3/4 Acciones del caso Matriz de Roles y Responsabilidades en Seguridad OT

Podcast: IoT Security PodcastEpisode: Guarding the Gateways: Tackling IoT Vulnerabilities in Critical Systems with Joel GoinsPub date: 2024-11-05Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationBusinesses and government organizations have seen threats to critical US infrastructure on the rise in recent years, particularly within IoT and OT systems, posed by cyberattacks, notably from state actors like Iran. With that context, Joel Goins, a veteran of manufacturing, oil and gas, and OT security at large, talks with John Vecchi about the critical need for enhanced security measures for data centers and other vital components, the vulnerabilities present in IoT devices, and the essential steps companies must take to safeguard against both traditional and emerging cyber threats. Let’s connect about IoT Security!Follow John Vecchi at https://www.linkedin.com/in/johnvecchiThe IoT Security Podcast is powered by Phosphorus Cybersecurity. Join the conversation for the IoT Security Podcast — where xIoT meets Security. Learn more at https://phosphorus.io/podcastThe podcast and artwork embedded on this page are from Phosphorus Cybersecurity, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: (CS)²AI Podcast Show: Control System Cyber SecurityEpisode: Shaping the Future of OT Security with Dale PetersonPub date: 2024-11-06Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, the conversation centers on the critical role of operational technology (OT) security and the unique contributions of the S4 Conference. Dale Peterson shares his journey and insights into the challenges of underrepresentation in cybersecurity, especially for women and other groups, and highlights innovative scholarship initiatives aimed at bridging this gap. The discussion also delves into the evolving landscape of AI in cybersecurity, addressing both its potential and the complexities it brings. Listeners will gain valuable perspectives on managing cybersecurity risks, prioritizing investments, and developing effective recovery strategies in OT environments. As we look forward to S4 2025 in Tampa, Florida, this episode offers a glimpse into the future of cybersecurity and the importance of resilience in our systemsThe podcast and artwork embedded on this page are from Derek Harp, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Nexus: A Claroty Podcast (LS 32 · TOP 5% what is this?)Episode: Joe Saunders on Advanced Cyberattacks Against Critical InfrastructurePub date: 2024-11-07Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationRunsafe Security CEO and Cofounder Joe Saunders joins the Nexus Podcast to discuss the strategic shift from certain APTs toward destructive cyberattacks targeting U.S. critical infrastructure. Groups such as Volt Typhoon and Sandworm have aggressively focused their efforts on hacking OT, IoT, and healthcare organizations, opening new fronts that asset owners and operators, as well as manufacturers of embedded systems must now contend with. The podcast and artwork embedded on this page are from Claroty, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Industrial Cybersecurity InsiderEpisode: The Future Looks Bright : Insights & Advice for Next Gen Cybersecurity LeadersPub date: 2024-11-05Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationOT Cybersecurity Engineer, Noah Duckworth, joins Dino Busalachi for this episode. They discuss the challenges and nuances of industrial cybersecurity, as he shares insights from his experience working in the OT (Operational Technology) cybersecurity space. Noah talks about the complexities of integrating traditional IT cybersecurity measures within industrial networks, the specific tools and practices used, and the importance of safe, industry-specific approaches to vulnerability management. He also provides a perspective on various industrial sectors, such as food and beverage and transportation, and how cybersecurity requirements vary across different verticals and environments. This episode offers valuable insights into the evolving field of OT cybersecurity and practical advice for professionals interested in protecting critical infrastructure as well as entering the field of industrial cybersecurity.Chapters:00:00:00 - Introduction to Engineering Problem-Solving in Cybersecurity00:00:46 - Guest Introduction: Meet OT Cybersecurity Engineer & Expert Noah Duckworth00:00:58 - Noah’s Path into OT Cybersecurity and His Industry Experience00:02:13 - Key Differences Between OT and IT Cybersecurity00:03:01 - Addressing Common OT Cybersecurity Challenges and Tools00:06:22 - Navigating Cybersecurity Across Industrial Sectors00:08:06 - Insights for New Professionals in Industrial Cybersecurity00:10:13 - The Evolving Landscape of OT Cybersecurity00:15:22 - Inspiring the Next Generation of Cybersecurity Leaders00:16:35 - Closing Thoughts: Practical Advice for Early-Career ProfessionalsLinks And Resources:Velta TechnologyNoah Duckworth on LinkedInDino Busalachi on LinkedInJim Cook on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Velta Technology, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It All (LS 24 · TOP 10% what is this?)Episode: Navigating Cybersecurity Challenges: AI, Tabletop Exercises, and Operational TechnologyPub date: 2024-11-04Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationIn this episode, host Aaron Crow is joined by Clint Bodungen, Director of Cybersecurity Innovation at Morgan Franklin Cyber and founder of Threatgen, alongside Michael Welch, Managing Director at Morgan Franklin Cyber. Together, they delve into the ever-evolving world of cybersecurity in honor of Cybersecurity Awareness Month. Aaron kicks things off by discussing the importance of iterative processes and tabletop exercises in enhancing decision-making and preparedness. The conversation then shifts to the exciting yet complex role of AI in cybersecurity, particularly in operational technology (OT) and critical infrastructure. The experts emphasize the potential of generative AI for data analysis while underscoring the need for human oversight to avoid biases and misinformation. Clint introduces an “engineering informed cyber” approach to better integrate OT and IT in managing cybersecurity risks, while Aaron stresses the importance of collaboration between cybersecurity professionals and engineers. The episode also tackles balancing convenience and security, the intricacies of password management, and the critical role of communication and trust. Listeners will gain valuable insights into AI’s role in enhancing security operations, the consequences of system failures, and the debate between compliance and true security. This episode offers expert opinions, real-world examples, and practical advice for navigating today’s cybersecurity challenges. Join us for a comprehensive discussion on protecting our digital world.   Key Moments:    04:20 Generative AI aids efficient GRC and cybersecurity management. 08:40 AI lacks context for verifying asset information. 11:38 Generative AI creating and automating malware tools. 15:58 Building data centers using decommissioned power plants. 17:14 Regulation growing in infrastructure for compliance security. 22:09 Compliance is binary; partial compliance isn't sufficient. 24:33 Prioritize "engineering informed cyber" for OT resilience. 28:14 Collaboration between IT and OT is essential. 33:54 Frustration with excessive video game security measures. 34:49 Cybersecurity fails due to over-engineering complexity. 40:49 Make security easy with password managers, authenticators. 42:31 AI improves tabletop exercises for comprehensive insights. 45:31 Generative AI augments human capabilities and creativity. 48:08 Automated injects streamline engagement and business continuity. 53:46 Executives misunderstand risk, leading to false security. 54:29 Strong IT security, but vulnerable weak points. About the Guests :    Clint Bodungen:    Clint Bodungen is a globally recognized cybersecurity professional and thought leader with 30 years of experience (focusing primarily on industrial cybersecurity, red teaming, and risk assessment). He is the author of two best-selling books, "Hacking Exposed: Industrial Control Systems" and “ChatGPT for Cybersecurity Cookbook. Clint is a United States Air Force veteran and has worked for notable cybersecurity firms like Symantec, Booz Allen Hamilton, and Kaspersky Lab, and is currently the founder of ThreatGEN and Director of Cybersecurity Innovation at Morgan Franklin Consulting. Renowned for his creative approach to cybersecurity education and training, he has been at the forefront of integrating gamification and AI applications into cybersecurity training; he created ThreatGEN® Red vs. Blue, the world's first online multiplayer computer designed to teach real-world cybersecurity. His latest innovation is AutoTableTop, which uses the latest generative AI technology to automate, simplify, and revolutionize IR tabletop exercises. As AI technology continues evolving, so does his pursuit of helping revolutionize the cybersecurity industry using gamification generative AI. Connect Clint at - https://www.linkedin.com/in/clintb/   Michael Welch :    Michael Welch has over twenty-five years of expertise in Governance, Risk Management, Compliance and Cybersecurity.  In his role as Sector Lead, Michael  will focus on the importance of cybersecurity in Utilities and Industrial Manufacturing.  Michael understands that robust cybersecurity measures are not just a regulatory requirement but are pivotal in safeguarding the resilience of organizations, safety of its people, and overall economic stability.  Michael has worked for organizations such as NextEra and Duke Energy as well as engineering firm Burns & McDonnell.  In addition, he was the Global CISO for the food manufacturing firm OSI Industries.Some of the certifications he has obtained through his career are Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Global Industrial Cyber Security Professional (GICSP), Certified Data Privacy Solutions Engineer (CDPSE) and CMMC - Registered Practitioner Advanced (RPA).  Connect Michael Welch at : https://www.linkedin.com/in/michael-welch-93375a4/ Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: [email protected]  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at [email protected] podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Casos de Ciberseguridad IndustrialEpisode: 2/4 Análisis desplegando Acceso Remoto en Entorno OTPub date: 2024-11-04Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationEn este episodio se analizan cuáles son las principales opciones de acceso remoto, sus ventajas y desventajas. Requisitos en el acceso remoto.The podcast and artwork embedded on this page are from Centro de Ciberseguridad Industrial, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: The OT and IoT Security Podcast (LS 23 · TOP 10% what is this?)Episode: The Security Sandbox at the ICS Cybersecurity ConferencePub date: 2024-11-01Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationHosts Vivek Ponnada and Sandeep Lota share their insights on and exploring topics such as: ✅ Emerging threats to ICS over the next 12-18 months✅ Evolving strategies for integrating IT and OT cybersecurity✅ The future role of AI in ICS cybersecurity✅ Fostering collaboration between IT and OT teamsVisit Our WebsiteFollow Us on LinkedInThe podcast and artwork embedded on this page are from Nozomi Networks, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Automation Chat (LS 26 · TOP 10% what is this?)Episode: Tips for Complying with the NIS2 Compliance FrameworkPub date: 2024-10-29Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarization** 3 Consecutive Awards for Best Podcast, 2022 - 2024 APEX Awards of Publication Excellence. In this episode, The Journal’s Digital Editor Maggie MacHale brings the written word to life by reading the article, “Tips for Complying with the NIS2 Compliance Framework.” It’s written by Meghna Subramani, Commercial Product Manager, Network & Cybersecurity, and Andreu Cuartiella, Lifecycle Services Commercial Manager EMEA at Rockwell Automation.  You’ll learn 7 steps to help you comply with this directive for increasing cybersecurity for industrial firms, utilities and other entities across the European Union.   Resources from this episode: Read the article online: “Tips for Complying with the NIS2 Compliance Framework.” Data Bridge Market Research on the European market for operational technology (OT). To subscribe to our 4 print magazines (Feb., May, July and Oct.), e-mail Anna Hicks at [email protected]. Subscribe to our 4 digital magazines at http://rok.auto/thejournal-subscribe.   Hit the “Share” symbol to share this episode with your colleagues who would benefit from this information. And please give us a 5-star rating and a review. Brought to you by The Journal From Rockwell Automation and Our PartnerNetwork magazine.The podcast and artwork embedded on this page are from The Journal From Rockwell Automation and Our PartnerNetwork, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Industrial Cybersecurity InsiderEpisode: CISA’s Role in Supporting Asset Owners & Government Sectors with CybersecurityPub date: 2024-10-29Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationThis episode we dive into the critical strategies necessary for securing operational technology (OT) environments, with OT/ICS Strategy Lead at CISA, Danielle Jablanski. Danielle explores the evolving role of CISA in assisting asset owners and government sectors, emphasizing the importance of collaboration and understanding in cybersecurity. From building resilience against "shiny object syndrome" to prioritizing effective incident response and vendor relationships, this conversation provides valuable insights into crafting an actionable, sustainable OT security strategy. Danielle also shares how workforce development is crucial in creating a robust cybersecurity posture and discusses CISA’s approach to integrating AI and machine learning into OT security cautiously and strategically.Chapters:00:00:00 - Understanding Outsourcing and Effective Incident Management in OT00:01:21 - Welcoming Danielle Jablanski from CISA to the Show00:01:47 - CISA’s Expanding Role in Supporting Critical Infrastructure Security00:03:32 - Key Challenges Facing OT Cybersecurity Today00:06:27 - Navigating the Convergence of IT and OT Security00:11:36 - CISA’s Approach to Risk Management and Its Global Impact00:13:40 - Overview of CISA Services and Regional Cybersecurity Initiatives00:16:36 - Enhancing Incident Response Capacity and Cross-Agency Coordination00:17:30 - Fusion Centers: Interagency Collaboration for Better Threat Intelligence00:18:55 - Guiding Organizations in Reporting and Responding to Incidents00:21:03 - Developing Effective Incident Response Playbooks for OT Environments00:22:08 - Opportunities and Risks of AI in OT Cybersecurity00:24:32 - Emerging Threats: Targeted Attacks on Control Systems00:27:00 - Final Thoughts on Workforce Development and Building Cybersecurity ResilienceLinks And Resources:Danielle Jablanski on LinkedInDino Busalachi on LinkedInJim Cook on LinkedInCraig Duckworth on LinkedInThanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!The podcast and artwork embedded on this page are from Velta Technology, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Cyber Work (LS 42 · TOP 1.5% what is this?)Episode: How secure is your food: Cybersecurity threats and careers | Guest Jonathan BraleyPub date: 2024-10-28Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationGet your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=audio&utm_medium=podcast&utm_campaign=podcastToday on Cyber Work, Jonathan Braley from the Food and Agriculture Information Sharing and Analysis Center (Food and Ag ISAC) delves into the critical security challenges in the food, farming and production sectors. Featuring insights on the evolution of cybersecurity, the role of ISACs, and real-world threats like ransomware and phishing, this episode offers a comprehensive look at how cybersecurity professionals within this industry are working to safeguard vital systems. Braley shares tips on obtaining competitive roles, the convergence of IT and OT security and the importance of continuous learning. Tune in to grasp the latest trends and get invaluable career advice to stay ahead in the ever-evolving field of cybersecurity.View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=audio&utm_medium=podcast&utm_campaign=podcast00:00 - Introduction to cyber work and guest Jonathan Braley00:53 - The growing cybersecurity job market02:05 - From biology to cybersecurity04:48 - Early career and learning at Valley Apps09:26 - Role and responsibilities at Food and Ag ISAC17:07 - Understanding cyber threats in food and agriculture23:23 - The growing connectivity and vulnerabilities in agriculture23:49 - Cybersecurity challenges for small towns and farms25:28 - The Reality of cyberattacks on small farms26:59 - Global implications of cybersecurity in agriculture28:44 - Insights from a cybersecurity expert in agriculture33:13 - Career opportunities in food and agriculture cybersecurity37:37 - Staying informed and prepared in the cybersecurity field40:04 - Cybersecurity career adviceAbout InfosecInfosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.The podcast and artwork embedded on this page are from Infosec, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.