The Colonial Pipeline attack reflects weak pipeline cybersecurity. The NERC CIP consequence-driven analysis model provides a model for potential pipeline security regulations. …

A risk-based approach to cybersecurity without basic cyber hygiene is a fool’s errand because one cannot exist without the other. …

Using a real-life threat scenario, learn how to leverage diverse data collection methods to create a threat-informed defense with the MITRE ATT&CK for ICS Matrix. …

How using a security by design approach could have lessened the severity of the attack on the Florida water treatment facility or even prevented it altogether. …

The reasons why OT passive monitoring solutions are not truly passive and alternative cybersecurity and compliance technologies to consider. …

While SolarWinds’ Sunburst backdoor is primarily an “IT problem”, what does it mean for ICS and supply chain security? …

The NERC CIP-013 standard addresses cyber threats to the Bulk Electric System (BES) that come from third party vendors in the supply chain. …

The CIS Controls help security practitioners build the foundation of a sound OT cybersecurity program. Learn what these controls are and how they can benefit you. …

Industrial control system environments pose unique risk management challenges. Having accurate OT endpoint data is critical to make smarter decisions. …

CodeMeter is a software licensing program that is a critical component to the operation of many ICS. Severe vulnerabilities were recently found in this program. …