hosted by Andrew Ginter & Nate Nelson
A cyber security podcast deep-diving into the most pressing emerging issues in SCADA technologies today. But don’t just take our word for it. Each new episode features a leading voice in the world of industrial control systems security. You’ll hear from executives, engineers, researchers and more. Each guest brings their own unique take on what’s wrong with how we do things today, and how to fix it.
Active defense or “intrusion prevention” deep into industrial networks has long been thought of as not workable. Youssef Jad – CTO at CyVault – joins us to talk about a new approach to OT active defense that is designed for sensitive OT / industrial environments.
Patching is hard in many industrial / OT systems – the risk the new code poses to operations is comparable to the risk of a cyber attack. But – the vulnerability does not go away just because patching is hard. Rick Kaun, VP Solutions at Verve Industrial joins us to look at what to patch, when to patch, and automation to help make the whole process faster, easier and cheaper.
Modern cars contain many CPUs and ECUs that are all connected and controlled using CANbus networks. Our guest on the show, Dr. Ken Tindell, explains how car thieves have been able to exploit vulnerabilities within CANbus networks to disable the immobilizer and unlock the vehicle, as well as how car owners and manufactures counter such threats.
NERC CIP, the new TSA pipeline and rail directives and other regulations can be very expensive – to comply with and to prove to an auditor that you comply. Kathryn Wagner of Assurx joins us to look at what and how we can automate this process to save time and money.
When it comes to industrial risk, where does “Cyber” fit into the big picture? Dr Janaka Ruwanpura helps us understand some of the ways such risks are managed and how such risk is assigned a category.
OT systems are critical to mining safety. Rob Labbe, the chair of the Metals and Mining ISAC joins us to look at six steps to integrating IT & OT networks and security programs in this very sensitive environment.
The Biden-Harris administration recently released their National Cybersecurity Strategy. This week, Jesus Molina of Waterfall Security joined ICS Pulse Podcast to discuss the new policy’s impact on critical infrastructure and the increasing physical consequences of cyberattacks.
IEC 62443-3-2 is a series of international cybersecurity standards for Operational Technology (OT). The standard describes both technical and process-related aspects of automation and control systems for different roles and stakeholders involved.
Getting an industrial site started on the cybersecurity road can be hard. Matt Malone of Yokogawa joins us to look at strategies to shake loose funding, trigger conditions that can jump-start investments, common stumbling blocks and how to address them.
SSVC is a new standard decision process for deciding what to do about new vulnerabilities and patches. Thomas Schmidt of the German BSI joins us to look at how SSVC decision trees work, and where and why to use them.
Different kinds of organizations in different stages of their cybersecurity evolution need to look for different kinds of people to contribute to their industrial security programs. Jason Rivera a Director at Security Risk Advisors joins us to look at workforce capability gaps and different approaches needed to fill those gaps in different scenarios.
The new US Department of Energy Cyber Informed Engineering Strategy includes unhackable safeties, manual operations, and other engineering-grade protections, in addition to traditional cybersecurity. Join Cheri Caddy, USA Deputy Assistant Cyber Director as we look at a strategy to develop a discipline of security engineering.
English
Français
Español
עברית
Deutsch
日本語
한국어
中文
اَلْعَرَبِيَّةُ