Episodes

  • What Every CISO Gets Wrong About OT Security

    What Every CISO Gets Wrong About OT Security
    Jun 6 2025
    Podcast: Industrial Cybersecurity Insider
    Episode: What Every CISO Gets Wrong About OT Security
    Pub date: 2025-06-05

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    In this episode, Dino and Craig tackle one of the most misunderstood topics in industrial cybersecurity: IT/OT convergence.

    But is it truly convergence or more of a collision?

    Drawing from real-world experiences, they challenge the idea that OT is a “shadow IT group” and argue that operational technology deserves distinct governance, funding, and strategic influence.

    From secure-by-design to system integrators' evolving role, this conversation is a call to action for CISOs, CIOs, and engineering leaders to rethink how they build cybersecurity partnerships across the plant floor.

    Chapters:

    • 00:00:00 - Opening Shot: Who’s Really in Charge—CIOs or the Plant Floor?
    • 00:00:57 - Collision Course: IT and OT Can’t Keep Dodging Each Other
    • 00:01:52 - Two Worlds, One Mission: Why OT Isn’t Just “IT in a Hard Hat”
    • 00:04:07 - When Convergence Fails: What’s Missing in the Middle
    • 00:05:54 - Breaking Silos: Why Cybersecurity Demands True Collaboration
    • 00:08:22 - Real Talk: What Cyber Protection Looks Like on the Plant Floor
    • 00:10:46 - OT’s Tipping Point: Will the Next Move Come from IT, or the Shop Floor?
    • 00:17:32 - Your Move: What Leaders Must Do Next (Before It’s Too Late)

    Links And Resources:

    • Industrial Cybersecurity Insider on LinkedIn
    • Cybersecurity & Digital Safety on LinkedIn
    • BW Design Group Cybersecurity
    • Dino Busalachi on LinkedIn
    • Craig Duckworth on LinkedIn

    Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!



    The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    21 mins
  • What do we need to deter insider threats? | OT Security Made Simple

    What do we need to deter insider threats? | OT Security Made Simple
    Jun 5 2025
    Podcast: OT Security Made Simple
    Episode: What do we need to deter insider threats? | OT Security Made Simple
    Pub date: 2025-06-03

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    Mandana White, CEO of Smart Grid Forums, talks about the rise of insider threats to a company’s cybersecurity and what it has to do with the cost-of-living crisis as well as the Western Robin Hood mentality. Diving a bit into societal psychology and politics there might even be a bit to learn from – of all places – Dubai to get IT and OT cybersecurity working in both companies and society.



    The podcast and artwork embedded on this page are from Klaus Mochalski, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    27 mins
  • Building Trust and Bridging the Gap in OT and IT Cybersecurity

    Building Trust and Bridging the Gap in OT and IT Cybersecurity
    Jun 4 2025
    Podcast: PrOTect It All (LS 26 · TOP 10% what is this?)Episode: Building Trust and Bridging the Gap in OT and IT CybersecurityPub date: 2025-06-02Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, host Aaron Crow sits down with Dean Parsons, one of the most recognized names in the OT and industrial control systems (ICS) security world, for a candid and insightful conversation. Join Aaron and Dean as they explore what it truly takes to bridge the worlds of IT and OT. Drawing from decades of industry experience, their discussion covers everything from building trust across teams, to the superpower of understanding both operational technology and cybersecurity. Expect real-world stories, practical advice on breaking into OT cybersecurity, and memorable lessons from the plant floor to the boardroom. They also break down what makes OT security fundamentally different from traditional IT approaches, why risk-based strategies are essential, and how building relationships, sometimes over donuts and coffee—can be just as important as deploying firewalls and patching systems. Whether you’re new to ICS and OT security, or a seasoned defender looking for fresh perspective, this episode brings actionable tips, honest assessments, and inspiration to help you better protect what matters most. So grab your hard hat (and maybe a box of donuts!), and get ready for a masterclass on collaboration, building skills, and why trust is the real currency in the fight to secure our critical infrastructure. Key Moments: 05:32 Listening Over Speaking in Legacy Spaces 07:01 IT Security Teamwork and Trust 11:21 Cost-Efficient ICS Security Solutions 15:42 Converging Skill Sets in IT Security 17:36 OT vs IT: Different Risks 22:28 Prioritizing Post-Assessment Actions 23:20 Prioritize SANS ICS Critical Controls 29:31 Engineering Perspective on Critical Assets 30:47 Detecting Misuse of Control Systems 35:52 Collaborative Incident Response Dynamics 39:03 Remote Hydroelectric Plant Journey 40:45 Building Trust with Baked Goods 44:55 "Safety Crucial in Facility Disruptions" 48:50 ICS Security: Closing Safety Gaps 53:37 Enhancing ICS Security Controls 57:18 "ICS Summit and LinkedIn Activities" About the guest : Dean is the CEO and Principal Consultant of ICS Defense Force and brings over 20 years of technical and management experience to the classroom. He has worked in both Information Technology and Industrial Control System (ICS) Cyber Defense in critical infrastructure sectors such as telecommunications, electric generation, transmission, distribution, and oil & gas refineries, storage, and distribution, and water management. Dean is an ambassador for defending industrial systems and an advocate for the safety, reliability, and cyber protection of critical infrastructure. His mission as an instructor is to empower each of his students, and he earnestly preaches that “Defense is Do-able!” Over the course of his career, Dean’s accomplishments include establishing entire ICS security programs for critical infrastructure sectors, successfully conducting industrial-grade incident response and tabletops, ICS digital forensics, and ICS/OT Cybersecurity assessments across multiple sectors. As a SANS Principal Instructor, Dean teaches ICS515: ICS Visibility, Detection, and Response, is a co-author of the SANS Course ICS418: ICS Security Essentials for Managers and an author of SANS ICS Engineer Technical Awareness Training. Dean is a member of the SANS GIAC Advisory Board and holds many cybersecurity professional certifications including the GICSP, GRID, GSLC, and GCIA, as well as the CISSP®, and holds a BS in computer science. When not in the field, Dean spends tine chasing icebergs off the coast of Newfoundland on a jetski, or writing electric 80s inspired electronic music in this band Arcade Knights. Resources Mentioned: 5 ICS Cybersecurity Critical Controls: https://www.sans.org/white-papers/five-ics-cybersecurity-critical-controls/ SANS ICS Cybersecurity Summit: https://www.sans.org/cyber-security-training-events/ics-security-summit-2025/ How to connect Dean: https://www.linkedin.com/in/dean-parsons-cybersecurity/ https://www.sans.org/profiles/dean-parsons/ Dean’s Book: https://www.amazon.com/ICS-Cybersecurity-Field-Manual-EXCLUSIVE/dp/B0CGG6GMHW/ Connect With Aaron Crow: Website: www.corvosec.com LinkedIn: https://www.linkedin.com/in/aaronccrow Learn more about PrOTect IT All: Email: info@protectitall.co Website: https://protectitall.co/ X: https://twitter.com/protectitall YouTube: https://www.youtube.com/@PrOTectITAll FaceBook: https://facebook.com/protectitallpodcast To be a guest or suggest a guest/episode, please email us at info@protectitall.co Please leave us a review on Apple/Spotify Podcasts: Apple - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/...
    Show more Show less
    1 hr and 1 min
  • Episode 298: The Blackout, Critical Infrastructures, and Cybersecurity

    Episode 298: The Blackout, Critical Infrastructures, and Cybersecurity
    Jun 3 2025
    Podcast: CiberAfterWork: ciberseguridad en Capital Radio
    Episode: Episode 298: The Blackout, Critical Infrastructures, and Cybersecurity
    Pub date: 2025-06-02

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    This episode discusses the major power blackout in Spain, analyzing if it could have been caused by a cyberattack, although market consensus discards this possibility. It also reflects on the vulnerability of critical infrastructures to such events. The program also details the rapid appearance of cyber scams related to the blackout, demonstrating the adaptability of cybercriminals. Subsequently, the program presents a DNS-based security solution (Flash Start) to protect web browsing in companies and on devices, emphasizing its ease of installation and customization. Finally, it reports on a ransomware cyberattack on the Ayuntamiento de Badajoz and the dismantling by the FBI of a "Fishing as a Service" platform, highlighting the importance of prevention, detection, and response in cybersecurity. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

    The podcast and artwork embedded on this page are from psaneme, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    6 mins
  • Episodio 298: El Apagón, las Infraestructuras Críticas y la Ciberseguridad

    Episodio 298: El Apagón, las Infraestructuras Críticas y la Ciberseguridad
    Jun 3 2025
    Podcast: CiberAfterWork: ciberseguridad en Capital Radio
    Episode: Episodio 298: El Apagón, las Infraestructuras Críticas y la Ciberseguridad
    Pub date: 2025-06-02

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    En este episodio se habla del gran apagón que sufrió España y se analiza si pudo haber sido causado por un ciberataque, aunque el consenso del mercado lo descarta, y reflexionando sobre la vulnerabilidad de las infraestructuras críticas ante tales eventos. También se detalla la rápida aparición de ciberestafas relacionadas con el apagón, demostrando la adaptabilidad de los ciberdelincuentes. Posteriormente, el programa presenta una solución de seguridad basada en DNS para proteger la navegación web en empresas y dispositivos, enfatizando su facilidad de instalación y personalización. Finalmente, se informa sobre un ciberataque de ransomware al Ayuntamiento de Badajoz y el desmantelamiento por parte del FBI de una plataforma de "Fishing as a Service", resaltando la importancia de la prevención, detección y respuesta en ciberseguridad. Twitter: @ciberafterwork Instagram: @ciberafterwork Panda Security: https://www.pandasecurity.com/es/ +info: https://psaneme.com/ https://bitlifemedia.com/ https://www.vapasec.com/ VAPASEC https://www.vapasec.com/ https://www.vapasec.com/webprotection/

    The podcast and artwork embedded on this page are from psaneme, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    53 mins
  • 1/4 Contexto Incorporando ciberseguridad en el diseño de tecnología industrial

    1/4 Contexto Incorporando ciberseguridad en el diseño de tecnología industrial
    Jun 2 2025
    Podcast: Casos de Ciberseguridad Industrial
    Episode: 1/4 Contexto Incorporando ciberseguridad en el diseño de tecnología industrial
    Pub date: 2025-06-01

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    En este episodio se presenta el contexto del caso: datos del entrevistado y cuál es el contexto del entorno y cuáles son los desafíos de incorporar ciberseguridad en el desarrollo de las tecnologías.

    The podcast and artwork embedded on this page are from Centro de Ciberseguridad Industrial, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    20 mins
  • Conserva #38 con Maria Penilla (ZIUR) - CRA (Cyber Resilience Act).

    Conserva #38 con Maria Penilla (ZIUR) - CRA (Cyber Resilience Act).
    Jun 1 2025
    Podcast: Conservas Guillén by Trend Micro
    Episode: Conserva #38 con Maria Penilla (ZIUR) - CRA (Cyber Resilience Act).
    Pub date: 2025-05-29

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    En Conservas Guillén abrimos una nueva lata para hablar con María Penilla (Directora General de la Fundación ZIUR, Centro de Ciberseguridad Industrial de Gipuzkoa) para hablar de la CRA (Cyber Resilience Act) y como desde la Fundación están ayudando al tejido empresarial / industrial de Guipuzkoa y Euskadi. Conservaciones de 30 minutos, aproximadamente, en lenguaje entendible y coloquial.

    The podcast and artwork embedded on this page are from Trend Micro Iberia, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    30 mins
  • Megan Stifel on the Impact of the Ransomware Task Force

    Megan Stifel on the Impact of the Ransomware Task Force
    May 31 2025
    Podcast: Nexus: A Claroty Podcast (LS 32 · TOP 5% what is this?)
    Episode: Megan Stifel on the Impact of the Ransomware Task Force
    Pub date: 2025-05-28

    Get Podcast Transcript →
    powered by Listen411 - fast audio-to-text and summarization



    Megan Stifel, Chief Strategy Officer for the Institute for Security and Technology, joins the Nexus Podcast to discuss the four years of progress and challenges experienced by the Ransomware Task Force.

    The RTF was created days before the Colonial Pipeline ransomware incident and in a landmark report, laid out 48 recommendations to the industry that included a framework for critical infrastructure organizations that could help deter and disrupt the operations of ransomware gangs.

    Stifel covers the growth of the task force and which the of the 48 recommendations have been tackled and which remain.

    Listen and subscribe to the Nexus Podcast on your favorite platform.



    The podcast and artwork embedded on this page are from Claroty, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
    Show more Show less
    30 mins
adbl_web_global_use_to_activate_T1_webcro805_stickypopup