Podcasts about it ot

Podcast: Industrial Cybersecurity InsiderEpisode: Dispelling IT/OT Convergence Challenges and MythsPub date: 2025-10-23Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Craig and Dino tackle IT/OT convergence, operational technology security, and manufacturing cybersecurity challenges head-on. They challenge the notion of OT being a "shadow IT group" and explore the fundamental differences between IT and OT operations in industrial environments. The discussion emphasizes that OT focuses on safety and physical outcomes, while IT prioritizes data security. They stress the importance of collaboration between IT and OT teams, highlighting how system integrators, OEMs, and plant operators must work together to improve cybersecurity posture. The conversation covers practical issues like Overall Equipment Effectiveness (OEE), incident response, and the need for proper funding and governance. Both advocate for CISOs and CIOs to actively engage with OT teams and system integrators, visit manufacturing facilities, and understand the unique challenges of industrial control systems to achieve true convergence and protect manufacturing plants and critical infrastructure.Chapters:00:00:00 - Opening Shot: Who's Really in Charge—CIOs or the Plant Floor?00:00:57 - Collision Course: IT and OT Can't Keep Dodging Each Other00:01:52 - Two Worlds, One Mission: Why OT Isn't Just “IT in a Hard Hat”00:04:07 - When Convergence Fails: What's Missing in the Middle00:05:54 - Breaking Silos: Why Cybersecurity Demands True Collaboration00:08:22 - Real Talk: What Cyber Protection Looks Like on the Plant Floor00:10:46 - OT's Tipping Point: Will the Next Move Come from IT, or the Shop Floor?00:17:32 - Your Move: What Leaders Must Do Next (Before It's Too Late)Links And Resources:Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

At Automate 2025, Vlad and Dave take Manufacturing Hub inside the Siemens booth to explore how one of the world's largest industrial technology companies is shaping the future of manufacturing. From the latest S7-1200 G2 PLC to industrial copilots powered by AI, digital twins that simulate entire factories, and virtual PLCs redefining automation, this episode is packed with insights from Siemens leaders and engineers.In this conversation series, we uncover the evolution of hardware, software, and data-driven manufacturing with experts including Chris Stevens and Anna-Marie Breu on customer experience and digital twins, Bernd Raithel on software-defined automation and IT/OT convergence, Louis Narvaez on the next-generation S7-1200 G2 PLC, Kristen Sanderson on Industrial Copilot and AI agents, Sarah McGee on Sematic AX and modern PLC programming, Kevin Wu on Pick AI Pro, Ivan Hernandez on the G220 drives, and cybersecurity specialists Tilo and Gaurav on securing industrial networks.Throughout the episode, Vlad and Dave discuss how Siemens is transforming plant operations through tools that connect the physical and digital worlds. Topics include co-pilots for engineering and operations, lifecycle management, virtual commissioning, edge computing, harmonics and clean power, and the convergence of IT and OT teams.This conversation is a must-watch for engineers, integrators, plant managers, and decision-makers looking to understand how software-defined automation, AI, and digital twin technologies are merging to create resilient, data-driven factories.Timestamps:00:00 Siemens at Automate 2025 introduction02:45 Defining manufacturing resilience and digital twins09:32 Virtual commissioning and collaborative engineering environments15:10 Adoption of digital twins in small and medium manufacturers22:35 Co-pilots and natural language interaction in industrial systems30:28 Automation lifecycle management and version control for PLCs36:55 Virtual PLCs, software-defined automation, and IT/OT collaboration46:40 The new Siemens S7-1200 G2 PLC and migration from G157:20 AI copilots, agents, and secure Siemens cloud infrastructure1:08:05 Somatic AX and modern PLC programming for new engineers1:17:25 Pick AI Pro and real-world robotic vision applications1:29:10 G220 drives and clean power innovations1:35:45 Industrial cybersecurity and vulnerability management1:43:00 Cinemeric Run My Robot and CNC-robot collaboration1:50:20 Final reflections on Siemens innovation and future trendsReferences Mentioned:Siemens Digital IndustriesSiemens Industrial Edge Developer KitS7-1200 G2 InformationSematic AXIndustrial CopilotCinematic Run My RobotPick AI ProSiemens G220 DrivesCybersecurity SolutionsManufacturing HubModern Plant Network Requirements: Building Reliable and Connected OT Systems for ManufacturingAbout the Hosts:Vlad Romanov is an electrical engineer and manufacturing systems consultant with over a decade of experience modernizing plants and integrating SCADA, MES, and automation systems. He is the founder of Joltek and co-founder of SolisPLC, creating content that educates professionals in industrial automation.Dave Griffith is a manufacturing consultant and co-host of the Manufacturing Hub podcast, helping manufacturers navigate digital transformation, technology adoption, and operational excellence.

Podcast: PrOTect It All (LS 26 · TOP 10% what is this?)Episode: OT Cybersecurity Wake-Up Call: How Airports and Power Grids Expose the Gaps We Can't IgnorePub date: 2025-10-20Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this solo episode of Protect It All, host Aaron Crow delivers a straight-talk reality check on the widening IT–OT cybersecurity gap and what it really takes to protect the systems that keep the world running. With decades of experience defending critical infrastructure, Aaron exposes why many OT environments are still years behind in resilience and visibility - and how we can finally fix that. You'll learn: The real incidents prove why OT cybersecurity can't afford to lag. Why visibility and segmentation are non-negotiable for industrial systems. How to build an incident-response plan that works when the stakes are highest. Practical steps to strengthen resilience and recovery across critical operations. This episode isn't about fear - it's about preparation. If your work touches energy, transportation, manufacturing, or utilities, this one's your wake-up call to act before disaster hits. Listen now and learn how to protect what truly keeps our world moving - only on Protect It All. Key Moments: 05:06 "Real Risks of Critical Disruptions" 06:16 Redefining OT System Boundaries 11:42 Troubleshooting Unknown System Issues 14:09 "Secure Remote Access Best Practices" 18:28 "Planning for Worst-Case Scenarios" 19:36 Critical Infrastructure Under Cyber Threat   Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4  The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 187 is a conversation with James Dice and Rosy Khalife from Nexus Labs, as well as April Yi from CBRE. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 187 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

You don't need to be rich or a finance expert to start investing — you just need a clear, step-by-step path. In this episode, I'll walk you through exactly how to open a Webull account, choose your first ETF (VOO, SPY, SCHB, ITOT), and make your first investment — even if you're starting from scratch.You'll learn: ✅ How ETFs work (and why they're the simplest way to own hundreds of companies) ✅ The exact buttons to press inside Webull to fund and buy your first investment ✅ How to build a habit that grows wealth automatically over timeNo jargon. No over-hype. Just real-world steps anyone can follow.Start your investing journey today — use my Webull affiliate link below to get the best deal and kick-start your portfolio:

Podcast: Industrial Cybersecurity InsiderEpisode: Hidden Cybersecurity Vulnerabilities in Today's Data CentersPub date: 2025-10-06Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Scott Cargill, Partner of BW Design Group, joins Craig and Dino. Together they dissect the critical vulnerability gap in data center operational technology infrastructure. While most data centers implement robust IT security protocols, their building management systems controlling cooling, power distribution, and environmental controls remain significantly under-protected. Cargill provides technical analysis of how the rapid expansion of data center capacity for AI workloads has outpaced OT security implementation, creating exploitable attack vectors where minutes of system compromise could cascade into millions in equipment damage and service disruption. Through evidence-based examination and industry insights, this episode offers CISOs and OT security professionals a practical framework for addressing the IT-OT security convergence challenge in mission-critical facilities.They offer actionable strategies for vulnerability assessment, segmentation, and defense-in-depth implementation.Chapters:- 00:00:00 - Meet Scott Cargill of BW Design Group- 00:02:30 - Data centers expanding for AI- 00:04:40 - Critical BMS vulnerabilities being ignored- 00:07:40 - Alarming OT security reality- 00:09:40 - Why OT security remains deprioritized- 00:12:10 - IT-OT security convergence challenges persist- 00:16:35 - Manufacturing parallels to data centers- 00:20:10 - Security solutions evolution underway- 00:21:45 - Managed services necessity for OT- 00:24:42 - Thought leadership driving industry standardsLinks and Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityScott Cargill on LinkedInDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It All (LS 26 · TOP 10% what is this?)Episode: Why “One Size Fits All” Fails in OT Cybersecurity: Real-World Fixes for IT–OT GapsPub date: 2025-10-06Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationOT cybersecurity isn't about installing more firewalls - it's about adapting your entire mindset. In this episode of Protect It All, host Aaron Crow breaks down why IT security tools often fall short in industrial environments and what it really takes to protect operational systems. Drawing from 25+ years of hands-on experience, Aaron explores the differences between IT and OT priorities, why “silver bullet” solutions don't exist, and how to build defense-in-depth strategies that actually work on the plant floor. You'll discover: Why IT tools struggle in OT environments - and where they can help. How to balance availability, safety, and security in critical systems. Practical ways to manage legacy hardware, vendor dependencies, and remote access. The key to uniting IT and OT teams for stronger resilience. If you're navigating the evolving world of industrial cybersecurity, this episode will change how you think about tools, processes, and protection. Tune in to learn how to bridge the IT–OT divide and build a smarter, safer security culture. Key Moments: 03:31 "Adapting IT Products for OT Use" 08:53 IT and OT Crossover Tools 11:05 Balancing OT Risk in Cybersecurity 13:37 Cybersecurity and Remote Secure Access 18:25 Designing Resilient, Independent Systems 21:40 Unified Cybersecurity Through Training & Collaboration 24:24 "IT and OT Integration Challenges" Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Get a firsthand look into the heart of Australian manufacturing as hosts Phil Seboa and Ed Fuentes sit down with Shane Williams and Paul Mason, two prominent voices from the Manufacturing Tech Australia Podcast. This episode examines the practical sides of digital transformation—beyond the buzzwords—to the real drivers, pain points, and breakthrough strategies shaping factories across the country.Listen in as the group compares IT and OT perspectives, highlights the evolving role of data, addresses challenges with legacy systems, and discusses how Australian businesses are tackling integration, culture, and rapid technological change. Candid stories from the plant floor meet sharp industry analysis, making this an essential listen for anyone invested in the future of manufacturing, automation, and technology adoption in Australia.Topics include:Continuous improvement vs. digital transformationThe value of real-time data and integration of old and new techBreaking down IT/OT silos through collaborationThe impact of AI and machine learning on manufacturing processesShifting business models—from selling products to selling servicesTips for setting a strong strategy and finding quick winsListen to the Manufacturing Tech Australia Podcast:https://open.spotify.com/show/6Gzc6XBnjTP0WRw9g891IPConnect with Shane on LinkedIn:https://www.linkedin.com/in/shanewilliamsau/Connect with Paul on LinkedIn:https://www.linkedin.com/in/pdmason/Connect with Phil on LinkedIn:https://www.linkedin.com/in/phil-seboa/Connect with Ed on LinkedIn: https://www.linkedin.com/in/ed-fuentes-2046121a/----------------About Industry Sage Media:Industry Sage Media is your backstage pass to industry experts and the conversations that are shaping the future of the manufacturing industry.Learn more at: http://www.industrysagemedia.com

Send us a textWhen talking to the experts and leading authorities that have participated in the 140+ episodes of Security Breach, there's always a slight pause when directing their attention specifically to the industrial sector. That's because, well, we're special. There's the unique juxtaposition of old and bleeding edge technology. There's the influx of greater connectivity combatting the struggles to identify and secure the growing number of endpoints. And there are the ongoing battles related to secure-by-design responsibilities, cloud networks and the ever popular building and breaking down of IT/OT silos. The good news is that we're getting better. Better at identifying the problems and better at elevating solutions from some of the sharpest minds in the sector. And we're fortunate to be able share these insights from an incredible collective on today's episode.Watch/listen as Max Clausen, senior VP of Network Connectivity at Zayo, John Carse, Field CISO at SquareX, Sophos' Chester Wisniewski and ExtraHop's Chad Lemaire tackle topics that include:VisibilitySecure-by-DesignArtificial IntelligenceIT/OT SilosPatchingLOTL and Phishing AttacksNon-standard OT ArchitectureAs a go-to podcast for our listeners, we want to help you align your brand with our expertise. By sponsoring our podcast, your brand will build trust, and your message will stand out to an audience searching for tools to assist their cybersecurity efforts. Click Here to Become a Sponsor.Inspiring Tech Leaders - The Technology PodcastInterviews with Tech Leaders and insights on the latest emerging technology trends.Listen on: Apple Podcasts SpotifyTo catch up on past episodes, you can go to Manufacturing.net, IEN.com or MBTmag.com. You can also check Security Breach out wherever you get your podcasts, including Apple, Amazon and Overcast. If you have a cybersecurity story or topic that you'd like to have us explore on Security Breach, you can reach me at jeff@ien.com.

Podcast: Error Code (LS 27 · TOP 10% what is this?)Episode: EP 72: Does a CISSP Certification Make Sense For OT?Pub date: 2025-09-30Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationCertification exams increasingly reflect the IT OT convergence, acknowledging that many protections apply across both domains requiring holistic security approaches rather than siloed solutions. John France, CISO at ISC2, explains that as threats grow more complex, certifications, continuous learning, and diverse skills are essential to building a resilient global workforce.The podcast and artwork embedded on this page are from Robert Vamosi, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Certification exams increasingly reflect the IT OT convergence, acknowledging that many protections apply across both domains requiring holistic security approaches rather than siloed solutions. John France, CISO at ISC2, explains that as threats grow more complex, certifications, continuous learning, and diverse skills are essential to building a resilient global workforce.

Podcast: Industrial Cybersecurity InsiderEpisode: Mitsubishi's Billion-Dollar Bet on OT Cybersecurity with Nozomi AcquisitionPub date: 2025-09-23Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationHosts Craig and Dino discuss Mitsubishi's billion-dollar acquisition of Nozomi Networks and its implications for operational technology cybersecurity. They address how this major deal affects the industrial security market.The conversation covers IT/OT convergence challenges, managed services, vendor partnerships, and AI in cybersecurity decision-making. Craig and Dino share practical insights for security leaders and engineering professionals working in industrial environments.Topics covered: • Why Mitsubishi made this $1B investment • How this affects choosing security vendors • The growing role of managed services in OT security • What organizations should do to prepare for changesFor cybersecurity professionals, industrial engineers, and executives working with operational technology and cyber defense.Chapters:00:00:00 - Welcome to Industrial Cybersecurity Insider Podcast00:01:26 - A Trend of Cybersecurity Platform Acquisitions00:02:03 - The "Cyber-Informed Engineering" Play00:02:52 - Market Impact: Setting a Billion-Dollar Bar for Competitors00:05:06 - A Lack of Expertise and Resources00:05:48 - The Challenge of Building an In-House Team vs. Using Managed Services00:07:40 - Embedding Security Directly into Hardware Controllers00:09:33 - How Competitors Like Rockwell Might React00:10:00 - IPO or Acquisition?00:14:42 - The On-Prem vs. Cloud Debate in Manufacturing Environments00:16:50 - 87% of Organizations Are Lagging in Cybersecurity Maturity00:17:20 - The IT/OT Resource and Knowledge Gap00:18:54 - The Need for CIOs to Partner with OT Systems Integrators00:21:25 - The "OnStar" Model for Industrial Security00:22:15 - The Reality of Vendor Lock-In and Warranty Issues00:24:14 - OT Needs to Own Its Cybersecurity Strategy00:25:12 - The Risk of Underutilized Security ToolsLinks And Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

In this episode we explain how IT/OT convergence, the need for digital thread traceability and agentic AI have extended MES software beyond its production tracking roots and are putting it at the core of industry's digital transformation. Insights from Luigi de Bernardini, CEO of system integrator Autoware, and Francisco Almada Lobo, CEO of Critical Manufacturing, explain why and how this is happening and what manufacturers should be doing in response.

Podcast: Industrial Cybersecurity InsiderEpisode: Responsibility Without Authority: The CISO's Industrial Cybersecurity DilemmaPub date: 2025-09-16Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Craig and Dino address one of the most pressing challenges in industrial cybersecurity: the gap between responsibility and authority for CISOs and their ability to protect manufacturing and critical infrastructure plant floors. While executives are tasked with ensuring resilience and reporting to the board, they often hit resistance at the plant floor where production uptime and safety KPIs take priority. The conversation explores IT/OT convergence, asset visibility blind spots, OEM restrictions, and the risks of relying on remote-only deployments. With insights from decades of hands-on experience in industrial environments, Craig and Dino outline practical steps for building bridges between IT and OT, aligning financial risk with security strategy, and equipping CISOs with the authority they need to succeed.Chapters:00:00:00 - Welcome to the Industrial Cybersecurity Insider Podcast00:01:11 - The CISO's Core Conflict of Responsibility Without Authority00:02:45 - Why Security Efforts Get "Kneecapped at the Front Door"00:04:04 - Understanding the OT Environment and Its Unique Technology00:05:36 - Building Bridges Between IT and OT as the Solution00:07:44 - Overcoming OT's "Skittish" Resistance to IT00:09:43 - The Scaling Problem of Too Few Engineers for Too Many Plants00:10:57 - Why a Remote-First Approach Fails in Manufacturing00:14:44 - The "Epiphany" of Uncovering Operational Benefits for OT Teams00:17:24 - Navigating OEM Warranties and Equipment Restrictions00:19:14 - The "Trust but Verify" Mandate for a CISO00:20:56 - The Danger of Hidden Networks and the "Air Gap" Myth00:23:16 - Speaking the Language of Business in Dollars and Cents00:24:43 - Aligning Security with the Plant's Capital Master Plan00:27:24 - How Company Ownership Affects Security Investment00:28:16 - How to Give the CISO Real AuthorityLinks And Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 186 is a conversation with Brad Bonavida and James Dice from Nexus Labs, as well as Leslie Beu from Clockworks Analytics and Reed Powell from MacDonald-Miller Facility Solutions. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 186 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

In 2025, AI and automation are reshaping Asia's cybersecurity landscape, empowering both defenders and adversaries. CISOs face intelligent, self-evolving threats—from AI-generated deepfakes to autonomous malware—exploiting the region's rapid digitalisation and IT/OT convergence. While AI-driven SOAR and predictive analytics enhance response, over-reliance risks blind spots, especially with regionally biased data. Regulatory shifts in Japan, Singapore, India and beyond demand accountability in AI use, placing CISOs at the nexus of compliance and innovation. The rise of cross-border, AI-powered attacks underscores the need for resilient, adaptive security strategies. CISOs must balance automation with human oversight, secure generative AI platforms, and strengthen supply chain defences. Success hinges on anticipating threats, ensuring ethical AI deployment, and upskilling teams to operate effectively in an era of intelligent cyber conflict. The challenge is not just technical—but strategic, regional, and human.In this PodChats for FutureCISO, Kylie Watson, head of security at DXC Technology, shares her views on AI, automation and the next generation of threats.1.       Our topic is AI, automation and the next generation of threats. Please describe for us the relationship between all three as viewed from the perspective of a security professional.2.       How can CISOs ensure the integrity and security of third-party AI models integrated into their core business systems?3.       In your view, are incident response playbooks used by enterprises in Asia resilient enough to handle AI-powered, self-evolving malware?4.       What safeguards are in place to detect and prevent deepfake-driven social engineering attacks targeting regional executives?5.       How can enterprises maintain compliance with emerging AI governance regulations across multiple Asian jurisdictions?6.       To what extent are organisations auditing training data for bias, leakage, or adversarial manipulation in our automated systems?7.       Can current detection tools distinguish between legitimate automation and malicious AI-driven lateral movement?8.       How are enterprises preparing for supply chain attacks that exploit vulnerabilities in open-source AI frameworks?9.       Are security teams equipped with the skills to monitor, interpret, and challenge AI-driven security decisions?10.   How can enterprises build adaptive, intelligence-led defences that evolve in tandem with next-generation threats? What is the role of the CISO here?11.   Coming into 2026, how should CISOs and the security team prepare for the further deepening of the integration of AI into the organisational workflow?

Salt Typhoon marks China's most ambitious campaign yet. A major Google outage hit Southeastern Europe.  A critical zero-day flaw in FreePBX gets patched. Scattered Lapsus$ Hunters claim the Jaguar Land Rover hack. Researchers uncover a major evolution in the XWorm backdoor campaign. GhostRedirector is a new China-aligned threat actor. CISA adds a pair of TP-Link router flaws to its Known Exploited Vulnerabilities (KEV) catalog. The feds put a $10 million bounty on three Russian FSB officers. Experts warn sweeping cuts to ODNI could cripple U.S. cyber defense. Our guest is Rick Kaun, Global Director of Cybersecurity Services at Rockwell Automation, discussing IT/OT convergence in securing critical water and wastewater systems. Google says rumors of Gmail's breach are greatly exaggerated. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.CyberWire Guest Today our guest is Rick Kaun, Global Director of Cybersecurity Services at Rockwell Automation, who is talking about "IT/OT Convergence for Critical Water & Wastewater Security." Selected Reading ‘Unrestrained' Chinese Cyberattackers May Have Stolen Data From Almost Every American (The New York Times) Google Down in Eastern Europe (UPDATED) (Novinite Sofia News Agency) Sangoma Patches Critical Zero-Day Exploited to Hack FreePBX Servers (SecurityWeek) M&S hackers claim to be behind Jaguar Land Rover cyber attack (BBC) XWorm's Evolving Infection Chain: From Predictable to Deceptive (Trellix) GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes (welivesecurity by ESET) CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited (The Cyber Security News)  US offers $10 million bounty for info on Russian FSB hackers (Bleeping Computer) Cutting Cyber Intelligence Undermines National Security (FDD) No, Google did not warn 2.5 billion Gmail users to reset passwords (Bleeping Computer) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Episode 185 is a conversation with Brad Bonavida, Rosy Khalife, and Ainsley Muller from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 185 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

In this episode of Manufacturing Hub, Vlad and Dave take a deep dive into one of the most critical yet often overlooked aspects of modern manufacturing: network and systems architecture. Too often manufacturers focus on SCADA, MES, and control layers without recognizing that the architecture beneath them is the foundation that determines whether a facility can scale, connect new equipment, and maintain reliability. Architecture touches everything from plant floor PLCs and HMIs to edge devices, managed switches, firewalls, historians, and enterprise-level systems.We begin the conversation by unpacking what “architecture” actually means in manufacturing environments. Is it the hardware, switches, and cables? Is it the way new machines are integrated into existing plants? Or is it the broader strategy of ensuring that data, safety, and scalability are protected? The answer, as both Vlad and Dave explain, is that it is all of these at once.Throughout the discussion, we explore real-world stories where poor architectural decisions led to unplanned downtime, cybersecurity risks, or expensive rework. Vlad shares an example of a palletizer brought online with unmanaged switches and insecure remote access hardware that nearly crippled production until it was properly segmented. Dave recalls his own field experiences, including unusual setups where integrators resorted to improvised remote troubleshooting, highlighting just how creative but fragile some solutions can be.The episode also looks at the evolution of remote access. From the early days of Ewon boxes to modern expectations of secure VPNs, jump boxes, and approved engineering workstations, we discuss what role remote connectivity should play in today's manufacturing environment. While these solutions can reduce travel time and speed up support, they can just as easily introduce vulnerabilities and trust issues if not carefully managed.From there we move into the technical tradeoffs of device level ring versus star topologies. Vlad explains why he often prefers device level ring to save costs and simplify troubleshooting, while Dave weighs in on the importance of pre-molded cables, managed switches, and long-term maintainability. We also analyze example architectures from Rockwell white papers, pointing out where diagrams align with field best practices and where they differ from what engineers often see in real facilities.Finally, we broaden the perspective by comparing greenfield and brownfield deployments. Greenfield projects allow prime contractors and consultants to design standards up front, but most facilities live in brownfield reality where years of technical debt, unmanaged switches, and ad hoc networks make improvements harder. We also touch on how architecture differs by industry, whether in food and beverage, pharmaceuticals, oil and gas, or distributed environments such as trains or pipelines.The conversation closes with predictions, career advice, and resource recommendations. Vlad stresses that CCNA is still one of the best starting points for engineers who want to understand industrial networking fundamentals, and Dave emphasizes the importance of asking the right questions and learning from experienced peers. Both agree that demand for data, combined with the rise of AI, will continue to stress legacy networks until companies recognize the need for robust, standards-driven architectures.If you work in automation, engineering, IT, or plant management, this episode will give you perspective on why network architecture is not just a technical afterthought but a strategic enabler of digital transformation.Timestamps 00:00 Introduction and community updates 02:30 Defining architecture in manufacturing 05:00 Why networks are the backbone of manufacturing systems 08:00 A real-world palletizer story and the risks of unmanaged switches 14:00 The rise and pitfalls of remote access devices 18:30 Field story of unconventional remote troubleshooting setups 23:00 Who is responsible for network design: end users, integrators, or OEMs 28:00 Analyzing Rockwell's reference architecture diagrams 36:00 Device level ring versus star topologies in practice 49:00 Brownfield versus greenfield considerations 56:00 Industry-specific architectures from food and beverage to oil and gas 01:04:00 The role of standards and corporate versus local decision making 01:08:30 Predictions, career advice, and recommended resourcesReferences Mentioned in this Episode Ignition Community Conference: https://icc.inductiveautomation.com/ Siemens SPS Atlanta Event: https://new.siemens.com/us/en/company/fairs-events/sps.html Rockwell Automation Architectures and Design White Papers: https://literature.rockwellautomation.com CISSP Official Study Guide: https://www.isc2.org/Certifications/CISSP Winning by Tim Grover: https://www.amazon.com/Winning-Unforgiving-Race-Greatness/dp/1982168862 Cisco CCNA Certification: https://www.cisco.com/c/en/us/training-events/training-certifications/exams/current-list/ccna.htmlAbout the HostsVlad Romanov is an electrical engineer and consultant with over a decade of experience in manufacturing and industrial automation. His background spans global companies such as Procter & Gamble, Kraft Heinz, and Post Holdings, where he has led modernization projects, SCADA and MES deployments, and digital transformation initiatives. He is the founder of Joltek, a consulting firm helping manufacturers align people, process, and technology to improve operations, and he also leads SolisPLC, an education platform for automation professionals. Connect with Vlad on LinkedIn: https://www.linkedin.com/in/vladromanovDave Griffith is a manufacturing consultant and co-host of Manufacturing Hub. With extensive experience in controls, systems integration, and business development, Dave has helped manufacturers across industries adopt SCADA, MES, and digital transformation solutions. He frequently shares insights on IT-OT convergence, operational strategy, and leadership in the automation space. Connect with Dave on LinkedIn: https://www.linkedin.com/in/davegriffithJoltek is a consulting and integration firm that helps manufacturers modernize with clarity, strategy, and execution. Built on decades of hands-on experience in engineering, automation, and plant leadership, Joltek bridges the gap between technical complexity and business value. The team is known for uncovering hidden risks in outdated systems, designing scalable IT and OT architectures, and guiding digital transformation initiatives that actually deliver measurable results. Whether it is upgrading control systems, deploying SCADA and MES platforms, or advising on strategic investments, Joltek consistently brings deep expertise and practical solutions that make manufacturing operations more resilient, efficient, and future ready.Listen and Subscribe Catch every episode of Manufacturing Hub on YouTube and your favorite podcast platforms. Subscribe to stay up to date with weekly conversations on automation, digital transformation, and the future of manufacturing.

This week on Manufacturing Hub, Vlad Romanov and Dave Griffith are joined by Kevin McClusky, Chief Technology Architect at Inductive Automation. Kevin shares his journey from computer engineering into the world of industrial automation, his early experiences as an HMI developer, and his leadership roles at Inductive Automation that shaped the direction of Ignition software.The conversation takes a deep dive into the newly released Ignition 8.3 beta, exploring the core features that matter most for end users, system integrators, and manufacturers. Kevin discusses the new Siemens driver with symbolic addressing, the internal historian powered by QuestDB, the Kafka and Event Streams module, and the new DevOps capabilities with file system storage, Git integration, and automated deployments. These capabilities are set to change how manufacturers design, deploy, and scale automation systems in real-world production environments.We also preview the Ignition Community Conference (ICC), which is moving to a larger venue this year. Kevin outlines new additions such as the Hub, the CoLab, community design challenges, and the continuation of Prove It sessions. The episode also covers the evolution of the Build-On competition, the growing integrator ecosystem, and Inductive Automation's continued focus on empowering its community through transparency and collaboration.This episode provides both a technical and strategic look at where Ignition is heading and why it matters for the future of industrial automation. If you are working on digital transformation, UNS, DevOps for OT, or enterprise-scale SCADA and MES, you will not want to miss this discussion.Timestamps00:00 Introduction and welcome with Dave, Vlad, and Kevin02:00 Kevin's background and entry into industrial software05:00 Lessons from early HMI and integrator experiences07:30 The importance of integrators in Inductive Automation's go-to-market strategy09:00 Transition into sales leadership and learnings from global customers13:00 Ignition 8.3 beta release process and development challenges18:00 Historian improvements and introduction of QuestDB21:00 The new Siemens driver and why it matters globally27:00 Use cases for multiple historians and large-scale data performance31:00 Kafka integration, Event Streams, and IT-OT convergence35:00 DevOps capabilities in Ignition including Git and deployment modes41:00 Preview of the Ignition Community Conference and new venue44:00 The Hub, CoLab, and community-driven sessions at ICC50:00 Prove It sessions and exhibitor highlights56:00 The Build-On competition and its evolution01:01:00 Predicting the future of ICC and Ignition01:03:00 Kevin's career advice for engineers and integrators01:05:00 How listeners can connect with Inductive AutomationReferences Mentioned in the EpisodeInductive Automation: https://inductiveautomation.com/Ignition 8.3 Beta Release Notes: https://inductiveautomation.com/downloads/release-notesQuestDB: https://questdb.io/Opto 22: https://opto22.com/HiveMQ: https://www.hivemq.com/Flow Software: https://flow-software.com/Sepasoft MES: https://sepasoft.com/Soba.ai: https://soba.ai/About the HostsVlad Romanov is an industrial automation consultant, electrical engineer, and founder of Joltek and SolisPLC. With more than a decade of experience in digital transformation and systems integration, Vlad has worked with Fortune 500 manufacturers including Procter and Gamble, Kraft Heinz, and Post Holdings. He is passionate about bridging the gap between IT and OT while helping manufacturers modernize their facilities.Connect with Vlad: https://www.linkedin.com/in/vladromanov/Dave Griffith is a manufacturing consultant and digital transformation strategist who helps organizations navigate technology adoption in automation, data, and operations. With a background in engineering and leadership across multiple industries, Dave focuses on helping manufacturers align technology initiatives with business outcomes.Connect with Dave: https://www.linkedin.com/in/davegriffith/About the GuestKevin McClusky is the Chief Technology Architect at Inductive Automation, where he has played a key role in shaping the growth of Ignition software over more than a decade. Kevin has led professional services, sales engineering, and product strategy, and now focuses on long-term architecture and technology direction for Inductive Automation. He is a frequent speaker at industry events and is deeply involved in guiding the Ignition community.Connect with Kevin: https://www.linkedin.com/in/kevinmcclusky/Manufacturing Hub is a weekly podcast hosted by Vlad Romanov and Dave Griffith, covering digital transformation, automation, data, robotics, and the future of manufacturing. Subscribe to stay ahead in the industry.

In 2020, editor in chief Mike Bacidore spoke with Mattias Altendorf, then- CEO of Endress+Hauser Group. Much has changed since then. Since January of 2024, Altendorf has moved from the CEO role to become the president of the supervisory board for Endress+Hauser Group. He also founded Bionic Leadership, which applies evolutionary principles to modern management, extending to evolutionary economics and economic bionics. His organization explores the fusion of nature-inspired strategies, technologies and effective leadership in shaping organizational excellence. During this conversation, they discussed sustainability, sensors, cybersecurity, component interoperability and IT/OT convergence, as well as the impact of those topics on machine builders and system integrators. Altendorf's insights still hold true in 2025, and his foresight on many topics was spot on.

Episode 183 is a conversation with James Dice and Brad Bonavida from Nexus Labs, as well as Devan Tracy from Lockheed Martin. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 183 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: Industrial Cybersecurity InsiderEpisode: Plant-Level Cyber Risk: Who's Actually Responsible?Pub date: 2025-07-22Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Dino Busalachi and Craig Duckworth tackle one of the most overlooked threats in cybersecurity: the number of industrial vendors and system integrators in manufacturing environments. The conversation addresses the relationship and communication gap between IT and the teams responsible for designing and supporting industrial control systems. They emphasize the need for improved governance, enhanced vendor accountability, and clear ownership of cyber risk. Whether you're a CISO, CIO, or VP of Engineering, this episode offers actionable insight into bridging the IT/OT divide, securing plant floors, and building a cybersecurity strategy that works at the edge of your business.Chapters:00:00:00 - Kicking Off: Why Transparency in Cyber Matters00:00:43 - Who's Talking? Meet Craig & Dino00:01:05 - The Big Question: What's IT's Role in Industrial Security?00:01:35 - When Too Many Vendors = Chaos00:02:37 - How to Actually Secure OT Environments00:03:46 - Choosing the Right Partners (and Asking the Right Questions)00:12:37 - Why Cyber Teams Need Plant Floor Time00:14:24 - Getting Smarter: Use External Experts & Vendor Summits00:18:22 - IT Meets OT: Closing the Culture Gap00:30:03 - What Now? Practical Next Steps for CISOsLinks And Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

AB sits down with PepsiCo's Rajat Arora, Global Head of Networks and IT/OT Infrastructure, to talk about how Cisco technologies and solutions are driving better business outcomes for PepsiCo across the globe. This is a great conversation that covers a variety of topics, from IT/OT convergence to the integration of Cisco WAN to self-healing networks.

En este videocast exploramos por qué la ciberseguridad OT se ha convertido en un pilar crítico para la continuidad operativa y la seguridad física de las industrias. Revisaremos el modelo Purdue, los marcos IEC 62443 y NIST 800-82, casos reales de implementación en energía e oil & gas, la convergencia IT/OT con IIoT e IoMT, y un plan de “quick wins” para obtener resultados en solo seis semanas. Cerramos con recomendaciones ejecutivas para Heads de Tecnología y Negocio que buscan blindar sus operaciones antes de 2026.

AB sits down with PepsiCo's Rajat Arora, Global Head of Networks and IT/OT Infrastructure, to talk about how Cisco technologies and solutions are driving better business outcomes for PepsiCo across the globe. This is a great conversation that covers a variety of topics, from IT/OT convergence to the integration of Cisco WAN to self-healing networks.

Podcast: Industrial Cybersecurity InsiderEpisode: Breaking Down the IT-OT Wall: Why IT Cybersecurity Tools Fail on the Plant FloorPub date: 2025-07-08Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Dino Busalachi and Craig Duckworth tackle a critical disconnect plaguing industrial organizations: the disconnect in understanding and communication between IT and OT regarding industrial cybersecurity. While some IT departments are investing in OT cybersecurity platforms, 85% of the data these tools collect is designed for OT teams to act upon. Unfortunately, plant floor personnel, system integrators, and OEMs working in these environments rarely get access to dashboards, asset inventories, or vulnerability reports.Organizations must move beyond the "oil and water" mentality between IT and OT. This means involving plant personnel in cybersecurity decisions, sharing data with trusted partners who "build the cars" (not just buy them), and recognizing that effective OT security requires collaboration with the people who live and breathe on the plant floor every day.Bottom Line: If you're not sharing cybersecurity data with your system integrators, OEMs, and plant operations teams, you're not practicing true IT-OT convergence. You're missing critical opportunities to improve your security posture where it matters most.Chapters:00:00:00 - Why Local Collaboration is Critical for Cybersecurity Success00:01:07 - Meet Dino and Craig: Experts in IT/OT Integration00:01:49 - Unpacking the Challenges of IT/OT Convergence00:02:28 - Why IT and OT Teams Often Struggle to Align00:04:48 - Building Collaborative Frameworks for Stronger Cybersecurity00:07:33 - The Role of CIOs and CISOs in Driving Change00:08:44 - Navigating the Complexities of Diverse Plant Environments00:10:23 - Partnering with Vendors to Enhance Security Outcomes00:11:16 - Key Questions to Evaluate System Integrators Effectively00:16:35 - Using Tabletop Exercises to Align IT and OT Teams00:22:20 - Closing Thoughts: Bridging the Divide for Unified CybersecurityLinks And Resources:Want to Sponsor an episode or be a Guest? Reach out here.Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 182 features James Dice, Rosy Khalife and Brad Bonavida from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 182 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: Industrial Cybersecurity InsiderEpisode: Reflections from the Front Lines of Industrial Cyber FailuresPub date: 2025-06-12Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this rewind episode, cybersecurity leaders revisit some of the hardest-hitting truths about protecting critical infrastructure in an increasingly converged IT/OT world. This conversation explores the disconnect between IT theory and OT reality, from the real-world fallout of the CrowdStrike disruption to the challenges of virtual patching, insider threats, and the cloud's role on the plant floor. The discussion exposes how legacy systems, poor collaboration, alert fatigue, and vendor dependency continue to sabotage industrial cybersecurity. They discuss tactical strategies for improving, from asset inventory and patching hygiene to choosing the right partners and walking the plant floor.Chapters:00:00:00 - Cyber threats are moving faster than your patch cycle00:00:47 - Crowdstrike, Virtual Patching and Industrial OT Environments with Debbie Lay, TXOne Networks00:07:48 - The #1 Myth Putting Your Industrial OT Assets at Risk00:15:01 - Patch Management and Software Updates: IT versus OTLinks And Resources:Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: KBKAST (LS 31 · TOP 5% what is this?)Episode: Episode 314 Deep Dive: Imran Husain | Cybersecurity Threats in the Manufacturing WorldPub date: 2025-06-11Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, we sit down with Imran Husain, Chief Information Security Officer at MillerKnoll, as he discusses the evolving landscape of cybersecurity threats in the manufacturing sector. Imran explores the challenges that arise as manufacturing increasingly integrates with online technologies and IoT, highlighting the unique vulnerabilities posed by legacy systems and operational technology (OT). He shares insights on high-profile incidents like the Norsk Hydro ransomware attack, emphasizing the importance of cyber resilience, data backup, and incident recovery. Imran also offers a candid look at why critical tasks like backing up data are often neglected, the complexities of securing aging infrastructure, and the need for creative solutions such as network segmentation and IT/OT convergence. A dedicated and trusted senior Cyber security professional, Imran Husain has over 22 years of Fortune 1000 experience that covers a broad array of domains which includes risk management, cloud security, SecDevOps, AI Security and OT Cyber practices. A critical, action-oriented leader Imran brings strategic and technical expertise with a proven ability to build cyber program to be proactive in their threat detection, identifying and engaging in critical areas to the business while upholding their security posture. He specializes in Manufacturing and Supply Chain Distribution focusing on how to best use security controls and processes to maximize coverage and reduce risk in a complex multi-faceted environment. A skilled communicator and change agent with bias to action who cultivates an environment of learning and creative thinking, Imran champions open communication and collaboration to empower and inspire teams to exceed in their respective cyber commitments. He is currently the Global Chief Information Security Officer (CISO) at MillerKnoll, a publicly traded American company that produces office furniture, equipment, and home furnishings.The podcast and artwork embedded on this page are from KBI.Media, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 181 features James Dice, Rosy and Brad Bonavida from Nexus Labs, as well as Nicholas Dumoulin from Dream Real Estate. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 181 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: Industrial Cybersecurity InsiderEpisode: What Every CISO Gets Wrong About OT SecurityPub date: 2025-06-05Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, Dino and Craig tackle one of the most misunderstood topics in industrial cybersecurity: IT/OT convergence. But is it truly convergence or more of a collision? Drawing from real-world experiences, they challenge the idea that OT is a “shadow IT group” and argue that operational technology deserves distinct governance, funding, and strategic influence. From secure-by-design to system integrators' evolving role, this conversation is a call to action for CISOs, CIOs, and engineering leaders to rethink how they build cybersecurity partnerships across the plant floor.Chapters:00:00:00 - Opening Shot: Who's Really in Charge—CIOs or the Plant Floor?00:00:57 - Collision Course: IT and OT Can't Keep Dodging Each Other00:01:52 - Two Worlds, One Mission: Why OT Isn't Just “IT in a Hard Hat”00:04:07 - When Convergence Fails: What's Missing in the Middle00:05:54 - Breaking Silos: Why Cybersecurity Demands True Collaboration00:08:22 - Real Talk: What Cyber Protection Looks Like on the Plant Floor00:10:46 - OT's Tipping Point: Will the Next Move Come from IT, or the Shop Floor?00:17:32 - Your Move: What Leaders Must Do Next (Before It's Too Late)Links And Resources:Industrial Cybersecurity Insider on LinkedInCybersecurity & Digital Safety on LinkedInBW Design Group CybersecurityDino Busalachi on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you'd like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It All (LS 25 · TOP 10% what is this?)Episode: From Plant Operator to OT Security: Stories of Failures and BreakthroughsPub date: 2025-05-26Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, host Aaron Crow dives deep into the intersection of IT and OT cybersecurity with special guest Gavin Dilworth—a plant operator turned automation engineer and cybersecurity expert. Listen in as Gavin shares his candid and often humorous journey from factory floors to global consulting, including how a workplace near-miss sparked his “lightbulb moment” about the similarities between health and safety and cybersecurity. Aaron and Gavin discuss everything from operators' creative workarounds on the plant floor, to the importance of trust and rapport between IT and OT teams, and why having hands-on experience is key to building effective cybersecurity programs in critical infrastructure environments.  You'll also hear real-world stories of technology mishaps, the critical role of plant culture, and the practical challenges organizations face in securing legacy systems while keeping operations running. If you want honest, relatable insights and actionable advice on bridging the IT-OT divide—and a few laughs along the way—this episode is for you. Key Moments:  10:12 Operator Rounds and RFID Challenges 12:56 Operators' Ingenuity and Knowledge 21:29 IT vs. OT: Firmware Update Challenges 26:49 Understanding and Accepting Risk 28:12 Standards, Frameworks, and Continuity 33:08 High Voltage Safety Precautions 40:41 Bridging OT and IT Skills 43:46 Cybersecurity Cross-Training Surge 52:38 CISO Knowledge Gap in OT Security 54:32 "Experience: Essential for Understanding" 01:03:34 DCS System Configuration Challenges 01:06:52 Neglecting Redundancy Risks Operations 01:11:00 Optimizing Underutilized IT Resources 01:20:04 "Understanding Systems Before Advice" 01:22:06 Old Cables Remain Untouched About the guest :  Gavin Dilworth's career took an unconventional path. As a plant operator, he was tasked with keeping production running smoothly and monitoring sensor readings, both on the computer and around the factory. However, Gavin was never quite the model operator—rather than dutifully making rounds and comparing readings, he often found himself absorbed in books, dreaming of a future in IT. Though he laughs about being a “pretty terrible operator,” Gavin's story reflects his early drive to pursue his true interests in technology, even when duty called elsewhere. How to connect Gavin :  Linkedin : https://www.linkedin.com/in/gavin-dilworth/ Website: https://assessmentplus.co.nz/ Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 180 features James Dice, Rosy and Brad Bonavida from Nexus Labs, as well as Chris Tjiattas from Walmart. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 180 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: Cyber Focus (LS 24 · TOP 10% what is this?)Episode: The One-Way Street of Digital Transformation: OT Cybersecurity with Nozomi's Edgard CapdeviellePub date: 2025-05-13Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this special RSA Conference edition of Cyber Focus, host Frank Cilluffo sits down with Edgard Capdevielle, President and CEO of Nozomi Networks, to unpack the evolving landscape of operational technology (OT) cybersecurity. Together, they explore how digital transformation and the convergence of IT and OT are reshaping the threat environment for critical infrastructure. Capdevielle outlines the three major phases of the OT security market, reflects on the role of AI and legacy systems, and explains why visibility remains foundational to cybersecurity. The conversation also highlights the growing risk from nation-state actors, the breakdown of air gap assumptions, and the tangible steps owner-operators must take to build resilience. Main Topics Covered: Defining the three phases of OT cybersecurity market maturity The impact of digital transformation and IT/OT convergence Why visibility remains the top concern for infrastructure operators The role of AI in passive detection and firmware profiling Nation-state threats, air gap fallacies, and Volt Typhoon's implications Practical steps for operators to improve risk visibility and resilience Key Quotes: “Digital transformation is a one-way street. We're only going to automate more — automate everything — and IT and OT are only going to converge more.” — Edgard Capdevielle “You cannot protect what you can't see. So having a layer of visibility is number one.” — Edgard Capdevielle “Air gapping has been our number one enemy because it's not real… It's brought a level of comfort that is not good for us.” — Edgard Capdevielle Relevant Links and Resources: Nozomi Networks Guest Bio: Edgard Capdevielle is President and CEO of Nozomi Networks, a global leader in OT and IoT cybersecurity. He has a background in computer science and more than two decades of experience in cybersecurity and enterprise technology. Prior to joining Nozomi in 2016, he held leadership roles at Imperva and EMC (including post-acquisition work with Data Domain) and has served as an investor and advisor to several successful startups in the security space.The podcast and artwork embedded on this page are from McCrary Institute, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 179 features James Dice, Rosy and Brad Bonavida from Nexus Labs, as well as Andrew Rogers from ACE IoT Solutions. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 179 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Can your mind be hacked? In this gripping episode of the Azizi Podcast, Samir Azizi sits down with cybersecurity veteran John Caballero – an expert with over two decades of experience securing IT/OT infrastructures and educating Fortune 500 companies, government agencies, and even the Department of Defense. This conversation goes beyond firewalls and phishing—it dives deep into the human factor and the psychology behind modern cyber threats.

Episode 178 features James Dice, Rosy and Brad Bonavida from Nexus Labs, as well as Keilly Witman from Refrigerant Management Solutions. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 178 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: PrOTect It All (LS 25 · TOP 10% what is this?)Episode: Simplifying OT Cybersecurity: Tools and Strategies for Non-Experts in Critical Infrastructure with Steve KissPub date: 2025-04-21Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode of Protect It All, host Aaron Crow sits down with Steve Kiss, founder and CEO of IPMeter, for an eye-opening discussion on the future of OT (Operational Technology) and IT cybersecurity. With over 25 years of hands-on experience, Steve shares his journey from network engineering to designing practical cybersecurity tools for real-world OT environments. They dive into the unique challenges faced by operators in sectors like wastewater treatment, building management, and power utilities—where frontline professionals often shoulder critical cybersecurity responsibilities without formal training or extensive resources. Steve and Aaron emphasize the urgent need for simple, scalable, and reliable tools that empower these “full stack” operators to secure critical infrastructure effectively. From bridging the IT-OT divide to managing legacy system risks and improving procurement practices, this conversation offers actionable insights for municipalities, utilities, and smaller organizations aiming to take greater ownership of their cyber defenses. Packed with real-world examples, strategic advice, and a touch of industry humor, this episode is essential listening for anyone focused on protecting essential services and strengthening community resilience. Key Moments:  10:40 Understanding Factory Acceptance Test (FAT) 16:41 Transitioning to Local Water Management 19:52 Compliance and Cybersecurity Standards 25:03 "Digital Spins on Security Concepts" 32:30 Standardizing Power Systems Configurations 35:00 Basic Security Steps for Operators 40:28 Balancing IoT Features and Control 45:01 Durability and Setup for Rail Tech 48:58 "Basic Network Foundations Needed" 54:35 Wastewater's Overlooked Importance About the guest:    Steve Kiss is a seasoned cybersecurity leader with over two decades of experience in engineering, infrastructure security, and strategic leadership. As the inventor of IPMeter™ and a contributor to the NIST 800-53 SP2 standards, he has played a pivotal role in advancing vulnerability management practices. Throughout his career, Steve has been deeply involved in the design, construction, and security of critical infrastructure across sectors such as aviation, defense, data centers, and utilities.  His expertise uniquely bridges the worlds of operational technology (OT) and information technology (IT), addressing the evolving challenges of modern network environments. In addition to founding multiple companies focused on infrastructure security, Steve regularly shares his insights at industry events, including the IMRON Security & Safety Summit at SoFi Stadium.  He also publishes a weekly newsletter, HOTw (Hack of the Week), spotlighting trends and incidents in OT cybersecurity. Through his latest venture, IPMeter, Steve continues to drive innovation in cybersecurity testing and resilience.   How to connect Steve :    Website for IPMeter www.ipmeter.net   LinkedIn https://www.linkedin.com/in/stevekiss/   Blog (once to twice a month- includes HOTw (IoT hack of the week) https://www.ipmeter.net/blog   Contact for IPMeter demos sales@ipmeter.net   Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Welcome back to a special Thursday edition of Manufacturing Hub!In this episode, we dive deep into one of the standout presentations from the Prove It conference — featuring Travis Cox from Inductive Automation and Arlen Nipper from Cirrus Link Solutions.

Episode 176 features James Dice, Rosy and Brad Bonavida from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 176 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Podcast: PrOTect It All (LS 25 · TOP 10% what is this?)Episode: A Year in Cyber Podcasting: Building Trust and Community in CybersecurityPub date: 2025-04-07Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, host Aaron Crow celebrates the first anniversary of this insightful podcast. Over the past year, Aaron has delved deep into the world of cybersecurity, bringing listeners compelling stories and expert insights from across the globe, including guests from the United States, Iraq, South Africa, and New Zealand. In this milestone episode, Aaron reflects on the journey so far, recounting pivotal moments and important lessons learned. The podcast has covered a wide range of topics, from AI and cloud technology to IT/OT convergence, always aiming to provide real value and foster a community of learners and protectors. Listeners can expect a continuation of this engaging content, with plans for more panel discussions, live events, and an ongoing focus on building trusted relationships in the cybersecurity field.  As Aaron emphasizes, the podcast isn't just about defending digital assets; it's about empowering individuals, fostering dialogue, and driving innovation in the industry.  Join Aaron in celebrating this landmark and look forward to the exciting path ahead. Key Moments:    06:21 Building Trust in Cybersecurity Careers 08:36 Candid Cybersecurity Conversations 13:16 Unified IT and OT Collaboration 16:03 "Embrace Salesmanship and Global Insights" 19:22 "Podcast Topic Suggestions Welcome" Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Episode 175 features James Dice, Rosy and Brad Bonavida from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 175 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

In this episode recorded live at the ProveIt Conference, we sit down with Mark and Harry from Tatsoft, creators of the industrial IIoT platform Frameworks. We dive deep into how Tatsoft is redefining what a true industrial platform should be — built from the ground up for the factory floor, yet scalable across the enterprise.Mark and Harry walk us through:Their platform's positioning as a SCADA, HMI, MES, and IIoT toolbox — all in oneHow Frameworks handles real-time data, from connectivity (MQTT, OPC UA, SQL) to transformation and dynamic visualizationWhy the “extra I in IIoT” matters when building for industrial environmentsThe challenges of IT/OT integration, people gaps, and legacy systems — and how Tatsoft tackles them head-onA demo of their ProveIt solution, showing off auto-recognition of new assets, dynamic UI, and high-performance visualization across devicesWhether you're an end user, system integrator, or OEM, this episode will help you understand how Tatsoft's Frameworks V10 is enabling fast, scalable, and future-proof industrial applications — without compromise.

Episode 174 features James Dice, Rosy and Brad Bonavida from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 174 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

We're coming to you LIVE from the ProveIt Conference in Dallas, TX, where we're witnessing one of the most groundbreaking manufacturing and industrial automation events in history. Hosted by Walker Reynolds and the 4.0 Solutions team, ProveIt brings together 36+ vendors, industry leaders, and a massive community to showcase real-world digital transformation solutions—all connected to a unified namespace (UNS) virtual factory.In this episode, Dave and Vlad from Manufacturing Hub go behind the scenes with Walker Reynolds, discussing:✅ The vision behind ProveIt – What it takes to create a community-driven industry event✅ How vendors were challenged to solve real-world problems using real factory data✅ Key takeaways from top presentations – Tulip, Litmus, Concept Reply/Snowflake, Google Cloud, Dell Native Edge, and more✅ Lessons learned from integrating 36 vendors into a single, fully functional UNS✅ The future of ProveIt – What's coming for 2026 and beyond

Episode 173 features James Dice, Rosy Khalife, and Brad Bonavida from Nexus Labs. In this episode of the Nexus Podcast, the Nexus Labs team breaks down the top stories relevant to energy managers, facility managers, IT/OT managers, and workplace managers.Find full show notes and episode transcript on The Nexus Podcast: Episode 173 webpage.Sign-up (or refer a friend!) to the Nexus Newsletter.Learn more about The Smart Building Strategist Course and the Nexus Courses Platform.Check out the Nexus Labs Marketplace.Learn more about Nexus Partnership Opportunities.

Welcome to Manufacturing Hub, where we dive deep into the world of industrial automation, software, and digital transformation. In this episode, hosts Dave and Vlad are joined by Zach Scriven, an industrial automation expert, digital transformation evangelist, and a key player in the development of Prove It, a groundbreaking industry conference.This conversation explores a range of topics, from Zach's personal journey in industrial automation and SCADA integration to his pioneering work in digital transformation education. We discuss Unified Namespace (UNS)—a powerful framework for structuring and scaling industrial data—and its role in breaking down silos and creating scalable, interoperable architectures.Key Topics Discussed:✅ Zach Scriven's Background: His journey from SCADA integration in the water industry to co-founding 4.0 Solutions and IoT University.✅ Unified Namespace (UNS): What it is, why it matters, and how it enables scalable industrial data architectures.✅ Digital Transformation in Manufacturing: The need for a clear strategy, the challenges of data silos, and the shift toward IT-OT convergence.✅ Edge Computing & Industrial Data Platforms: How Ignition, MQTT, Litmus Edge, HighByte, and HiveMQ are changing the landscape of industrial automation.✅ Challenges in Legacy Industrial Systems: How companies with aging infrastructure can begin their digital transformation journey.✅ The Future of Industrial Conferences – Prove It: Why traditional conferences fail to deliver value and how Prove It is disrupting the model by requiring vendors to "prove" their solutions in a real-world simulated environment.References & Companies Mentioned:

This week's guest is ZJ van de Weg (https://www.linkedin.com/in/zegerjan/), CEO of FlowFuse. ZJ shares his journey from an intern at GitLab to now leading FlowFuse, how open-source technology is transforming industrial operations, and why Node-RED has become the go-to platform for low-code manufacturing connectivity. He also takes a deep dive into the challenges of scaling open source solutions in enterprise environments, the value of an ‘open-core' business model, and the future of IT/OT collaboration. Augmented Ops is a podcast for industrial leaders, citizen developers, shop floor operators, and anyone else that cares about what the future of frontline operations will look like across industries. This show is presented by Tulip (https://tulip.co/), the Frontline Operations Platform. You can find more from us at Tulip.co/podcast (https://tulip.co/podcast) or by following the show on LinkedIn (https://www.linkedin.com/company/augmentedpod/). Special Guest: ZJ van de Weg.

Guest: Fahad Mughal, Senior Cyber Solutions Architect - SecurityOn LinkedIn | https://www.linkedin.com/in/fahadmughal/____________________________Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinView This Show's Sponsors___________________________Episode NotesModern railway systems are increasingly digital, integrating operational technology (OT) to enhance efficiency, reliability, and safety. However, as railways adopt automated and interconnected systems, they also become more vulnerable to cyber threats. In this episode of Redefining Cybersecurity on ITSP Magazine, host Sean Martin speaks with Fahad Ali Mughal, a cybersecurity professional with extensive experience in OT security architecture, about the challenges and priorities of securing railway infrastructure.The Growing Role of Cybersecurity in RailwaysRailway systems have evolved from steam-powered locomotives to autonomous, driverless trains that rely on sophisticated digital controls. OT now plays a crucial role in managing train operations, signaling, interlocking, and trackside equipment. These advancements improve efficiency but also expose railway networks to cyber threats that can disrupt service, compromise safety, and even impact national security. Unlike traditional IT environments, where the focus is on confidentiality, integrity, and availability (CIA), OT in railways prioritizes reliability, availability, and public safety. Ensuring the safe movement of trains requires a cybersecurity strategy tailored to the unique needs of railway infrastructure.Critical OT Systems in RailwaysMughal highlights key OT components in railways that require cybersecurity protection:• Signaling Systems: These function like traffic lights for trains, ensuring safe distances between locomotives. Modern communication-based train control (CBTC) and European Rail Traffic Management Systems (ERTMS) are vulnerable to cyber intrusions.• Interlocking Systems: These systems prevent conflicting train movements, ensuring safe operations. As they become digitized, cyber risks increase.• Onboard OT Systems: Automatic Train Control (ATC) regulates speed and ensures compliance with signaling instructions. A cyberattack could manipulate these controls.• SCADA Systems: Supervisory Control and Data Acquisition (SCADA) systems oversee infrastructure operations. Any compromise here can impact an entire railway network.• Safety-Critical Systems: Fail-safe mechanisms like automatic braking and failover controls are vital in preventing catastrophic accidents.The increasing digitization and interconnection of these systems expand the attack surface, making cybersecurity a top priority for railway operators.Real-World Cyber Threats in RailwaysMughal discusses several significant cyber incidents that highlight vulnerabilities in railway cybersecurity:• 2023 Poland Attack: Nation-state actors exploited vulnerabilities in railway radio communication systems to send unauthorized emergency stop commands, halting trains across the country. The attack exposed weaknesses in authentication and encryption within OT communication protocols.• 2021 Iran Railway Incident: Hackers breached Iran's railway scheduling and digital message board systems, displaying fake messages and causing widespread confusion. While safety-critical OT systems remained unaffected, the attack disrupted operations and damaged public trust.• 2016 San Francisco Muni Ransomware Attack: A ransomware attack crippled the fare and scheduling system, leading to free rides for passengers and operational delays. Though IT systems were the primary target, the impact on OT operations was evident.These incidents underscore the urgent need for stronger authentication, encryption, and IT-OT segmentation to protect railway infrastructure.Cybersecurity Standards and Best Practices for Railways (links to resources below)To build resilient railway cybersecurity, Mughal emphasizes the importance of international standards:• IEC 62443: A globally recognized framework for securing industrial control systems, widely applied to OT environments, including railways. It introduces concepts such as network segmentation, risk assessment, and security levels.• TS 50701: A European standard specifically designed for railway cybersecurity, expanding on IEC 62443 with guidance for securing signaling, interlocking, and control systems.• EN 50126 (RAMS Standard): A safety-focused standard that integrates reliability, availability, maintainability, and safety (RAMS) into railway operations.Adopting these standards helps railway operators establish secure-by-design architectures that mitigate cyber risks.Looking Ahead: Strengthening Railway CybersecurityAs railway systems become more automated and interconnected with smart cities, vehicle transportation, and supply chain networks, cyber threats will continue to grow. Mughal stresses the need for industry collaboration between railway engineers and cybersecurity professionals to ensure that security is integrated into every stage of railway system design.He also emphasizes the importance of real-time OT threat monitoring, anomaly detection, and Security Operations Centers (SOCs) that understand railway-specific cyber risks. The industry must stay ahead of adversaries by adopting proactive security measures before a large-scale cyber incident disrupts critical transportation networks.The conversation makes it clear: cybersecurity is now a fundamental part of railway safety and reliability. As Mughal warns, it's not a question of if railway cyber incidents will happen, but when.To hear the full discussion, including insights into OT vulnerabilities, real-world case studies, and cybersecurity best practices, listen to this episode of Redefining Cybersecurity on ITSP Magazine.___________________________SponsorsImperva: https://itspm.ag/imperva277117988LevelBlue: https://itspm.ag/attcybersecurity-3jdk3ThreatLocker: https://itspm.ag/threatlocker-r974___________________________Watch this and other videos on ITSPmagazine's YouTube ChannelRedefining CyberSecurity Podcast with Sean Martin, CISSP playlist: