Recorded Webinar: Engineering-Grade OT Security: A Manager’s Guide
We had a great webinar with a nice turnout. We discussed Engineering-grade OT security, which is a new model for addressing cyber risk, and how to decide how much security is needed for different systems.
In this webinar, we announced my new book Engineering-Grade OT Security: A manager’s guide, and got into the details of the question posed in the book: “How much is enough?” when a cyber attacks that can impact physical operations.
The answer to that question very much depends on consequences – small shoe factories are not at all the same as a passenger rail switching systems.
Some topics of the book we discussed included:
Engineering-grade protections that are unique to the OT space, mainly drawn from safety engineering,
Network engineering techniques to prevent attacks from pivoting into safety-critical or reliability-critical systems.
A new model for cyber risk that makes it easier to answer the question “how much is enough?” for different kinds of systems.
And we finished off by answering that key question head-on. We looked at legal and professional obligations that dictate where engineering-grade and where IT-grade solutions must be used. We walked through how to decide how much engineering-grade, IT-grade and even insurance-type protections are justified for different types of threats – network-based vs. insider vs. supply chain vs. removable media.
We also looked at how to communicate these decisions through layers of management where messages might otherwise get lost or misinterpreted.
Want to get your advanced copy of Andrew Ginter’s new book?
>>Click here to get your copy
Stay up to date
Subscribe to our blog and receive insights straight to your inbox