning data or database overload.

The integration layer above MES handles the harder problem: moving data across systems that were never designed to talk to each other. Well-engineered middleware uses idempotent API calls so that a network retry doesn't double-post a production completion event into ERP, a subtle bug that corrupts inventory figures and cascades into procurement. Data normalization at this layer converts machine-native formats (OPC-UA tags, Modbus registers, proprietary IIoT payloads) into a canonical data model that ERP, QMS, and analytics dashboards can all consume without custom parsing logic in each system.

On the OT security side, the integration layer is also where network segmentation is enforced. A managed DMZ between the OT and IT zones, sometimes called a data diode or unidirectional gateway, lets production data flow upward while blocking any inbound path that ransomware could traverse downward into PLCs. Recent industrial-cybersecurity surveys consistently find that roughly half of manufacturers experienced at least one cyberattack affecting their OT/ICS environment in the prior year.

The M2M data flowing through this backbone, IIoT sensor readings, MES production events, ERP schedule updates, is what feeds downstream analytics, digital twin models, and predictive maintenance algorithms. The integration layer is not a project afterthought; it is the load-bearing structure the rest of the stack sits on.

IIoT sensor networks and predictive maintenance: From machine data to less downtime

An Industrial IoT (IIoT) sensor network turns shop-floor machinery into a continuous data feed, but the value only materializes when that data reaches a predictive maintenance algorithm before a failure occurs, not after.

The data flow has three stages, enabling proactive monitoring and intervention. Vibration, temperature, pressure, and current sensors stream readings at typically millisecond to sub-second intervals from equipment like CNC spindles, compressors, and conveyor drives. That volume is too high to route directly to a cloud platform without unacceptable latency, so edge computing in manufacturing handles the first layer: an edge node aggregates and filters sensor output locally, running lightweight anomaly-detection models on-premise. Only flagged events and compressed telemetry move upstream to the cloud or MES layer. This keeps M2M communication deterministic and reduces bandwidth costs by orders of magnitude, a practical necessity on brownfield production floors with constrained network infrastructure.

At the MES and analytics layer, the filtered data feeds two outputs. First, a predictive maintenance algorithm correlates sensor signatures with historical failure patterns to generate remaining-useful-life (RUL) estimates. Maintenance teams receive a work order in the CMMS before the bearing fails rather than after it seizes. Second, the same data updates Overall Equipment Effectiveness (OEE) dashboards in near real-time, surfacing availability, performance, and quality losses by asset, line, and shift.

McKinsey has estimated that the economic value of IoT-enabled predictive maintenance in factory settings could reach $70-160 billion a year by 2030 (McKinsey: The Internet of Things report).

Deloitte has documented predictive-maintenance programs cutting unplanned downtime substantially in mature deployments (Deloitte Insights — predictive technologies for asset maintenance). Our own work on AI-driven predictive maintenance points the same way: the gains come from catching failures early, not from the sensors themselves.

The TCO caution here: edge hardware, sensor licensing, and data pipeline management all carry ongoing costs that per-seat SaaS pricing models obscure. Build a full-cycle cost model: sensors, connectivity, edge nodes, platform subscriptions, and integration engineering, before committing to a vendor's managed services tier. Vendor lock-in risk is highest at the data-pipeline layer, where proprietary ingestion formats can make switching platforms a re-engineering project rather than a configuration change.

Digital twin: Where it fits in the stack and when it pays off

A digital twin delivers measurable ROI only after the Industrial IoT (IIoT) sensor network and Manufacturing Execution System (MES) beneath it reach a minimum maturity threshold. Treat it as a maturity gate, not a marketing concept.

Here is how the dependency stack works in practice. The IIoT sensor network provides raw telemetry. MES contextualizes that telemetry against production schedules, work orders, and quality events. The digital twin consumes both streams to simulate equipment or line behavior in real time, running what-if scenarios against current production constraints without touching the physical system. Without clean, timestamped MES event data to anchor the simulation, a digital twin reduces to an expensive dashboard.

The readiness checklist before a digital twin project is scoped:

IIoT coverage: ≥80% of target assets instrumented, with sub-second data latency to edge or cloud
MES integration: bi-directional API between MES and the historian; work-order state changes reflected in the data layer within one production cycle
Data quality: sensor dropout rate below industry standards of ≤5%, where higher rates distort simulation outputs

When those gates are met, manufacturers in discrete and process sectors have used digital twins to compress changeover optimization cycles and model tooling wear before physical intervention is needed.

The business case inflects around simulation frequency. A twin queried once per shift to optimize the next production run has a very different TCO from one running continuous Monte Carlo scenarios across a multi-line operation, the latter demands significantly more managed compute and data pipeline investment. Size the project to the decision frequency your operations team will actually act on.

OT/IT cybersecurity: Network segmentation, ransomware risk, and compliance

OT/IT convergence is the single largest attack surface expansion manufacturers have accepted in the past decade, and most production networks were never designed to contain a breach once it crosses the IT boundary.

The core risk is architectural. Traditional OT networks (PLCs, SCADA, DCS) were air-gapped by design. Connecting them to IT systems for MES data flows, ERP scheduling feeds, and IIoT telemetry pipelines creates lateral movement paths that ransomware actors exploit systematically. The 2021 Colonial Pipeline incident is the canonical case, but manufacturing sector attacks have followed the same pattern: IT compromise propagates to OT, halting production schedules within hours. The RTO/RPO implications are severe, an ERP restore might tolerate a 4-hour RTO, but a SCADA system controlling a continuous process line may have an effective RTO of zero (Veeam & Vanta Help Center).

Network segmentation is the primary control. A defensible architecture places a demilitarized zone (DMZ) between the IT and OT layers, with unidirectional data diodes or tightly managed firewalls controlling what crosses. MES sits at this boundary by design, which is one reason why brownfield deployments that bolt MES directly onto a flat network create compliance debt immediately.

For manufacturers supplying the US Department of Defense, CMMC Level 2 compliance is now a contract requirement, not a best-practice. CMMC Level 2 maps directly to NIST SP 800-171, which specifies 110 security controls covering access management, incident response, and, critically, OT-relevant controls around configuration management and audit logging. CMMC Level 1 covers only 17 basic cyber hygiene practices; Level 2 adds the full 110-control set and requires a third-party assessment organization (C3PAO) audit (Kiteworks & Multiple CMMC Compliance Sources).

As of early 2026, only a small fraction of the defense industrial base has achieved CMMC Level 2 certification, so the assessment backlog itself is a scheduling risk for contractors entering the pipeline.

Managed security services built around OT-aware monitoring tools, Claroty, Dragos, or Nozomi Networks, give smaller manufacturers visibility into M2M traffic patterns without requiring an in-house OT security team. The segmentation project itself typically runs 8-16 weeks for a mid-size plant, longer when legacy systems lack the management interfaces needed to enforce zone policies.

Cloud, edge, and hybrid deployment: Choosing the right infrastructure model

Edge computing in manufacturing handles latency-sensitive workloads that cloud cannot: quality vision systems, CNC feedback loops, and real-time IIoT sensor network data where a 200ms round-trip to a cloud region would cause a defect or a safety event. The decision rule is simpler than most architecture reviews make it:

Workload type	Deployment model	Rationale
Real-time machine control, vision inspection, M2M messaging	Edge (on-premises or near-site)	Sub-10ms latency required; production schedules cannot tolerate WAN dependency
ERP, SCM, demand planning, HR	Cloud (SaaS or managed cloud)	Latency-tolerant; vendor-managed upgrades reduce TCO; sensitive business data benefits from cloud-native audit trails
MES, historian, OEE dashboards	Hybrid	MES sits between ERP and the shop floor; real-time data aggregation runs at the edge, with batch synchronization to cloud analytics
Brownfield assets (legacy PLCs, older SCADA)	Hybrid with edge gateway	Full cloud migration is impractical without re-engineering the OT layer; edge gateways translate OPC-UA or Modbus into cloud-consumable formats

In a Gartner Peer Community poll, a majority of organizations reported adopting hybrid infrastructure for new technology initiatives (Gartner Peer Community).

Brownfield deployments are where hybrid earns its keep. Replacing a 15-year-old SCADA system to achieve cloud connectivity is a multi-year project; deploying an edge gateway that normalizes OPC-UA traffic into a managed data pipeline takes weeks and preserves the existing production environment. We've seen this pattern cut IIoT integration timelines by roughly 60% compared to full-stack replacement on similar brownfield projects.

Vendor lock-in risk differs by layer. Cloud ERP and SCM from major platforms carry moderate lock-in, data portability is contractually negotiable but migration costs are real. Edge infrastructure, by contrast, tends toward open industrial protocols (OPC-UA, MQTT), so the lock-in risk lives in the integration middleware, not the hardware. Choose middleware that supports idempotent API calls and protocol abstraction from day one; retrofitting this under production load is expensive.

Build vs buy by category: When off-the-shelf wins and when custom makes sense

Off-the-shelf wins on mature, standardized processes; custom makes sense when your production logic is the competitive differentiator. The decision isn't philosophical, it maps directly to software category.

Category	Default recommendation	When to go custom
Enterprise resource planning (ERP)	Buy (SAP, Oracle, Microsoft Dynamics)	Multi-site manufacturers with custom costing or compliance workflows that no vendor covers
Manufacturing Execution System (MES)	Buy for discrete manufacturing; evaluate custom for process/batch industries	When shop-floor production schedules, quality gates, or genealogy tracking diverge significantly from standard ISA-95 models
SCM / WMS / QMS	Buy, process maturity is high, switching costs are manageable	Highly regulated sectors (CMMC Level 2, FDA 21 CFR Part 11) where vendor audit trails don't satisfy the control framework
Middleware integration layer	Almost always custom or heavily configured	M2M data translation between OT protocols (MQTT, OPC-UA) and ERP APIs rarely fits a packaged connector without significant rework
IIoT analytics / OEE dashboards	Buy the platform; build the models	Predictive maintenance algorithms trained on your asset data outperform generic vendor models within 6-12 months of deployment

The TCO argument usually favors off-the-shelf in years one and two, then inverts if vendor lock-in forces expensive upgrade cycles, a risk that's acute in manufacturing SaaS, where a platform EOL can strand a production line. For the middleware integration layer and any custom MES logic, in-house ownership of the codebase is worth the build cost.

A practical rule: if the software category has a Gartner Magic Quadrant with four or more viable vendors, buy first and configure hard. If your process is genuinely proprietary, sector-specific additive manufacturing workflows, for instance, build the differentiating layer and integrate it into a commercial backbone.

Implementation roadmap: Sequencing the stack in brownfield environments

Legacy system modernization in brownfield manufacturing environments fails most often not from bad technology choices, but from bad sequencing. The stack has a natural dependency order, violate it and you end up with IIoT sensors feeding data into systems that can't act on it, or a digital twin built on top of a production data model that shifts six months later when ERP goes live.

The sequence that works in practice:

Phase 1, ERP foundation (months 1-6). Enterprise resource planning is the data backbone everything else references: bills of materials, work orders, inventory levels, supplier records. Stabilize and, where needed, modernize it before layering anything else. Migration timelines for mid-market manufacturers typically run four to seven months for a greenfield ERP go-live; brownfield data migration adds two to four months on top.

Phase 2, Manufacturing Execution System (months 4-10, overlapping). MES sits between ERP and the shop floor, translating work orders into production schedules and capturing actual-vs-planned output. Start MES integration once ERP's data model is stable, the two systems share work order and material master records, and an unstable ERP schema forces repeated MES re-mapping.

Phase 3, IIoT sensor network and OT/IT convergence (months 8-18). OT/IT convergence carries the most brownfield risk: aging PLCs, proprietary protocols (Modbus, OPC-UA), and flat OT networks designed before ransomware was a manufacturing-sector reality (Fortinet / Forrester Research report). Managed network segmentation should precede any IIoT rollout — unpatched, internet-exposed legacy systems are among the most commonly exploited entry points into OT.

Phase 4: Analytics, OEE dashboards, and predictive maintenance (months 14-24). Overall Equipment Effectiveness calculations require at least 90 days of clean IIoT sensor data before baselines are statistically meaningful. Predictive-maintenance algorithms need 6-12 months of failure-event history to reach useful recall rates.

Phase 5, Digital twin (month 18+). A digital twin is a projection of the entire stack above it. Build it last, not first. Manufacturers who treat the twin as the transformation project, rather than its output, typically spend 18 months re-platforming the layers underneath it anyway, at higher cost.

Each phase has a defined exit criterion before the next begins. Treat them as managed project gates, not parallel workstreams that drift into each other.

Frequently asked questions

What is the difference between IT and OT in manufacturing?

IT (information technology) manages business data and enterprise systems; OT (operational technology) controls physical production equipment: PLCs, SCADA systems, and sensors on the shop floor. OT/IT convergence connects these two historically separate networks so production data flows into enterprise systems in real time. The security boundary between them determines your ransomware containment posture.

ERP vs MES: Which system runs the shop floor?

MES runs the shop floor; enterprise resource planning (ERP) runs the business. A Manufacturing Execution System (MES) tracks work orders, machine states, and production schedules in real time at the plant level, while ERP handles financials, procurement, and demand planning. MES sits between ERP and SCADA, without it, shop-floor data never reaches business operations.

What does managed IT services ROI look like for a mid-size manufacturer?

Manufacturing managed services typically deliver ROI through reduced unplanned downtime, lower IT staffing costs, and faster incident response rather than a single headline figure. Siemens' widely cited True Cost of Downtime research puts unplanned downtime at around $260,000 per hour for large manufacturers (Siemens, via Reliability Magazine). For a 200-person plant, shifting to managed services often eliminates one to two FTE equivalents in reactive support work.

Which compliance framework applies, NIST SP 800-171 or CMMC level 2?

CMMC Level 2 compliance applies if you hold Controlled Unclassified Information (CUI) as a DoD contractor; NIST SP 800-171 is the underlying control set that CMMC Level 2 is built on. In practice, achieving NIST SP 800-171 across your 110 controls is the technical work, CMMC Level 2 adds third-party assessment and formal certification on top. Non-defense manufacturers typically stop at NIST SP 800-171 self-attestation.

How long does an ERP modernization typically take in a brownfield environment?

ERP modernization in a brownfield environment typically runs 12 to 24 months, with data migration and legacy integration accounting for roughly half that timeline. A phased approach: financials and procurement first, then MES integration and shop-floor data flows, reduces production disruption compared to a full cutover. Compressed timelines below 12 months consistently increase post-go-live defect rates in M2M integration layers.

Can off-the-shelf manufacturing software replace custom development?

Off-the-shelf management solutions cover roughly 80% of standard manufacturing operations needs; the remaining 20%, which involves proprietary production processes, non-standard equipment protocols, or sector-specific quality management rules, almost always requires solutions manufacturing through custom development or deep configuration. The practical test: if your competitive advantage lives in how you run production, a generic system will eventually constrain it. Start with commercial platforms and build custom only where differentiation demands it.

How Netguru helps manufacturers build and integrate IT systems

Netguru's engineering teams have delivered OT/IT convergence projects, legacy system modernization engagements, and Manufacturing Execution System integrations across industrial and process-manufacturing contexts. Our approach starts with the integration layer: mapping data flows between ERP, MES, and shop-floor OT systems before writing a line of code, because production bottlenecks in brownfield deployments almost always originate in the seams between systems, not within them. Where rapid interface-layer or workflow tooling is needed, our low-code application development practice uses platforms such as OutSystems to accelerate delivery without sacrificing enterprise-grade integration requirements.

We work as a managed delivery partner: full-cycle from architecture through build, integration, and support.

If you're scoping an engagement or evaluating a partner for your manufacturing IT transformation, Talk to our team, we'll help you map the right solutions to your operations without overpromising on timelines.