OT Cybersecurity Engineer, Noah Duckworth, joins Dino Busalachi for this episode. They discuss the challenges and nuances of industrial cybersecurity, as he shares insights from his experience working in the OT (Operational Technology) cybersecurity space.

Noah talks about the complexities of integrating traditional IT cybersecurity measures within industrial networks, the specific tools and practices used, and the importance of safe, industry-specific approaches to vulnerability management.

He also provides a perspective on various industrial sectors, such as food and beverage and transportation, and how cybersecurity requirements vary across different verticals and environments.

This episode offers valuable insights into the evolving field of OT cybersecurity and practical advice for professionals interested in protecting critical infrastructure as well as entering the field of industrial cybersecurity.

Chapters:

• 00:00:00 - Introduction to Engineering Problem-Solving in Cybersecurity
• 00:00:46 - Guest Introduction: Meet OT Cybersecurity Engineer & Expert Noah Duckworth
• 00:00:58 - Noah’s Path into OT Cybersecurity and His Industry Experience
• 00:02:13 - Key Differences Between OT and IT Cybersecurity
• 00:03:01 - Addressing Common OT Cybersecurity Challenges and Tools
• 00:06:22 - Navigating Cybersecurity Across Industrial Sectors
• 00:08:06 - Insights for New Professionals in Industrial Cybersecurity
• 00:10:13 - The Evolving Landscape of OT Cybersecurity
• 00:15:22 - Inspiring the Next Generation of Cybersecurity Leaders
• 00:16:35 - Closing Thoughts: Practical Advice for Early-Career Professionals

Links And Resources:

• Velta Technology
• Noah Duckworth on LinkedIn
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

This episode we dive into the critical strategies necessary for securing operational technology (OT) environments, with OT/ICS Strategy Lead at CISA, Danielle Jablanski.

Danielle explores the evolving role of CISA in assisting asset owners and government sectors, emphasizing the importance of collaboration and understanding in cybersecurity.

From building resilience against "shiny object syndrome" to prioritizing effective incident response and vendor relationships, this conversation provides valuable insights into crafting an actionable, sustainable OT security strategy.

Danielle also shares how workforce development is crucial in creating a robust cybersecurity posture and discusses CISA’s approach to integrating AI and machine learning into OT security cautiously and strategically.

Chapters:

• 00:00:00 - Understanding Outsourcing and Effective Incident Management in OT
• 00:01:21 - Welcoming Danielle Jablanski from CISA to the Show
• 00:01:47 - CISA’s Expanding Role in Supporting Critical Infrastructure Security
• 00:03:32 - Key Challenges Facing OT Cybersecurity Today
• 00:06:27 - Navigating the Convergence of IT and OT Security
• 00:11:36 - CISA’s Approach to Risk Management and Its Global Impact
• 00:13:40 - Overview of CISA Services and Regional Cybersecurity Initiatives
• 00:16:36 - Enhancing Incident Response Capacity and Cross-Agency Coordination
• 00:17:30 - Fusion Centers: Interagency Collaboration for Better Threat Intelligence
• 00:18:55 - Guiding Organizations in Reporting and Responding to Incidents
• 00:21:03 - Developing Effective Incident Response Playbooks for OT Environments
• 00:22:08 - Opportunities and Risks of AI in OT Cybersecurity
• 00:24:32 - Emerging Threats: Targeted Attacks on Control Systems
• 00:27:00 - Final Thoughts on Workforce Development and Building Cybersecurity Resilience

Links And Resources:

• Danielle Jablanski on LinkedIn
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Chris Cockburn, Cybersecurity Advisor at CISA, shares his insights on how CISA supports industrial cybersecurity from critical infrastructure to elections.

We explore the impact of state-sponsored cyber threats, the importance of securing emerging technologies like AI through the "Secure by Design" initiative, and the role of government-private sector partnerships in building a resilient cybersecurity posture.

He shares the free resources available to support industrial cybersecurity including Fusion Centers. Whether it's defending against sophisticated cyber attacks or ensuring the integrity of our election systems, this episode provides essential guidance for securing the future of critical infrastructure.

Chapters:

• 00:00:00 - Introduction to AI security concerns in critical infrastructure
• 00:00:59 - Meet Chris Cockburn, cybersecurity expert from CISA
• 00:01:10 - Chris Cockburn’s journey from DoD to CISA
• 00:02:21 - Overview of global industrial cybersecurity challenges
• 00:03:35 - How CISA collaborates to strengthen cybersecurity
• 00:04:52 - Regional cybersecurity support for critical sectors
• 00:05:49 - Tackling resource challenges in cybersecurity
• 00:08:03 - Continuous efforts to secure election systems
• 00:09:26 - Navigating the complexities of IT/OT convergence
• 00:12:36 - Making the most of cybersecurity insurance
• 00:15:08 - Ensuring AI is secure by design
• 00:19:06 - CISA’s partnership with Idaho National Lab for cybersecurity training
• 00:20:48 - Key strategies for building cyber resilience
• 00:22:09 - Fusion Centers: Enhancing collaboration in cybersecurity
• 00:23:53 - Final thoughts on the future of cybersecurity

Links And Resources:

• Chris Cockburn on LinkedIn
• CISA Cybersecurity Resources and Tools
• Dino Busalachi on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this episode, Dino and Craig dive into the complexities of cybersecurity in the operational technology (OT) space, focusing on the challenges posed by vendor lock, version lock, and outdated systems. 

They explore the disconnect between IT and OT teams, emphasizing the need for collaboration to secure industrial environments effectively. 

The discussion highlights practical strategies like virtual patching and microsegmentation to mitigate risks, stressing the importance of working with the right partners to protect legacy systems while maintaining production efficiency.

Chapters:

• 00:00:00 - Introduction to Equipment Life Cycle
• 00:00:56 - Key Challenges in Operational Technology (OT)
• 00:01:24 - The OEM Blockade: A Barrier to Progress
• 00:02:09 - Unpatched Vulnerabilities in Newly Installed Equipment
• 00:04:22 - Bridging the Gap: IT and OT Collaboration Issues
• 00:05:40 - Practical Solutions: Compensating Controls
• 00:06:48 - The Realities of IT and OT Convergence
• 00:09:00 - Shared Infrastructure Risks
• 00:12:00 - The Gap in Due Diligence on the Plant Floor
• 00:14:00 - The Need for Better OT Cybersecurity Practices
• 00:16:00 - Finger-Pointing in OT Environments
• 00:19:21 - Why Process Integrity Matters in OT
• 00:24:02 - Final Thoughts: Moving Forward in OT Security

Links And Resources:

• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this episode, Dino Busalachi and Craig Duckworth dive into the complexities of human factors and industrial cybersecurity. They discuss the need for robust cybersecurity awareness at all levels, and the challenges of integrating IT and OT environments.

The conversation highlights real-world scenarios, from phishing attacks to internal threats, and emphasizes the importance of building a strong cybersecurity culture.

Dino and Craig also explore strategies for improving visibility, managing remote access, and ensuring compliance with industry regulations, offering actionable insights for industrial professionals.

Chapters:

• 00:00:00 - Kicking Off: Why Industrial Cybersecurity Matters
• 00:01:17 - The Human Element: Cybersecurity's Biggest Challenge
• 00:02:14 - Plant Floor Realities: Tackling Cyber Threats on the Ground
• 00:03:20 - Boosting Awareness: Training for a Secure Future
• 00:05:41 - Breaking Barriers: Overcoming OEM and IT Hurdles
• 00:08:10 - Culture Shift: Building a Cybersecurity-First Organization
• 00:09:32 - Top-Level Insight: Managing Executive Challenges and Costs
• 00:16:10 - Outsourcing Excellence: Best Practices for OT Cybersecurity
• 00:25:26 - Zero Trust Unpacked: Enhancing Cyber Hygiene
• 00:26:49 - Wrapping Up: Key Takeaways and Final Thoughts

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi sits down with Debbie Lay, Senior Solutions Architect from TXOne Networks, in this week's episode, to discuss challenges and innovative solutions in OT cybersecurity.

They cover the ongoing issues of outdated systems, the complexities of IT and OT convergence, and the benefits of virtual patching as a method for securing OT environments and legacy equipment. They also address the impact of the Crowdstrike event on Industrial OT environments.

Debbie shares her extensive experience and insights into how industries can safeguard their operations from ransomware and other threats without disrupting production.

This episode provides perspectives on managing cybersecurity in industrial environments, and the importance of collaboration between IT and OT teams.

Tune in to understand how virtual patching can be an effective approach to protect critical assets on the plant floor!

Chapters:

• 00:00:00 - Introduction to OT Cybersecurity
• 00:01:02 - Debbie Lay's Journey into OT Cybersecurity
• 00:02:13 - Challenges of Implementing IT Solutions in OT
• 00:04:17 - Virtual Patching in OT Environments: Securing Legacy Equipment
• 00:07:17 - IT and OT Convergence: Complexities and Solutions
• 00:08:21 - Bridging the IT-OT Gap: Importance of Collaboration
• 00:12:57 - TXOne Technologies for Enhancing OT Security
• 00:14:40 - The Impact of Cloud-Based Solutions on OT Operations
• 00:18:46 - Collaboration: A Critical Component in OT Security
• 00:20:12 - Industry Trends and Key Challenges in OT Cybersecurity
• 00:23:49 - Conclusion and Insights on Future Discussions

Links And Resources:

• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Craig and Dino dig into the differences and nuances of patch management and software updates comparing IT versus Operational Technology (OT) environments. 

They explore the distinct challenges that OT systems face with software updates, and risks associated with patch management, including potential operational disruptions and risks of downtime. 

They discuss the importance of IT understanding the OT risks and challenges of updating software and implementing patches to ICS and OT equipment.

The conversation highlights innovative solutions like virtual patching, the role of OEMs, and the critical need for a strategic, collaborative approach to cybersecurity in industrial settings.

Chapters:

• 00:00:00 - Introduction to Patching Challenges
• 00:01:08 - IT vs OT Patching: Key Differences
• 00:02:55 - Understanding the Cost of Downtime in OT
• 00:03:32 - Overcoming Challenges with Legacy Systems
• 00:05:21 - Navigating OEMs and Safety Concerns
• 00:06:45 - The Role of Safety in OT Patching
• 00:08:52 - Exploring Virtual Patching Solutions
• 00:13:11 - Enhancing Vendor Collaboration and Risk Management
• 00:16:48 - Impact of Mergers and Acquisitions on Cybersecurity
• 00:18:33 - Addressing Insurance and Compliance Issues
• 00:20:12 - Significant Consequences of Not Patching
• 00:23:14 - Building an Effective Collaborative Cybersecurity Strategy
• 00:24:03 - Conclusion and Actionable Insights

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this episode, cybersecurity expert Sandeep Lota, Nozomi Networks Field CTO, joins Dino Busalachi to discuss the challenges and innovations in OT cybersecurity.

Key topics they explore include dealing with the evolution of OT security tools, the challenges with IT-OT convergence, and the increasing importance of continuous monitoring.

Sandeep also talks about the role of OEM partnerships and the rising trend of managed services. Tune in to stay ahead of the curve!

Chapters

• 00:01:00 - Meet Sandeep Lota of Nozomi Networks
• 00:02:00 - Cybersecurity Journey and Milestones
• 00:03:00 - IT vs OT: The Convergence Challenge
• 00:05:00 - OEM Partnerships in Security
• 00:07:00 - Future Trends in OT Security
• 00:10:00 - Why Continuous Monitoring Matters
• 00:11:00 - The Boom in Managed Services
• 00:18:00 - Nozomi Networks' Global Impact
• 00:19:00 - Key Takeaways and Final Thoughts

Links And Resources:

• Sandeep Lota on LinkedIn
• Nozomi Networks
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

This episode focuses on the critical intersection of IT and OT in industrial cybersecurity.

Featuring discussions on strategic partnerships and validated designs, the episode addresses the challenges of data protection, digital safety, and asset inventory.

The conversation goes into how companies can better secure their operations by integrating IT and OT, leveraging new technologies, and improving operational efficiency.

The speakers also share insights on the evolving landscape of cybersecurity and the importance of collaboration between different departments within organizations to mitigate risks and ensure safety.

Chapters:

• 00:00:00 - Welcome to Industrial Cybersecurity Insiders!
• 00:01:20 - Cybersecurity and Data Protection in Modern Manufacturing with Jim Fledderjohn, Dell Technologies
• 00:07:12 - The Future of Cybersecurity Insurance with Observatory Holding’s CEO, Gerry Kennedy
• 00:13:59 - Unmasking Industrial Cybersecurity Threats and Solutions with Dave Purdy of TXOne Networks
• 00:23:21 - Cybersecurity A-Z in Manufacturing and Industrial Sectors with Armis CTO, Mick Coady

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Craig Duckworth and Dino Busalachi discuss the pressing issue of cybersecurity compliance for publicly traded companies under new SEC regulations.

They discuss the reasons behind the low number of reported breaches, including national security exemptions and potential corporate negligence.

Craig and Dino address the challenges companies face in safeguarding their operations, from inadequate incident response plans to the ins and outs of securing industrial control systems.

Tune in to understand why transparency and proactive measures are essential for protecting both companies and their investors.

Chapters:

• 00:00:00 - Introduction: The True Cost of Cybersecurity Neglect
• 00:01:00 - Craig and Dino Unpack the SEC Rulings for Public Companies
• 00:02:29 - National Security Exemptions: A Double-Edged Sword
• 00:03:42 - The Complexities of Supply Chain Cybersecurity
• 00:05:32 - The CISO's Dilemma: Balancing Security and Operations
• 00:08:32 - Financial Fallout from Cybersecurity Failures
• 00:10:03 - Incompetence or Intentional? Unveiling Cybersecurity Failures
• 00:17:10 - The Role of Insurance in Cybersecurity Breach Mitigation
• 00:18:00 - Call to Action: Practical Steps to Improve Cybersecurity
• 00:21:47 - Conclusion and Final Thoughts: Taking Responsibility

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Craig Duckworth, CTO and CEO of Velta Technology, respectively, tackle the inherent risks of CISO resignations.

They discuss the immense stress and challenges that put these crucial roles at risk.

They talk about the unique struggles CISOs face in managing industrial cybersecurity, where outdated systems and a lack of authority compound their difficulties.

Dino and Craig also address the critical disconnect between IT and OT environments, the importance of on-the-ground involvement, and the need for a collaborative approach to secure industrial operations.

Tune in to understand why the role of a CISO has become untenable for many and what can be done to address this growing issue.

Chapters:

• 00:00:00 - Introduction to the Unpatchable Environment: Why It's a Problem
• 00:01:39 - The Great Resignation of CISOs: Unveiling the Reasons
• 00:02:05 - Manufacturing's Unique Cybersecurity Struggles
• 00:03:08 - Stress and Responsibility: The CISO's Daily Battle
• 00:04:13 - Modern Cybersecurity: Why It's So Complex
• 00:05:00 - IT vs. Plant Management: Bridging the Gap
• 00:07:06 - Senior Leadership's Role in Cybersecurity: Are They Doing Enough?
• 00:08:39 - IT and OT Collaboration: The Key to Security
• 00:10:12 - Third-Party OT Suppliers: A Hidden Risk
• 00:12:00 - The Wild West of Cyber-Physical Connections
• 00:14:23 - Regulations and Realities: Why Compliance Falls Short
• 00:16:40 - The Reality of Cybersecurity Threats: What You Need to Know
• 00:20:00 - Flat Networks: The Hidden Danger
• 00:23:38 - Conclusion: A Call to Action for CISOs

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Miki Shifman, co-founder and CTO of Cylus, shares his perspective on the unique cybersecurity challenges in the railway industry.

They discuss the need for specialized security measures to protect the complex and vulnerable rail systems.

Miki shares insights on how Cylus has developed solutions tailored to this sector, addressing both current gaps and future threats.

They discuss the importance of automation in security processes and the evolving landscape of rail safety.

Chapters:

• 00:00:00 - Welcome to Industrial Cybersecurity Insider
• 00:01:03 - Introducing Dino Boussalaki and Mickey Schiffman
• 00:01:56 - Tackling the Unique Cybersecurity Challenges in Railways
• 00:02:52 - Why Generic OT Security Doesn't Cut It for Rail Systems
• 00:05:37 - Ensuring Safety and Process Integrity in Rail Operations
• 00:07:45 - Overcoming the Reluctance to Change in Rail Cybersecurity
• 00:10:22 - Navigating Government Regulations and Security Controls
• 00:11:56 - How OEMs are Adapting to New Cybersecurity Demands
• 00:13:45 - Implementing Security Without Disrupting Operations
• 00:17:30 - The Evolution of OEM Security Practices in Rail Systems
• 00:20:00 - Cybersecurity Insurance: What Rail Operators Need to Know
• 00:21:53 - Closing Insights and Essential Takeaways

Links And Resources:

• Miki on LinkedIn
• Cylus
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this week's episode, Dino Busalachi is joined by Gary Kneeland from Claroty. With over nine years of experience at Claroty, Gary discusses the evolution of OT security, the convergence of IT and OT, and the growing importance of cybersecurity in protecting critical infrastructure.

The conversation touches on how regulatory changes, ransomware threats, and AI advancements are shaping the industry.

Whether you’re dealing with outdated systems or navigating complex industrial environments, this episode provides practical insights into the challenges and opportunities ahead.

Chapters:

• 00:00:00 - Pandemic's Impact on Critical Infrastructure
• 00:01:08 - Introduction to Gary Neelan and Claroty
• 00:01:41 - Gary's Role in OT Cybersecurity
• 00:02:49 - Evolution of OT Cybersecurity: From Compliance to Strategy
• 00:05:23 - IT and OT Convergence: Securing Cyber-Physical Systems
• 00:09:46 - Addressing Complex Challenges in OT Cybersecurity
• 00:11:56 - OT Cybersecurity Talent Shortage and Managed Services
• 00:13:01 - Future of OT Cybersecurity: Adapting to New Threats
• 00:14:36 - Modernizing Manufacturing Systems for Enhanced Security
• 00:15:52 - Global Cybersecurity Trends in Critical Infrastructure
• 00:18:01 - Regional OT Cybersecurity Challenges and Responses
• 00:25:01 - The Role of AI in Defending OT Environments
• 00:28:19 - Final Thoughts on OT Cybersecurity's Future

Links And Resources:

• Gary Kneeland on LinkedIn
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this week's episode, Dino and Jim, CTO and COO for Velta Technology, discuss the misconceptions surrounding the security of operational technology in industrial settings.

They debunk the common belief around air-gapped systems, explaining how these are usually not as isolated as many think.

Dino and Jim talk about real-world examples of oversight and communication gaps that compromise plant operational security, stressing the need for better collaboration between IT and operational staff to safeguard critical infrastructure.

They also address the struggles of implementing cybersecurity measures on the plant floor, which are absolutely necessary to prevent costly downtime and protect against external threats.

Chapters:

• 00:00:00 - Kickoff: Unpacking Industrial Cybersecurity
• 00:00:51 - Introducing Your Guides: Dino and Jim
• 00:01:13 - Myth Busting: The Truth About OT Air Gaps
• 00:02:08 - Tales from the Plant Floor: Examples of Miscommunication
• 00:04:47 - Connectivity Challenges: The Realities of Remote Support
• 00:06:25 - The High Cost of Downtime: Strategies for Effective Remote Access
• 00:07:38 - Securing the Plant: Cybersecurity’s Critical Role in Operations
• 00:11:59 - Initiating the Hunt: Identifying and Closing Security Gaps
• 00:14:07 - Navigating Complex Plant Networks: Mergers, Acquisitions, and Legacy Systems
• 00:16:33 - Cybersecurity Ownership: Who's in Charge Here?
• 00:18:58 - Building Cybersecurity Practices in OT Supplier Networks
• 00:20:45 - Supply Chain Security: Bridging the Gap Between IT and OT
• 00:22:21 - On-the-Ground Insights: Practical Steps for Securing Industrial Environments
• 00:24:02 - The Crucial Role of Continuous Monitoring in Cybersecurity
• 00:26:09 - Closing Insights: Key Takeaways and Future Directions

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Ed Turkaly, Cybersecurity Offer Management Director at Schneider Electric, discusses the convergence of IT and OT in industrial cybersecurity.

Ed talks about the challenges and strategies for securing critical infrastructures, focusing on the importance of proactive measures over mere detection.

He shares insights into Schneider Electric's innovative approaches to integrating cybersecurity solutions into their offerings, discussing the necessity of collaboration between IT and OT.

Ed also talks about addressing the complexities of industrial cybersecurity, making this episode a must-listen for anyone interested in the future of digital security.

Chapters:

• 00:00:00 - Introduction to Industrial Cybersecurity
• 00:01:13 - Ed Turkaly's Cybersecurity Journey
• 00:02:14 - Building Trust and Understanding Cybersecurity Needs
• 00:04:59 - Bridging the Gap: IT and OT Convergence in Cybersecurity
• 00:06:50 - Addressing OT Cybersecurity Challenges and Misconceptions
• 00:09:38 - The Role of Cybersecurity Insurance in Modern Business
• 00:10:38 - Schneider Electric’s Cybersecurity Strategies
• 00:14:10 - Partnering and Certification in Cybersecurity Solutions
• 00:16:17 - Client Engagement and Effective Cybersecurity Strategy
• 00:19:00 - Moving from Visibility to Prevention
• 00:22:00 - Importance of OEM Partnerships in Cybersecurity
• 00:24:38 - Future Trends in Preventative Cybersecurity Measures

Links And Resources:

• Ed on LinkedIn
• Schneider Electric
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Cisco lead OT Security Solution Architect Andrew McPhee, sheds light on the often overlooked and misunderstood world of OT cybersecurity. He explains the complexities of combining IT and OT environments, emphasizing the hidden risks many industrial networks face.

Through real-world examples, Andrew reveals the dangers posed by outdated protocols and the importance of proper network segmentation and visibility in preventing costly shutdowns. With a mix of expert insights and practical advice, this episode is a wake-up call for those involved in maintaining and securing industrial control systems.

Don’t miss Andrew's eye-opening take on why your network might not be as secure as you think—and what you can do about it.

Chapters:

• 00:00:00 - Intro: Why IT Is Crucial for OT Network Success and Meet Andrew McPhee
• 00:01:39 - Inside the Job: What a Solution Architect Does
• 00:02:26 - Overcoming IT and OT Integration Hurdles
• 00:04:42 - Closing the IT and OT Skills Gap
• 00:06:00 - Real-World Examples of Skill Challenges
• 00:07:25 - Why Networking Knowledge is Essential in OT
• 00:08:40 - IT and OT: Different Worlds, Common Goals
• 00:09:30 - Training IT for OT: The Benefits and Hurdles
• 00:10:08 - Cisco's Journey in Industrial Networking
• 00:14:05 - New Cybersecurity Regulations: What They Mean for You
• 00:16:32 - Unpacking Cisco Cyber Vision: A Game Changer for OT Security
• 00:16:32 - Unpacking Cisco Cyber Vision: A Game Changer for OT Security
• 00:18:00 - How Cyber Vision Identifies Vulnerabilities
• 00:19:15 - Success Stories: Cyber Vision in Action
• 00:20:45 - The Importance of Visibility in OT Networks
• 00:22:10 - Balancing Passive and Active Network Monitoring
• 00:23:35 - Enhancing Security with Native Protocols
• 00:25:00 - The Role of Cyber Vision in Regulatory Compliance
• 00:26:20 - Preparing for Future Cybersecurity Threats
• 00:27:39 - AI's Potential in Strengthening OT Cybersecurity

Links And Resources:

• Andrew on LinkedIn
• Cisco
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

John Vecchi, CMO of Phosphorus Cybersecurity, gives us a look into the rapidly evolving landscape of xIoT security, revealing the hidden vulnerabilities within our everyday devices.

From casinos to hospitals, John breaks down the immense challenges and critical risks facing industries reliant on interconnected technology.

With a mix of personal experiences and expert insights, he offers a roadmap for strengthening defenses against increasingly sophisticated cyber threats.

Tune in to uncover how the unseen intricacies of IoT can impact security and what steps can be taken to safeguard our digital and physical worlds against the invisible dangers lurking within our connected devices.

Chapters:

• 00:00:00 - Kicking Off: The Critical Need for Cybersecurity Visibility
• 00:01:07 - Meet John Vecchi: Champion of Cybersecurity at Phosphorus
• 00:02:01 - Unveiling IoT: Its Role Across Industries from Gaming to Healthcare
• 00:03:15 - Case Study: Gaming Industry and IoT Vulnerabilities
• 00:04:30 - Discussion on Cyber Attacks in Recent Times
• 00:05:45 - The Expanding Threat Landscape in IoT
• 00:07:00 - John Vecchi's Insights on Preventative Security Measures
• 00:08:26 - Spotlight on Security: Tackling IoT's Hidden Vulnerabilities
• 00:11:24 - Blueprints for Defense: Effective Strategies to Secure IoT
• 00:13:50 - The Role of Default Credentials in IoT Security
• 00:15:35 - Firmware Updates: A Necessary Step in IoT Protection
• 00:17:10 - Addressing the Challenges of Patch Management
• 00:19:05 - Real-World Examples of Effective IoT Security Enhancements
• 00:22:30 - Seeing the Unseen: Why Knowing Your Digital Terrain is Vital
• 00:24:50 - Importance of Visibility in Cybersecurity
• 00:26:40 - John Vecchi on Cybersecurity Best Practices
• 00:28:15 - Future Trends in IoT and Cybersecurity
• 00:30:00 - Concluding Thoughts: Securing IoT for Tomorrow
• 00:32:02 - Wrapping Up: Key Takeaways and Looking Ahead in IoT Security

Links And Resources:

• John Vecchi on LinkedIn
• Phosphorus
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Craig Duckworth and Jim Cook discuss the critical yet often overlooked topic of budgeting for operational technology (OT) cybersecurity.

Throughout their discussion, they address the challenges and necessities of securing funding from executive teams, framing the conversation around liability, risk management, and the dire need for strategic investment to safeguard critical infrastructure.

They highlight the nuanced divide between IT and OT responsibilities and emphasize the vital role of clear communication in making cybersecurity a top priority for corporate budgeting.

By exploring real-world scenarios and the potential consequences of neglecting cybersecurity in OT, this episode serves as a compelling call to action for organizations to reassess their approach to cybersecurity funding and strategy, ensuring they are adequately prepared to handle emerging threats in an increasingly connected world.

Chapters:

• 00:00:00 - Welcome to Velta Technology: Introductions and Today's Focus
• 00:01:31 - Navigating the Budget Cycle for OT Cybersecurity
• 00:02:11 - Bridging the IT-OT Divide: Whose Responsibility Is Cybersecurity?
• 00:04:51 - Building the Business Case for OT Cybersecurity Funding
• 00:09:49 - Understanding the Real-World Impacts of Cybersecurity Failures
• 00:11:43 - Strategies for Addressing OT Cybersecurity: From Awareness to Action
• 00:16:03 - Leveraging Technology and Building Capability for Cybersecurity
• 00:20:58 - Making the Case to Executives: Risk Management and Cybersecurity Insurance
• 00:22:41 - Exploring Options and Taking Action Against Cybersecurity Threats
• 00:28:12 - Navigating Cyber Insurance: Adjusting to New Realities in Risk Coverage
• 00:33:37 - Concluding Thoughts: The Importance of Starting Cybersecurity Initiatives

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Enjoy this episode as Dino Busalachi, CTO and Co-Founder of Velta Technology, and Jim Cook, COO of Velta Technology, have a discussion about the complexities and challenges of using Zero Trust security frameworks within operational technology (OT) environments.

They explore the nuanced differences between IT and OT landscapes, pointing out the different challenges that arise when applying IT-centric security strategies to the distinct and varied needs of industrial settings.

From the more straightforward IT Zero Trust framework to the complexities of trying to apply that approach and managing system vulnerabilities on the OT side, the conversation offers a rich combination of technical insight and real-world applications.

If you’re involved in the intersecting worlds of IT and industrial operations, this episode is sure to provide valuable lessons on securing technological infrastructures against modern threats while considering the operational realities of the plant floor.

Chapters:

• 00:00:00 - Kickoff: The High Stakes of Zero Trust in OT
• 00:03:09 - Tracing the Roots: How Zero Trust Evolves with Network Security
• 00:04:17 - The Rise of AI and Its Influence on Security
• 00:06:50 - Operational Challenges with Applying New IT Frameworks
• 00:08:12 - Zero Trust's Fit with Industrial Protocols
• 00:10:28 - The OT Challenge: Applying the Bucket Strategy for Zero Trust
• 00:12:03 - Addressing Network Segmentation in OT
• 00:14:00 - Challenges with VPNs and Remote Access in Zero Trust
• 00:16:45 - Potential Misalignments in Applying IT Security to OT
• 00:17:46 - Identity Crisis: Managing Access Within Zero Trust Frameworks
• 00:19:12 - Implications of Shared Passwords and User Access
• 00:23:04 - Strategic Collaboration Between IT and OT for Enhanced Security
• 00:26:32 - Wrap-Up: Collaborative Paths to Effective Zero Trust in OT

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Join your host, CEO and President of Velta Technology, Craig Duckworth and special guest Chris Bihary, CEO and co-founder of Garland Technology, as they discuss the complexities of operational technology (OT) security within critical infrastructures.

Chris shares his fascinating journey from spontaneous problem-solving to developing essential security hardware like network taps and data diodes that are now crucial in major industries.

Discover how Garland Technology collaborates with Velta Technology to tackle common and emerging challenges in network security through innovative solutions.

Whether you're a tech enthusiast or a professional navigating the intricate world of IT and OT security, this episode offers valuable insights into the foundational strategies that protect your digital landscape from unseen threats.

Tune in to explore how these tech pioneers are enhancing network security, making the invisible, visible and secure.

Chapters:

• 00:00:00 - Expert Dialogues: Chris Bihary and Craig Duckworth Unpack OT Security
• 00:00:59 - Genesis of Garland: Chris's Journey from Idea to Industry
• 00:01:45 - Practical Tech: Crafting Solutions for Real-world OT Problems
• 00:03:41 - The Visibility Factor: Why Seeing is Securing in Network Safety
• 00:05:35 - Sensor Strategy: Optimizing Deployment in Complex Networks
• 00:07:22 - Foundations of Security: Building Reliable OT Networks
• 00:09:58 - Enhancing Visibility: The Key to Proactive Security Management
• 00:13:11 - Overcoming Obstacles: Adapting to Diverse Technological Landscapes
• 00:17:56 - Regulatory Impact: How New Standards Shape Security Measures
• 00:21:07 - Starting Points: Tactical Advice for Embarking on Security Improvements
• 00:24:34 - Leveraging Industry Insights: How to Utilize Market Intelligence for Security Advancements
• 00:28:16 - Wrapping Up: Key Takeaways and Forward-Looking Strategies

Links And Resources:

• Chris Bihary on LinkedIn
• Garland Technology
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Join Velta Technology’s CTO, Dino Busalachi and COO, Jim Cook, as they delve into the intricate world of IT and OT integration. Explore the challenges and transformative strategies involved in merging these critical technologies within industrial environments.

Dino and Jim share their expert knowledge and decades of experience, discussing the potential for synergy between operational and information technology to enhance cybersecurity, reduce downtime, and drive company revenue. They liken the integration process to navigating a complex maze where every turn could lead to innovative solutions or unforeseen challenges.

This episode is a must-listen if you’re looking to understand the future of technology in manufacturing and beyond, promising valuable lessons on collaboration and technological convergence.

Chapters:

• 00:00:00 - Meet the Minds: Dino & Jim’s Take on Bridging Tech Gaps
• 00:01:20 - Deep Dive: Contrasting IT & OT Roles and Responsibilities
• 00:03:00 - Snapshot: Current Landscape of OT Cybersecurity
• 00:06:45 - Bridging the Communication Gap: Techniques and Tools
• 00:09:18 - Collaboration Overviews: Building a Unified Tech Framework
• 00:10:34 - Synergy Benefits: How Merging IT and OT Strengthens Security
• 00:12:47 - Real-time Responses: IT-OT Coordination in Action
• 00:16:04 - From Theory to Action: Success Stories in IT-OT Integration
• 00:17:05 - Case Study Deep Dive: Effective IT-OT Integration Practices
• 00:19:21 - Lessons Learned: Overcoming Obstacles in IT-OT Convergence
• 00:21:33 - Harnessing Tech for Operational Efficiency
• 00:23:58 - Future-Proofing Industries through IT-OT Synergy
• 00:26:09 - Closing Loop: Sustaining Collaboration between IT and OT Teams
• 00:28:01 - Final Reflections: Next Steps for IT and OT Integration
• 00:29:13 - Parting Wisdom: Empowering IT and OT Teams to Innovate Together

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Gerry Kennedy, CEO of Observatory Strategic Management, alongside Dino Busalachi, co-founder and CTO of Velta Technology, talk about the complex and evolving world of cybersecurity insurance. They unpack the nuances of IT and OT risk management, revealing how past incidents and technological advancements have shaped current practices.

Their discussion traverses the history from Y2K to present-day cybersecurity challenges, highlighting the crucial role of insurance in mitigating these risks. As they discuss their professional experiences and expert insights, the conversation sheds light on the importance of understanding legal and insurance frameworks in protecting against cyber threats.

This episode not only demystifies the intricate relationship between technology and insurance but also emphasizes the need for a holistic approach to cybersecurity, making it a must-listen for anyone looking to navigate the digital age safely.

Chapters:

• 00:00:00 - Unveiling the Shadows: The Hidden Dangers Behind Kinetic Events
• 00:01:04 - First Impressions: A Blizzard, A Hat, and The Cybersecurity Nexus
• 00:02:00 - The Road Less Traveled: From Texting Bans to Cybersecurity Vanguard
• 00:04:19 - From Y2K Fears to Today's Cyber Insurance: A Historical Perspective
• 00:05:20 - Bridging Worlds: The Indispensable Roles of IT and OT in Securing the Digital Frontier
• 00:08:47 - The Cyber Insurance Conundrum: Untangling the Web of IT and OT Risks
• 00:13:08 - Beyond the Code: Legal Frameworks Shaping Cybersecurity's Future
• 00:17:33 - Looking Ahead: The Interwoven Future of Insurance and Cybersecurity
• 00:20:33 - The Underwriter's Lens: Enhancing Insurance with Cybersecurity Insights
• 00:23:30 - A Call to Arms: The Imperative of Employee Awareness and OSHA's Emerging Role
• 00:25:00 - The Unseen Liability: Navigating the Risks of Digital Premises
• 00:28:45 - Fostering Unity: The Power of Community in Bolstering Cyber Resilience
• 00:31:50 - The Bedrock of Business: Operational Technology's Critical Role in Cybersecurity
• 00:32:28 - On the Horizon: The Evolving Interface of Cybersecurity and Operational

Links And Resources:

• LinkedIn
• Observatory Strategic Management
• CPO Magazine
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Craig Duckworth, leaders and co-founders of Velta Technology, are discussing the paramount importance of safety, quality, and cybersecurity in the operational technology (OT) sector.

Drawing from their extensive field experience, they illuminate the challenges and solutions in safeguarding industrial environments against cyber threats. Their discussion sheds light on the pervasive issue of underpreparedness in OT cybersecurity, highlighting the critical need for robust defense mechanisms.

By exploring the intersection of IT and OT cybersecurity strategies, they offer valuable perspectives on building resilient systems that can withstand the evolving landscape of cyber threats. Dino and Craig not only emphasize the urgency of addressing cybersecurity in industrial operations but they’re also giving actionable advice for organizations to fortify defenses and ensure operational continuity.

Chapters:

• 00:00:00 - Navigating the Cybersecurity Terrain in Operational Tech
• 00:02:37 - Ownership Dilemmas: Who Holds the Cybersecurity Reins?
• 00:04:07 - IT and OT: Collaborating for Stronger Cyber Defenses
• 00:05:22 - The Essential Cybersecurity Triad in Action
• 00:06:48 - Inside the Cyber Defense Strategy: Real-World Insights
• 00:08:15 - The Critical Role of Visibility in Cybersecurity
• 00:09:40 - Addressing the Cybersecurity Skills Gap in Industrial Sectors
• 00:11:05 - The Evolution of Cyber Threats in Operational Technology
• 00:13:50 - Key to Protection: Asset Inventories and Secure Remote Access
• 00:21:17 - Lessons from the Field: The Stakes of Cybersecurity Neglect
• 00:26:41 - Wrapping Up: Future Directions in OT Cyber Resilience

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Craig sits down with Jessica Cook, a computer science engineering senior at Mississippi State University, to explore her journey into industrial cybersecurity.

From discovering her passion for tech in high school to gaining hands-on experience in OT cybersecurity, Jessica discusses how internships and real-world exposure have shaped her understanding of the industry.

She talks about the exciting evolution of industrial careers, highlighting how traditional manufacturing roles are becoming more technical and data-driven.

Jessica shares valuable advice on building relationships, leveraging networking opportunities, and overcoming the challenges of being a woman in a traditionally male-dominated field.

As she prepares to graduate, she reflects on her career path and the opportunities ahead in cybersecurity and OT.

Chapters:

• 00:00:00 - Introduction and Jessica’s Background in Cybersecurity
• 00:01:19 - Discovering a Passion for Tech and Breaking Into STEM
• 00:03:11 - Industrial Cybersecurity: Navigating a Changing Landscape
• 00:05:29 - Mississippi State’s Cybersecurity Program and Its Growth
• 00:06:58 - Real-World Experience: Internships and Co-Ops in OT Cybersecurity
• 00:10:06 - Key Courses and Mentors Shaping a Cybersecurity Career
• 00:14:30 - Leadership, Networking, and Extracurriculars in Engineering
• 00:19:06 - Practical Advice for Students and Early-Career Professionals
• 00:21:15 - Looking Ahead: Graduation and Career Prospects in OT Cybersecurity

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Craig Duckworth and Dino Busalachi CEO and CTO for Velta Technology, discuss the critical role of the C-suite in fortifying manufacturing environments against cyber threats.

Discussing the unique challenges that manufacturing organizations face, they make sure you understand the necessity for executive teams to actively engage in cybersecurity strategies.

With compelling arguments for a more involved C-suite, Craig and Dino explore the intersection of cybersecurity and operational efficiency, emphasizing the need for leadership to not only understand but also lead the charge in securing industrial control systems.

This episode serves as a wake-up call for executives to embrace their pivotal role in protecting their companies from cyber risks, highlighting that cybersecurity is not just an IT issue but a foundational aspect of modern business resilience.

Chapters:

• 00:00:00 - Meet the Minds Behind VELTA Technology's Cyber Initiatives
• 00:01:47 - Deciphering Cybersecurity's Extensive Influence on Manufacturing Dynamics
• 00:03:29 - Unpacking the Costs: The Stark Reality of Ignoring Cybersecurity
• 00:04:08 - The Interplay Between Cyber Insurance, Liability, and Organizational Security
• 00:05:07 - Charting the Course: Fundamental Actions for Cyber Resilience
• 00:07:35 - Implementing Cybersecurity Measures: A Tactical Overview for Manufacturing Leaders
• 00:10:54 - The Imperative of Continuous Monitoring in Mitigating Cyber Risks
• 00:14:11 - Bridging the Divide: Fostering Collaboration Between IT and OT Teams
• 00:17:06 - Cultivating Cyber-Aware Culture: Integrating Security into the Manufacturing DNA
• 00:20:01 - Forward Momentum: Strategic Insights for Executive Leadership on Cybersecurity
• 00:24:28 - Reflecting on the Imperatives of Cybersecurity in the Manufacturing Sector

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Craig Duckworth share their experiences and takeaways from the recent S4 conference in Miami, shedding light on the evolving landscape of OT cybersecurity.

They discuss the criticality of IT and OT collaboration in overcoming industrial cybersecurity challenges, underlining key conference takeaways, including the emergence of new technologies, the importance of asset ownership, and the shifting dynamics within the cybersecurity realm.

Their conversation emphasizes the necessity of understanding and integrating the strengths of both IT and OT to forge a more secure future for industrial environments. Through their dialogue, you’ll gain a comprehensive view of current trends, challenges, and solutions at the intersection of technology and security, inspiring a proactive approach to cybersecurity in the industrial sector.

Chapters:

• 00:00:00 Meet the Hosts: Key Takeaways from S4 in Miami
• 00:01:38 A Fresh Perspective on Cybersecurity Conferences
• 00:03:17 Highlighting the Role of Asset Owners and Vendor Diversity
• 00:04:39 Navigating the OT Cybersecurity Landscape
• 00:06:38 Decoding the Investment in OT Cyber Protections
• 00:12:46 From Theory to Practice: Case Studies in Action
• 00:15:33 On the Horizon: Innovations and Evolving Strategies
• 00:23:57 Projecting the Path Forward for OT Security
• 00:27:23 Wrapping Up: Anticipations for the Future

Links And Resources:

• S4 Conference
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Jim Cook, the CTO and COO of VELTA Technology respectively, discuss the intersection between IT (Information Technology) and OT (Operational Technology) in the cybersecurity landscape. They emphasize that, while IT security measures have their value, they cannot be applied as-is to the OT environment due to significant variations in system operations, scale, and impact in case of breaches.

They stress the importance of holistic consideration of operations when devising cybersecurity measures for OT. They cover topics like zero trust environments, asset inventory, key points from IT’s playbook that may be suited, and ones that would prove challenging in OT – security lessons that need to be adapted rather than employed directly.

They bring in the element of digital safety being just as important as physical safety in an OT environment considering the potential physical outcomes as a result of breaches. The conversation reveals a need for IT professionals to work in collaboration with their OT counterparts for more effective and robust cybersecurity systems, even as the two roles begin to diverge more explicitly in terms of responsibilities and strategies.

Chapters:

• 00:00:00 - Merging Worlds: The Crucial IT-OT Convergence
• 00:02:10 - Zero Trust in OT: Navigating the Transition
• 00:10:04 - Asset Management: The Keystone of OT Security
• 00:12:50 - The Power of Eyes-On: Continuous Monitoring in OT
• 00:14:49 - IT's Supporting Role in Fortifying OT
• 00:18:08 - Shifting Gears: OT's Rising Responsibility
• 00:20:17 - Building Bridges: Engaging OT in the Cyber Dialogue
• 00:21:51 - Remote Access Risks: Navigating OT's Vulnerabilities
• 00:24:31 - Counting the Cost: The Impact of Neglecting OT Security
• 00:25:21 - Designing with Defense: Security-First Approaches in OT
• 00:27:44 - Digital Guardianship: Ensuring Safety in the OT Realm
• 00:30:25 - United Front: The Collaborative Role of IT and OT in Security
• 00:32:42 - Closing Thoughts: Envisioning the Future of OT Cybersecurity

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Jim Cook of Velta Technology explore the shadowy realm of cybersecurity threats from foreign adversaries against ICS / Operational Technology (OT) equipment. They discuss the sophisticated methods by which foreign actors, particularly those sponsored by the CCP, use to infiltrate and undermine the very foundations of our society.

The conversation sheds light on recent government initiatives to root out these digital invaders, revealing a timely and evolving battle against cyber espionage. With expert insights into the challenges of detecting and combating these threats, the episode offers a riveting glimpse into the ongoing efforts to protect national security and the integrity of our critical systems.

Chapters:

• 00:00:00 - Cyber Threats 101: The Challenges of Protecting Critical Infrastructure
• 00:01:10 - The Enemy Within: How State-Sponsored Hackers Breach Our Defenses
• 00:02:20 - The Cyber Arms Race: How Attack Strategies Keep Evolving
• 00:05:18 - The Business Impact: How Cyber Threats Affect the Corporate World
• 00:06:44 - The Ripple Effect: How Cyber Attacks Have Wider Implications
• 00:12:29 - The Remote Access Risk: How to Secure Vulnerable Entry Points
• 00:15:13 - The Government Response: How Federal Initiatives Boost Cybersecurity
• 00:18:53 - The Resilience Roadmap: How to Advocate for Better Cybersecurity Measures
• 00:23:05 - The Urgent Call: How to Strengthen Digital and National Security

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi and Jim Cook, CTO and COO for Velta Technology, invite you on an essential journey into 'Lessons from the Field' of industrial cybersecurity. Their expertise illuminates a landscape where the traditional boundaries between cybersecurity and industrial operations merge, revealing the complexities of protecting manufacturing's vital elements—the industrial control systems.

They shed light on the unintended consequences of standard information technology (IT) practices on OT environments. Instances like routine scans halting production or unexpected shutdowns due to remote access, are not merely warnings but narratives of resilience, creativity, and the relentless quest for security in the face of cyber threats.

This episode stands as a rallying cry for those who safeguard industrial cybersecurity, advocating for hands-on, field-based strategies to comprehend and shield the intricate mesh of machinery and technology that drives our industries.

Highlighting the need for constant alertness, cooperative problem-solving, and a steadfast dedication to a security culture beyond the fluctuating dynamics of staff and protocols, Dino and Jim's dialogue is more than a discussion on challenges—it's a tribute to the unwavering spirit of cybersecurity front-liners.

Serving as an invaluable guide for cybersecurity professionals, IT and OT managers, and all stakeholders in the digital and physical security sphere, this episode highlights the guardianship required against continuously evolving digital threats.

Chapters:

• 00:00:00 - Meet Our Cyber Guardians: Dino & Jim
• 00:01:25 - Field Tactics: Scanning for Cyber Safety
• 00:03:17 - Safeguarding with OT IDS: A Closer Look
• 00:05:41 - Ignoring Security: A Recipe for Risk
• 00:07:38 - Bridging IT and OT: A Unified Front Against Cyber Threats
• 00:15:10 - Evolving Cybersecurity: The Path of Continuous Learning
• 00:20:13 - Wrapping Up: The Essence of Discovery on the Cyber Frontline

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

How do you balance the needs of information technology (IT) and operational technology (OT), two domains that are often at odds with each other with priorities and protocols? How do you ensure the security, efficiency and safety of both the digital and the physical aspects of your operations?

In this episode, Dino Busalachi and Jim Cook take us on a deep dive into the complex worlds of asset and inventory management within both IT and OT, two crucial parts of a manufacturing or critical infrastructure organization. Drawing from their extensive experience, they reveal the unique challenges and methodologies of each domain.

They discuss the common lack of understanding around operational technology equipment, and the safety and performance implications of asset and inventory management for the industrial plant floor.

Whether you are an IT or OT professional, a business leader, or a curious listener, this episode will enlighten you on the dynamics of IT and OT, and inspire you to adopt a holistic and collaborative approach to asset inventories and management. Listen and learn how IT and OT can work together to create a more secure and efficient world.

Chapters:

• 00:00:00 - Unpacking IT vs. OT Asset Inventories
• 00:01:10 - The Crucial Role of Asset Inventories in Security
• 00:04:50 - Manufacturing Challenges: Inventory Management Insights
• 00:07:55 - Visual Inspections' Role in OT Inventory Checks
• 00:08:46 - Solving OT Network Connectivity Issues
• 00:11:30 - Implementing Passive Intrusion Detection in OT
• 00:14:56 - Addressing OT Network Sensitivity Challenges
• 00:16:18 - Lockout Tag Use in Operational Safety
• 00:17:50 - Leveraging Deep Packet Inspection for OT Security
• 00:22:06 - Integrating IT Strategies into OT Security
• 00:26:51 - OT's Impact on Minimizing Downtime
• 00:30:44 - Initiating OT Security Measures
• 00:33:14 - Highlighting the Risks in Neglecting OT Security

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Jim Fledderjohn, a seasoned Manufacturing Field Director at Dell, takes us on a deep dive into the intricate world where operational technology (OT) meets information technology (IT), discussing the complexities and innovations reshaping today's manufacturing landscape.

He sheds light on Dell's strategic endeavors in fortifying industrial cybersecurity, emphasizing the pivotal role of digital safety in this era of technological revolution. From Dell Validated Designs to the importance of company culture and ownership of technology on the plant floor, and dynamics between IT and OT.

This episode is not just a conversation; it's a journey into understanding how the meticulous integration of data integrity and advanced technology is not just enhancing, but revolutionizing the manufacturing industry. Join us for an enlightening exploration of the future, as envisioned by one of Dell's leading minds.

Chapters:

• 00:00:00 - Intro: Welcoming Jim Fledderjohn & Topic Overview
• 00:00:59 - Dell's Manufacturing Insights: Bridging IT & OT
• 00:02:40 - Tackling IT-OT Integration Challenges
• 00:03:52 - Enhancing IT-OT Collaboration & Transparency
• 00:06:39 - Dell's Pivotal Role in Industrial Cybersecurity
• 00:09:09 - Digital Safety's Critical Role in IT & OT
• 00:13:08 - Cybersecurity's Influence on Corporate Reputation
• 00:15:56 - Emphasizing Continuous Monitoring in Operational Technology
• 00:22:43 - Leveraging Third-Party Expertise in OT Environments
• 00:26:09 - Wrapping Up: Key Takeaways & Concluding Thoughts

Links And Resources:

• Jim Fledderjohn on LinkedIn
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Today we welcome Simon Chassar, former CRO of Claroty, to the show. Simon and Craig Duckworth explore the ever-evolving cyber threats facing the industrial sector, underscoring the critical need for robust operational technology (OT) security. Simon highlights the unique challenges posed by legacy systems, their adaptation to modern security standards, and the necessity of industry-specific cybersecurity measures.

The conversation shifts to the role of regulation in driving security initiatives and the dire need for skilled professionals in this specialized field. They discuss the complexities of securing industrial control systems and emphasize the imperative of protecting society's critical infrastructure.

This episode is not just a discussion; it's a deep dive into the intricacies of industrial cybersecurity, blending expert insights with real-world implications, making it a must-listen for anyone concerned with the intersection of technology, security, and industrial resilience.

Chapters:

• 00:00:00 - Introduction to Simon Chassar and Cybersecurity in Industry
• 00:00:52 - Evolving Challenges in Industrial Cybersecurity
• 00:02:18 - Analyzing the Impact of Cyber Threats in Industrial Settings
• 00:05:28 - Critical Role of Cybersecurity in the Manufacturing Sector
• 00:07:06 - Anticipating the Future Trends in Industrial Cybersecurity
• 00:09:40 - Government's Influence and Regulatory Aspects in Cyber Protection
• 00:12:29 - Addressing the Cybersecurity Skills Gap and Education
• 00:13:44 - Emphasizing 'Secure by Design' in Digital Industrial Transformation
• 00:26:29 - Collaborative Approaches and Responsibility in Cybersecurity Initiatives
• 00:27:17 - Wrapping Up: Key Takeaways and Simon Chassar’s Final Insights

Links And Resources:

• Simon Chassar on LinkedIn
• Claroty
• Simon on Twitter
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino and Jim examine a case study from a Velta Technology client, showcasing the importance of continuous monitoring in industrial control systems (ICS). They highlight how proactive cybersecurity can prevent significant breaches, stressing the link between cyber and physical safety in industrial settings. They share insights on integrating IT and OT for stronger security and shed light on internal threats in manufacturing.

This concise yet comprehensive episode is crucial for anyone in cybersecurity, IT and OT management, industrial engineering, or manufacturing leadership. It provides practical yet key understandings of cybersecurity's role in protecting industrial operations.

Chapters:

• 00:00:00 - Opening Remarks: Introducing the Episode's Focus on OT Cybersecurity and Velta Technology
• 00:00:49 - Monitoring Industrial Systems: Exploring Why Vigilance in OT is Critical
• 00:01:28 - Velta Technology's Cybersecurity Success: A Deep Dive into Their Case Study
• 00:02:08 - The Role of Continuous Monitoring: Discussing Essential Tools and Strategies
• 00:06:43 - Combating Phishing and Embracing MFA: Practical Advice for Industrial Cybersecurity
• 00:08:23 - Responding to Breaches: The Impact on Businesses and the Value of Swift Action
• 00:16:35 - Cybersecurity ROI: Protecting Organizational Value and Investment Paybacks
• 00:20:39 - Due Diligence in Cybersecurity: Risks and Responsibilities in the OT Space
• 00:23:23 - Wrap-Up: Concluding Thoughts on OT Cybersecurity and Future Directions

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Dino Busalachi has a fascinating conversation with Mick Coady, CTO of Armis, exploring the intricate world of operational technology (OT) and cybersecurity.

Mick shares his extensive experience, from his early days in the field to his current role at Armis, offering valuable insights into the challenges and opportunities in OT cybersecurity.

He discusses the importance of IT-OT convergence, the role of technology in operational efficiency, and the evolving landscape of cybersecurity in critical infrastructures. He shares insights on the complexities of OT and how cybersecurity strategies are being shaped in this rapidly evolving field.

Chapters:

• 00:00:00 - Mick Coady's Introduction: Discover Mick's role as CTO of Armis and his professional background
• 00:00:56 - Entering the Cybersecurity World: Explore Mick's journey into the field of cybersecurity.
• 00:03:14 - OT Challenges in Manufacturing: Insights into unique cybersecurity challenges faced by manufacturing organizations
• 00:05:36 - Bridging IT and OT: Discussion on the convergence of Information Technology and Operational Technology
• 00:08:57 - OEM's Influence in OT: Examining the role of Original Equipment Manufacturers in the OT landscape
• 00:12:12 - Cybersecurity Partnerships: The critical role of partnerships in enhancing cybersecurity measures
• 00:23:40 - Navigating Cybersecurity Regulations: Insights into the regulatory aspects of cybersecurity
• 00:26:59 - Wrapping Up: Conclusion of the conversation with Mick Coady and closing remarks

Links And Resources:

• Mick Coady on LinkedIn
• Armis
• Mick Coady on Twitter
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this rewind episode, we explore the critical role CISOs play in bridging the gap between operational technology (OT) and enterprise cybersecurity.

With manufacturing and critical infrastructure facing increasing cyber threats, CISOs must navigate both the boardroom and the plant floor to secure complex environments without disrupting production.

This discussion focuses on the importance of risk assessment, real-time monitoring, and the adoption of specialized cybersecurity tools.

The episode highlights the need for cross-functional collaboration, leveraging external expertise, and shifting toward proactive, secure-by-design approaches.

It also addresses the vulnerabilities in supply chains, the limitations of relying on cybersecurity insurance, and the necessity of actionable, strategic measures to protect industrial environments.

Chapters:

• 00:00:00 - Kicking Off: How CISOs Are Redefining Industrial Cybersecurity from the Ground Up
• 00:00:54 - Cybersecurity Missteps Putting the C-Suite at Risk
• 00:12:31 - CISO Resignations: Is the Industrial Sector Prepared for the Fallout?
• 00:23:43 - Securing Critical Assets: What Every CISO Should Know

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

We sit down with Debbie Gordon, the CEO of Cloud Range Cyber, to explore the groundbreaking world of cybersecurity training for ICS and the Operational Technology frontlines. Debbie shares her expertise on how virtualized training environments are transforming the way cybersecurity teams prepare for and respond to cyber attacks. We get into the significance of experiential learning in cybersecurity, discuss the challenges of talent shortages and the necessity for continuous, hands-on training. Listeners will gain a comprehensive understanding of how Cloud Range’s innovative approach is equipping cyber defense teams to face the ever-evolving landscape of cyber threats.

Chapters:

• 00:00:00 - Introducing Debbie Gordon: CEO of Cloud Range Cyber
• 00:00:59 - Exploring Cloud Range: A Revolutionary Virtual Cyber Range Platform
• 00:02:11 - The Critical Role of Simulated Cybersecurity Exercises
• 00:03:27 - Adapting to the Evolving Cybersecurity Threat Landscape
• 00:05:48 - The Genesis of Cloud Range: Innovating Cyber Training
• 00:08:11 - Addressing the Cybersecurity Skills Gap: Challenges and Solutions
• 00:11:23 - Customizing Training with Cloud Range for Effective Talent Development
• 00:16:02 - Harnessing Creativity and Analytical Skills in Cyber Defense
• 00:21:06 - Cybersecurity in the Post-COVID Era: New Challenges and Approaches
• 00:27:28 - Key Strategies for Organizations Embarking on Cybersecurity

Links And Resources:

• Debbie Gordon on LinkedIn
• Cloud Range Cyber
• Debbie Gordon on Twitter
• Cloud Range Cyber on Facebook
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Join us for an insightful conversation with Dino Busalachi, CTO; and Craig Duckworth, President and CEO, of Velta Technology. They also share their perspectives on some of the recent cyber attacks that have shaken the OT space, such as the Oldsmar water plant, the Colonial Pipeline, and the MGM casino. Dino and Craig reveal how they help various industrial sectors, from manufacturing to gaming, protect their operational technology systems from cyber threats.

They explain how IT and OT cybersecurity differ and overlap, and how to foster a collaborative and effective approach. They also highlight the key elements of a robust OT cybersecurity strategy, such as a defensible architecture, a continuous monitoring system, a vulnerability management program, a secure remote access tool, and an incident response plan. They also share some of the best practices, common pitfalls, and future trends in the OT cybersecurity field.

Chapters:

• 00:00:00 - Welcome to the Industrial Cybersecurity Insider Podcast
• 00:01:11 - How Hackers Tried to Poison a Florida City’s Water Supply
• 00:02:57 - The Unique Challenges and Opportunities of OT Cybersecurity in Manufacturing
• 00:04:15 - How to Secure Remote Access to Your Industrial Systems
• 00:06:37 - How a Ransomware Attack Shut Down a Major US Pipeline
• 00:07:20 - Why You Need to Monitor Your OT Network and Assets
• 00:09:49 - How to Bridge the Gap Between IT and OT Teams
• 00:20:12 - How Cyber Attacks Can Affect the Casino Business and Customers
• 00:23:12 - How Cybersecurity Insurance and Legal Issues Can Impact Your OT Strategy
• 00:26:35 - Key Takeaways and Tips from VELTA Technology Experts

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this week's episode, Danielle Jablanski, an OT cybersecurity strategist at Nozomi Networks, discusses the current and future landscape of OT cybersecurity with Velta Technology's CTO, Dino Busalachi. Danielle shares her unique perspective as a former market analyst, a current educator, and a passionate advocate for OT security. She discusses the cultural and technical challenges of bridging the IT/OT divide, the impact of regulation and liability on OT security, the importance of building strong foundations and defensible architectures, and the need for workforce enablement and development. She also gives us some practical tips and resources on how to learn more about OT cybersecurity and how to apply it in different contexts and scenarios.

Chapters:

• 00:00:00 - Introduction and Overview with Danielle Jablanski
• 00:00:56 - Defining the Role of an OT Cybersecurity Strategist
• 00:01:54 - IT and OT: Collaboration and Challenges
• 00:03:28 - Professional Services in IT-OT Integration
• 00:05:37 - Contextualizing Security in the OT Environment
• 00:08:08 - Executive Leadership in OT Security Implementation
• 00:13:01 - Enhancing OT Security Through Workforce Development
• 00:17:21 - Future Outlook on OT Cybersecurity Trends
• 00:21:07 - Educational Resources for Advancing in OT Security
• 00:24:03 - Key Takeaways and Practical Tips in OT Security

Links And Resources:

• Danielle Jablanski(DJ) on LinkedIn
• Nozomi Networks
• Atlantic Council
• Industrial Cyber
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

Craig Duckworth is joined by Dale Peterson, an esteemed figure in Industrial Control System (ICS) security. They explore the intricate interplay between Information Technology and Operational Technology, shedding light on the evolving challenges in cybersecurity for industrial sectors. Dale, with his rich background from founding the S4 conference to pioneering cybersecurity innovations, imparts invaluable insights for those navigating the complex landscape of industrial digital security, making this episode a must-listen for anyone invested in the future of industrial cybersecurity.

Chapters:

• 00:00:00 - Introduction: Craig Duckworth Welcomes Dale Peterson, ICS Security Expert
• 00:01:09 - Dale's Entry into Industrial Cybersecurity: Beginnings and Motivations
• 00:02:49 - Tracing the Transformation of Industrial Cybersecurity Over Time
• 00:03:53 - Addressing the Skills Gap in Industrial Cybersecurity
• 00:04:53 - Communicating Effectively in the World of Cybersecurity
• 00:06:10 - Delving Deeper into the Evolution of Industrial Cybersecurity
• 00:10:57 - The Critical Role of Metrics in Enhancing Cybersecurity
• 00:12:37 - Navigating Cybersecurity Regulations in Industrial Sectors
• 00:19:27 - The Genesis and Goals of the S4 Conference
• 00:25:25 - Expert Guidance for Thriving in Industrial Cybersecurity
• 00:28:58 - Wrapping Up: Key Takeaways and Conclusion

Links And Resources:

• Website
• Twitter/X
• LinkedIn
• Unsolicited Response Podcast
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

We delve into the intricate world of operational technology (OT) cybersecurity with industry expert Dave Purdy. With his extensive experience transitioning from IT to OT, Dave discusses the unique challenges and vulnerabilities in protecting critical infrastructure and industrial networks. He shares his insights on safeguarding legacy systems, the importance of specialized skill sets in OT cybersecurity, and the evolving threats in this space. This conversation provides a comprehensive look at the current state and future direction of cybersecurity in operational technology, offering valuable takeaways for professionals in this field.

Chapters:

• 00:00:00 - Introduction to the World of OT Cybersecurity with Expert Dave Purdy
• 00:01:19 - Dave's Journey: Shifting Focus from IT to OT
• 00:02:54 - Exploring Unique Market Challenges in OT Cybersecurity
• 00:03:44 - Tackling the Complexities of Legacy Systems in Industrial Networks
• 00:05:04 - Cybersecurity: A Key Business Priority in the Digital Age
• 00:06:38 - The Influence of Cybersecurity on Industrial Insurance Policies
• 00:09:02 - Effective Strategies for Overcoming Cybersecurity Hurdles
• 00:14:33 - Tailoring Cybersecurity Solutions Across Various Industries
• 00:23:17 - Essential Tips for Organizations Embarking on Cybersecurity Initiatives
• 00:25:09 - Wrapping Up: Key Insights and Final Thoughts from Dave Purdy

Links And Resources:

• Dave Purdy on LinkedIn
• TXOne Networks
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

Dino Busalachi, CTO and co-founder, and Jim Cook, COO from Velta Technology, discuss the heightened risks of cybersecurity during the holiday season, especially in industrial environments. They explore how reduced staffing, increased remote access, and operational shutdowns create vulnerabilities in control systems. They dive into the importance of maintaining operational resilience and the necessity of robust cybersecurity measures. Practical advice and experiences are shared, emphasizing the need for preparedness and vigilance in safeguarding against cyber threats during this critical period.

Chapters:

• 00:00:00 - Cybersecurity Challenges During the Holiday season
• 00:00:50 - Examining Cybersecurity Vulnerabilities During the Holiday Season
• 00:01:21 - Strategies for Effective Incident Response in Cybersecurity
• 00:02:19 - Analyzing Holiday Season Vulnerabilities in Control Systems
• 00:02:53 - Effect of Reduced Staffing on Cybersecurity During Holidays
• 00:04:54 - Supply Chain's Role in Ensuring Cybersecurity
• 00:06:39 - Preparing for Cyber Threats: Key Strategies and Tips
• 00:08:57 - Utilizing Advanced Tools and Technologies for Cybersecurity
• 00:11:20 - Identifying and Mitigating Cybersecurity Risks and Threats
• 00:15:01 - Importance of Continuous Monitoring in Cybersecurity
• 00:17:10 - Building Operational Resilience Against Cyber Threats
• 00:21:59 - Addressing Cybersecurity Issues: Admitting and Tackling Problems
• 00:24:40 - Wrapping Up: Key Takeaways and Final Thoughts on Cybersecurity

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

Craig Duckworth engages with Rogan Dwyer, a seasoned expert in the insurance space, to unravel the complexities of cybersecurity insurance. Dwyer, with his extensive background in risk mitigation and insurance, delves into the evolving landscape of cyber threats and the insurance industry's response to these challenges. They discuss the necessity of integrating insurance with broader risk management strategies and the importance of board-level understanding and involvement in cybersecurity.

Chapters:

• 00:00:00 – Diving Into the World of Cybersecurity Insurance
• 00:02:20 – Decoding Client Risks: A Critical Look at Policy Impacts
• 00:04:50 – The Hunt for Premium Clients: A Strategic Approach for Insurers
• 00:07:15 – The Future is Now: Innovations in Underwriting and Risk Mitigation
• 00:09:45 – Claims & Onboarding: Mastering Efficiency in Insurance
• 00:12:20 – Leaders in the Limelight: Executive Roles in Cyber Insurance Decisions
• 00:14:55 – Navigating Financial Hurdles: Large Loss Recovery Tactics
• 00:18:40 – Boardroom Dynamics: Steering the Insurance Decision Course
• 00:22:25 – Risk Management SOS: Where to Turn for Expert Advice
• 00:23:40 – Cyber Risks and Corporate Strategies: An Insurance Perspective
• 00:24:55 – Building Bridges: Collaborative Efforts in Risk and Insurance
• 00:28:40 – Key Takeaways: The Essence of Today's Cyber Insurance Talk

Links And Resources:

• Rogan Dwyer on LinkedIn
• Observatory Strategic Management
• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

We delve into the complex world of cybersecurity in the industrial sector. Our experts, Dino Busalachi and Craig Duckworth, unpack the nuances of IT/OT convergence, the gaping holes in cybersecurity insurance, and the unique challenges faced by manufacturers across a diverse array of plants. They share firsthand experiences of cybersecurity incidents that have led to significant operational disruptions, highlighting the critical need for a robust security framework in the industrial control space. This conversation is a must-listen for anyone invested in the safeguarding of our industrial infrastructure for manufacturing and critical infrastructure organizations.

Chapters:

• 00:00:00 - Exploring Industrial Cybersecurity: Insights into the Industrial Security Landscape
• 00:03:00 - Crisis Averted: Rescuing IP Addresses from a Denial of Service Attack
• 00:04:47 - Concerns Raised: Unauthorized Scanning of Control System Networks
• 00:07:30 - Costly Consequences: Duplicate IP Address Mishap in Automotive Manufacturing
• 00:10:27 - Managing Risks in Diverse Industrial Environments
• 00:12:00 - Cybersecurity Risks in Industrial Control Systems: Default Passwords on Plant Printers
• 00:14:03 - Firewall Limitations in the Realm of Industrial Cybersecurity
• 00:16:36 - Challenges in Handling Equipment and Software in Industrial Environments
• 00:20:22 - Bridging the Gap: Applying IT Practices to Operational Technology
• 00:22:56 - Recruiting Cybersecurity Talent for Industrial Control Systems: Challenges and Solutions
• 00:26:35 - Assigning Roles: The Importance of OT Cybersecurity in Industrial Facilities

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

We delve into the critical intersection of finding talent for operational technology and cybersecurity roles within industrial environments. Dino and Jim engage in a discussion about the urgent need for cyber talent for industrial environments including manufacturing and critical infrastructure environments. They explore the potential for a new breed of cyber ops roles, the current state of industrial cybersecurity educational offerings, and the importance of immersing yourself in industrial environments to truly understand and protect the plant floor. This episode is a must-listen for anyone invested in the future of industrial safety and cybersecurity.

Chapters:

• 00:00:00 - Meet the Leadership Team at Velta Technology
• 00:03:57 - Closing the Gap: Collaborating Between IT and Engineering for Industrial Cybersecurity
• 00:07:32 - Prioritizing Safety and Work Environment in Industrial Operations
• 00:11:28 - Cybersecurity's Vital Role and the Demand for Technical Expertise
• 00:13:05 - Dispelling Myths and Confronting Challenges in Industrial Cybersecurity
• 00:16:16 - The Imperative for Cybersecurity Training and Education
• 00:20:42 - Enhancing Cybersecurity Measures and Data Management in Modern Machine Centers

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

Jim and Dino dive deep into the intricate world of IT and OT convergence, exploring the unseen challenges and silent variables that permeate the manufacturing floor. From the metaphorical porcupines of IT issues to the invisible activities within plant walls, the discussion unveils the criticality of aligning IT and OT for robust industrial control system security. They also navigate through the complexities of managing varied technologies across different plants, especially in the context of mergers and acquisitions, offering listeners a rare glimpse into the delicate balancing act of thinking globally while acting locally in manufacturing cybersecurity.

Chapters:

• 00:00:00 Exploring IT and OT Convergence in Industrial Cybersecurity
• 00:04:37 Navigating Equipment Lifecycles: The IT and OT Dilemma
• 00:10:22 Behind Plant Walls: Understanding Network Connections in Manufacturing
• 00:12:45 Securing Industrial Controls: The Value of Dedicated OT Firewalls
• 00:16:32 Importance of focusing on all layers of the OSI Model
• 00:20:54 Decoding the Tech Enigma: Cybersecurity Governance and the C-Suite
• 00:21:44 The CFO Discovering Hidden Industrial Plant Floor Assets Story
• 00:23:25 The Cornerstone of Cybersecurity: Maintaining Accurate IT Inventory in Manufacturing

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts and Google Podcasts, and leave us a review!

In this reflective episode, we revisit the real-world challenges of securing industrial environments, where the intersection of IT and OT often creates unforeseen cybersecurity vulnerabilities.

From mismanaged remote access to the critical need for continuous asset monitoring, our experts dive deep into the lessons learned from boots on the ground work in the field.

They share insights on managing OT cybersecurity risks while maintaining production uptime and operational integrity.

This episode provides invaluable takeaways for those navigating the complexities of protecting industrial networks, offering practical solutions for balancing security with operational demands.

Chapters:

• 00:00:00 - A rewind to the biggest OT cybersecurity lessons and surprising moments!
• 00:01:05 - Missteps and Common Blunders with Manufacturing, ICS and Cybersecurity
• 00:10:26 - Industrial Cybersecurity Lessons From the Field
• 00:20:19 - The State of OT Cybersecurity From the Field

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube Podcasts to leave us a review!

Created by Velta Technology, 'Industrial Cybersecurity Insider' offers a thorough look into the field of industrial cybersecurity for manufacturing and critical infrastructure. The podcast delves into key topics, including industry trends, policy changes, and groundbreaking innovations. Each episode will feature insights from key influencers, policy makers, and industry leaders. Subscribe and tune in weekly to stay in the know on everything important in the industrial cybersecurity world!

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Apple Podcasts and leave us a review!

In this episode, Craig and Dino explore the evolving responsibilities of the CISO in managing cybersecurity within operational technology (OT) environments.

They address the persistent disconnect between IT and OT teams and the unique challenges CISOs face in bridging this gap.

With a focus on collaboration, they discuss the critical role of external partnerships and the importance of understanding the industrial landscape to implement effective security measures.

The conversation highlights how CISOs can balance rigorous cybersecurity protocols with operational demands, ensuring both safety and continuous uptime in complex industrial systems.

Chapters:

• 00:00:00 - Prioritizing Safety and Minimizing Downtime
• 00:00:48 - The Evolving Role of CISOs in Operational Technology (OT)
• 00:02:11 - Overcoming IT and OT Collaboration Challenges
• 00:03:09 - The Persistent Disconnect Between IT and OT
• 00:04:06 - CISOs' Responsibility for OT Security
• 00:05:08 - Balancing Security and Operational Uptime
• 00:06:57 - The Role of External Resources in Cybersecurity
• 00:11:38 - Limited CISO Interaction with the Board
• 00:20:38 - The Realities of Relying on Cybersecurity Insurance
• 00:24:18 - Conclusion: Moving Forward with IT-OT Collaboration

Links And Resources:

• Velta Technology
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube, to leave us a review!

We revisit key insights from past conversations with Dave Purdy and Debbie Lay of TXOne Networks, who shared their expertise on the critical cybersecurity challenges facing industrial environments.

The episode delves into innovative solutions such as virtual patching and deep packet inspection, which are vital for securing legacy systems without causing operational disruption.

With a focus on mitigating zero-day vulnerabilities and ransomware threats, the discussions also emphasize the importance of bridging the IT/OT divide to create cohesive, secure environments.

This episode provides actionable strategies for professionals responsible for managing the cybersecurity of critical infrastructure in sectors like energy, manufacturing, and utilities.

Chapters

• 00:00:00 – Introduction to Key Cybersecurity Challenges in Industrial Environments
• 00:01:19 – Why Visibility is Critical for Securing Industrial Operations
• 00:01:36 – TXOne Networks' Native Protocols and the Power of Deep Packet Inspection
• 00:02:53 – Addressing Zero-Day Vulnerabilities through the Zero Day Initiative
• 00:04:26 – Personal Insights and Fun Facts from Industry Experts
• 00:05:23 – Overcoming Barriers to Industrial Cybersecurity Adoption
• 00:06:35 – IT-OT Collaboration: A Must for Comprehensive Cybersecurity
• 00:09:22 – Global Cybersecurity Trends and Adoption in Industrial Sectors
• 00:10:54 – Virtual Patching: A Game-Changer for Securing OT Systems
• 00:13:50 – Navigating IT-OT Convergence for Improved Security Outcomes
• 00:19:30 – TXOne's Innovative Security Solutions for Industrial Environments

Links And Resources:

• Crowdstrike, Virtual Patching, and Industrial OT Environments with Debbie Lay
• Unmasking Industrial Cybersecurity Threats and Solutions with Dave Purdy
• Velta Technology
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and Google Podcasts to leave us a review!

In this week's episode, Craig Duckworth and LuRae Lumpkin dive into the critical need for translating high-level cybersecurity solutions and priorities into clear, succinct communication across the industrial cybersecurity industry.

They focus on bridging the communication gap between IT and OT teams, discussing how a unified approach from both leadership and operations can strengthen security efforts.

The episode highlights evolving strategies for addressing breaches, improving risk management, and safeguarding critical infrastructure.

Key takeaways include the importance of tailoring cybersecurity communication to different audiences, implementing proactive measures, and fostering a consistent, organization-wide message that integrates cybersecurity into the core culture regardless of the organization.

Chapters:

• 00:00:00 - Setting the Stage: Why Cybersecurity Communication Matters
• 00:00:54 - LuRae Lumpkin's Proven Expertise in Industrial Cybersecurity
• 00:01:34 - How Cybersecurity Messaging Has Evolved Across IT and OT
• 00:04:49 - Lessons from Major Cyber Breaches: What You Need to Know
• 00:06:47 - Why Being Proactive is Crucial in Cybersecurity Communication
• 00:08:41 - Building a Cybersecurity-Driven Culture from the Top Down
• 00:10:44 - Simplifying Complex Cybersecurity Issues for Maximum Impact
• 00:12:30 - Making Cybersecurity a Company-Wide Priority
• 00:14:15 - Bridging the Communication Gap Between IT and OT
• 00:16:00 - Creating a Unified Language Across Teams
• 00:18:45 - The Role of External Vendors in Cybersecurity Communication
• 00:20:27 - Practical Advice to Strengthen Your Organization's Cybersecurity
• 00:24:39 - Final Insights on Fostering a Cyber-Aware Organization

Links And Resources:

• LuRae Lumpkin on LinkedIn
• Velta Technology
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, YouTube, and leave us a review!