UPCOMING webinars

Manageable Cyber Security for Operational Environments

Wednesday 15th March 2023 2 PM ET / 11AM PT

Evolving TSA Pipeline Security Directives

Wednesday 12th April 2023 1 PM EST / 1o AM SGT

With the 2023 US National Cybersecurity Strategy released, expectations are high that the US TSA will issue a new, fourth version of its directive for assuring the cybersecurity of the nation’s largest oil and gas pipelines in the near future. In part the new US strategy document reflects a steadily-worsening threat environment, and in part the strategy it reflects increrased concern by the administration about the potential for shut-downs due to cyber attacks.

5 Key takeaways from the UITP'S newly released "Practical guidance on cybersecurity

Wednesday 17th May 2023 1 PM EST / 1o AM SGT

It is becoming increasingly challenging for rail operators to cope with increasing cyber attack volumes and with attacks of varying sophistication. At the same time, regulators and governmental cyber agencies are increasing pressure on these operators to show that an attack on their IT enterprise will not affect their OT operations & infrastructure.

PAST webinars

Industrial Security Road Trip: Perspectives from around the world on the latest threats, challenges and solutions

Industrial cybersecurity is a global issue that is changing fast. OT threats changed from theoretical to real two years ago. Climate change is driving the creation of entire new industries, each with their own security challenges. The cloud is coming, sooner or later, to everyone in this space. And new regulations and new standards are driving change in even the oldest and most cautious of industries. Expert speakers take us on a round-the-world tour of threats, challenges and solutions.      Bonus: Throughout the symposium, Nate Nelson and Andrew Ginter walk us through a look back at the first 100 episodes of the Industrial Security Podcast, with excerpts and reflections on episodes featuring speakers from around the world.

(CS)²AI Online™ Seminar: 13 Ways to Break a Firewall with Rees Machtemes (Sponsored by Waterfall)

Firewalls are staples of industrial cybersecurity programs. Often the very first investment any site makes in a security program is the purchase and deployment of a firewall. But how secure are firewalls really? If we want to design robust security programs, we need to understand the capabilities, vulnerabilities and intrinsic limitations of the technologies we deploy. Join us for a modern look at the classic topic Thirteen Ways to Break a Firewall. We review an updated list of 13 common kinds of breaches, with a host of real-life examples. These intrinsic limitations of firewalled are the big reason that secure sites demand at least one layer of unidirectional protection in their defense-in-depth architectures – in addition to the many layers of firewalls that are standard in such architectures.

How to Send OT Data to Industrial Clouds from Critical Infrastructure Networks – Safely

Tuesday 6th September 2022 11AM EDT / 4PM BST

This webinar explores tools and designs to safely send data into cloud systems from critical infrastructure networks, without risk. These tools are not only powerful but are simple enough to apply routinely and are in fact used routinely by the most secure industrial sites. We look at the tools and we look at concrete examples for different kinds of clouds.

Speaker: Dr. Jesus Molina

(CS)²AI Online™ Seminar: New and Updated: Top 20 Cyber Attacks on Industrial Control Systems, Sponsored by Waterfall
Wed, Aug 17, 2022 8:00 PM – 9:30 PM IDT

A sneak preview of a new report – the latest updated Top 20 Cyber Attacks on Industrial Control Systems. The attack “ruler” now includes nation-state-grade ransomware, IT-targeted ransomware that triggers “abundance of caution” OT / ICS shutdowns, and IT-targeted ransomware that triggers OT shutdowns when IT systems vital to OT networks are impaired. Cloud-seeded ransomware / supply-chain attacks are highlighted as the new biggest risk. We work an example – using the updated attack set to evaluate classic and modern security postures at a large refinery. Join us to understand how cyber attacks are impacting critical operations around the world today.
Speaker: Andrew Ginter, VP Industrial Security, Waterfall Security Solutions

Waterfall and Terilogy Webinar

Many industries, in Japan and elsewhere, are investing heavily and urgently in engineering and security solutions to reduce cyber risks. In our upcoming webinar with Terilogy, we will talk about the latest OT cyber threat trends and will look at the cyber security solutions that can dramatically reduce OT cyber risks.

Join us on Tuesday, June 21, 2022, from 11: 00-12: 00 to understand threats and opportunities. 

March 9, 2022 | Safety and Cybersecurity for Nuclear Generators Webinar

Speaker: Andrew Ginter, Brian Derrico
Date: March 9, 2022, 2 PM Berlin Time.
Join us for an expert perspective into some of the strongest cybersecurity programs on the planet – the programs protecting our nuclear generators. How can we operate our generators both safely and efficiently in the face of cyber attacks on our computer automation? Brian Derrico and Andrew Ginter explore this question in general, and in particular look at the role that Unidirectional Security Gateways have in cybersecurity programs for nuclear generators. 


March 15, 2022 | 100%  Safe access to your PI system data anytime, anywhere

Speaker: Andrew Ginter, Tilo Kaschubek
Date: March 15, 2022, 3 PM Berlin Time.
In this webinar, Tilo Kaschubek of OSIsoft (now part of AVEVA) and Andrew Ginter of Waterfall Security Solutions look at how to safely share all of our operations & OT data with any system or person in our business, customer, and supplier ecosystem. Sharing safely means sharing widely, in real time, with zero risk to physical operations.  Join Tilo and Andrew to understand how to profit from access to OT data, while at the same time eliminating cyber risks to industrial operations.


February 9, 2022 | Bakotech Webinar Recording | Waterfall Security Solutions

Speaker: Andrew Ginter
Date: February 9, 2022.
Watch the Bakotech Webinar Recording: Firewalls vs. Unidirectional Security Gateways, with Waterfall’s speaker Andrew Ginter

Bakotech Webinar

November 24, 2021 | Data Integrity and Cyber Security Webinar

Speaker: Andrew Ginter, Russell Herbert, Shrenik Shah
Date: November 24, 2021, 2:30 PM India Time.
Join us to learn
how digital and data tools have evolved as ‘safe harbor’ for data, defending critical systems inside the security perimeter while enabling growth in the number of users & data from OT systems to meet the needs and understanding of professionals in the energy sector (power and oil and gas). How to leverage a robust cyber security infrastructure to support digital transformation goals and how the latest security features, best practices, and architectures protect your valuable data and data sources for creating real-time operational excellence driving your digital journey.

May 18-19, 2021 | Global Webinar: How Should Small vs Large Water Systems Be Protected?

Speaker: Andrew Ginter, Michael Firstenberg
Date: Tue – Wed, May 18-19 at 1 PM (Singapore) & 3 PM (New York) & 2 PM (London).
Join us to look at what the Oldsmar, Florida cyber attack and similar attacks really do mean, and do not mean, for water system security. We review the attacks in light of analog and digital safeties as well as secondary protections in automation systems. Then, given these examples, we go back to basics – what are the real cyber risks we need to worry about? What are the tools & techniques available to manage those risks? And which of these tools and techniques make more sense in smaller water systems vs larger systems and why?

May 11, 2021 | Practical cyber-security for control centres, signalling systems and rolling stock

Speaker: Jesus Molina
Date: Tue, May 11 at 9:00 AM  (BST Time)
This webinar will look at the current and proposed cyber standards for rail systems. We will explore how cyber-security requirements differ for on-the-ground systems vs. rolling stock. We will highlight requirements that most owners and operators will find new or surprising. We will conclude with practical advice as to how to integrate cyber-security requirements and systems into already-deployed automation as well as into newly-designed systems going to bid.

April 13, 2021 | Targeted ICS Ransomware in Manufacturing: Be Prepared

Speaker: Dr. Jesus Molina 
Date: Tuesday, April 13 at 12 PM (EDT Time)
This webinar, by leaders in OT cybersecurity, provides an in-depth exploration of the topic. We cover the threat landscape for industrial / OT automation in manufacturing. In the context of those threats, we then explore a variety of topics, challenges and constraints, including: protecting MES systems, ICS/OT network and cloud connectivity, and an organization’s tolerance for cyber risk. We then explore solutions – how to use the ransomware kill-chain to design defenses, with concrete recommendations based on real-world scenarios.


Speaker: Mike Firstenberg
Date: Wed-Thu, March 24-25 at 9 am (UK Time)
2021’s event includes updates on Advanced Nuclear Technologies and Hinkley Point C as well as providing practical advice on cybersecurity, digital transformation, human factors and more. Join online to benefit from a high-level view on Advanced Nuclear Technologies alongside detail that you can apply to your own workplace

March 23-24, 2021 | Global webinar –  Thirteen ways to break a firewall

Speaker: Andrew Ginter
Date: Tue-Wed, March 23-24 at 1:00PM (Singapore) & 1:00 PM (New York) & 2:00 PM (London)
Join us for an update on the 2012 classic Thirteen Ways to Break a Firewall. We review an updated list of 13 common kinds of breaches, with a host of real-life examples. These intrinsic weaknesses are the big reason secure sites demand at least one layer of unidirectional protection in their defense-in-depth architectures

March 18, 2021 | Waterfall & Rsolutions joint webinar

Speaker: Richard Baker, Mike Firstenberg
Date: Thursday, March 18 at 10 AM Vancouver / 1PM Toronto
What should canadian water systems learn from recent cyber attacks?
Cyber attackers tried to release dangerous amounts of sodium hydroxide into treated water in Oldsmar, Florida. Looking at this latest attack, we may be tempted to apply the usual band-aids to our security systems. This would be a mistake. 

March 2-3, 2021 | Cyber Sec Asia – cyber resiliency beyond covid-19

Speaker:  Mike Firstenberg
Date: Tue-Wed 2-3, 9:30AM (GMT +8:00).
Cyber Security Asia 2021 Virtual Conference is the one and only Decision Makers’ gathering for CISO and info security experts in SE Asia. We will present 40+ speakers, 500+ CISOs, and Info security experts from Asia countries especially Southeast Asia. It provides everybody with in-depth talks and exclusive networking opportunities. It’s a platform for the development of partnerships and strategies and highlights the latest technologies that are ensuring the safety and security of government, industry, and individuals.

Feb 2, 2021 | Manageable Zero Trust for OT Networks – Waterfall Security x dragos

Speaker: Blase Janov & Dr. Jacob Benjamin
Date: Tuesday, Feb 2, 13:00 EST (New York Time)
Zero trust and micro-segmentation are increasingly important to network security. These approaches, however, are a hard fit for OT networks. In this webinar, experts from Dragos and from Waterfall Security Solutions explore a robust approach to zero trust in OT networks. We explore: What is zero trust in OT networks? Why is it so hard to manage? And, what tools can make zero trust a workable and robust solution for OT networks? The combination of Dragos’ OT-centric asset discovery, mapping and management tools and Waterfall’s hardware-enforced security and segmentation tools make OT zero trust a strong and practical approach to improved OT cybersecurity.

Dec 16 & 17, 2020 | Four Approaches to Hardware Enforced OT Remote Access Controls

Speaker: Andrew Ginter
Date: Monday, Dec 16, 1:00PM (Singapore) & 1:00 PM (New York), Tuesday Dec 17, 1:00 PM (London)
Unidirectional Security Gateways are among the strongest practical security measures for industrial & OT networks, but many practitioners have the mistaken impression that they must give up remote access to enjoy unidirectional protections. In this time of quarantines and travel restrictions, when many sites are being pushed to deploy dangerous software-based remote access technologies, understanding strong unidirectional remote access options has become vitally important.

Dec 15, 2020 | Que font vraiment les sites sécurisés OT/ ICS?

Langue: French
Présentatrice: Courtney Schneider
Date: 15 décembre 2020 | 11h Paris | 60 minutes
Ce webinaire présente la technologie des opérations sécurisées (SEC-OT) en tant que perspective, méthodologie et ensemble de bonnes pratiques utilisées par les sites industriels les plus sécurisés au monde. Ces sites déploient des programmes de sécurité logiciels complets, mais ne s’arrêtent pas là. Les sites sécurisés déploient également une protection physique contre les cyberattaques qui peuvent être intégrées dans les flux de données hors ligne et en ligne entrant dans les réseaux essentiels au contrôle-commande.


Webinar Language: English
Speaker: Yosi Shneck and Andrew Ginter
Date: Tuesday, Nov 10 and Thursday, Nov 12 (3 Time Zones)
Thoroughly secured industrial sites do more than standard security. Explore 3 kinds of techniques and approaches that thoroughly secured sites do that is “extra” – that is over and above conventional enterprise and industrial cybersecurity with Waterfall’s Andrew Ginter and Israel Electric’s Yosi Shneck

Oct 6 & 7, 2020 | New, Advanced Cybersecurity for Power Generation

Webinar Language: English
Speaker: Andrew Ginter
Targeted ransomware is the new normal. We need advanced security techniques and technologies to address these advanced, targeted attacks. Join Andrew Ginter Oct. 6 & 7 to explore 5 advanced cybersecurity topics for protecting power plants

August 18 & 20, 2020 | Waterfall Global Webinar – 3 Advanced Methodologies For Cyber Risk In Power Generation

Webinar Language: English
Speaker: Andrew Ginter
This webinar introduces and contrasts: Security PHA Review (SPR), Consequence-Driven, Cyber-informed Engineering (CCE) and Secure Operations Technology (SEC-OT). Examples of each approach are provided in the context of high-impact attack scenarios on power generation assets.

Past webinars

October 14, 2021 | Manageable Zero Trust for OT Networks

Join Waterfall and Carahsoft as we discuss how the modern approach to #OTcybersecurity initiatives employs both zero-trust architectures and micro-segmentation & how applying these modern concepts to #OTnetworks can be challenging.

Featured Speaker: Blase Janov

July 22, 2021 | Protecting Critical Infrastructure in an Era of Targeted Ransomware

Speaker: Andrew Ginter
Date: Thursday, July 22, 2021 at 2:00pm (ET) 11:00am (PT)

In this webinar, Andrew Ginter of Waterfall Security Solutions walks us through modern ransomware and other threats to OT systems. He reviews the difficulties and costs of applying conventional cybersecurity mitigations to OT networks. Andrew finishes with a deep dive into powerful new approaches to OT risk prevention – approaches that both simplify OT security mitigations, and reduce their costs.

July 19-22, 2021 | accelerating nuclear through strategic partnering

Date: Mon-Thur, July 19-22, 2021 at 13:00 (ET).
So much has changed and our future continues to transform.  For over 20 years NITSL has been providing a venue to bring together the leaders in the nuclear technology  industry to address industry wide concerns and provide strategic guidance related to nuclear information technology and plant technology systems.  Join us for an exceptional conference filled with quality content, and opportunities to hear from leaders in the nuclear industry as they discuss the future of nuclear technology and many of the initiatives within the four pillars of NITSL including presentations from Cyber Security, Digital Controls, SQA and I&A. 

June 22-23, 2021 | ICS Cyber Security Conference APAC

Speaker: Michael Firstenberg
Date: Tue – Wed, June 22-23 at
9:00am (GMT+08)
This is the conference where ICS users, ICS vendors, system security providers and government representatives meet to discuss the latest cyber incidents, analyze their causes and cooperate on solutions.Since its first edition in 2002, the conference has attracted a continually rising interest and is the leading global conference series for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cyber security.

June 16, 2021 | Railway Gazette webinar – Cybersecurity for Rolling stock operations 

Speaker: Dr. Jesus Molina
Date: Wed, June 16 at 11 AM (UK)
Safety, reliability and efficiency are priorities for rolling stock and rail systems designs, but none of these priorities can be assured in the face of material cyber risks. Join us to understand the problem and to explore actionable solutions,
Explore IT/OT and signaling systems connectivity issues with real examples, evaluate different train configurations and their impact on cybersecurity posture and more.

May 20, 2021 | The (CS)2AI Online Debrief on the Colonial Pipeline Ransomware Incident

Speaker: Lior Frenkel
Date: Thu, May 20 at 6:30 PM (EEST)
A ransomware attack on a major US pipeline company leads to shutdown of operations, cutting off delivery 3 million barrels per day of transport fuels from Texas to the Northeast, causing prices to spike and panic runs on gasoline the length of the Atlantic coast. The incident has triggered immediate federal action to not only determine the details of how events transpired but to align an all-government response to prevent something similar or worse from occurring in the future. In a very special (CS)2AI Online Debrief event, three (CS)2AI Fellows will take us through the incident, it’s implications and what we can learn from it.

May 20, 2021 | Remote Access in a post-Covid-19 Industrial Automation World

Speaker: Michael Firstenberg
Date: Thu, May 20 at 3:30 PM (EDT)
Covid-19 has changed everything about our society and our world  in the middle of the pandemic, we hear from the leaders of multiple nations that there is a constant assault of cyber-attacks on the countrys critical infrastructure. The need for isolation of our systems is implied in this messaging. There are many lessons we can learn from these experiences that can be applied to our critical infrastructure and industrial automation. Join Mike Firstenberg to explore the technical, political, and business impacts of remote access along with modern strategies to balance the business need for remote access with the risk management need to protect our people, processes, and equipment.

May 5-6, 2021 |  IET – Cyber security for Industrial Control Systems

Speaker: Michael Firstenberg
Date: Wed-Thu, May 5-6 at 8:30 AM  (UK Time)
The Cyber Security for Industrial Control Systems conference will focus on identifying the latest cybersecurity challenges facing companies today and examine how these can be mitigated against by building resilient and responsive systems. You will also get exclusive insights into new techniques and technologies. Plus, the opportunity to network with some of the UK’s cybersecurity giants makes this a must-attend conference for anyone working in critical systems.

April 29, 2021 | Multi system protection of the organization against cyber attacks

Speaker: Lior Frenkel
Date: Thursday, April 29 at 10 AM  (Jerusalem Time)
Recent developments and innovations offer advanced command and control systems on the organization’s IT  and OT systems in order to protect them from these attacks. These systems enable remote control and full control of all industrial systems from the production floor and the computer systems of the workers. The meeting will discuss the existing cyber attacks, the defense mechanisms and the various technologies that help in this.

April 20, 2021 | ICSJWG – Lessons Learned From a Decade of Implementing and Maintaining IT/OT Firewalls

Speaker: Mike Firstenberg
Date: Tuesday, April 20 at 4:40 PM  (EDT Time)
Join us while We will explore eight common mistakes that administrators make when working with firewalls and describe how these mistakes can compromise ICS network security. The lesson here though is not that we can through exhaustive search “stop making mistakes.” The lesson is to choose appropriate technology for the need. We explore technology alternatives to OT firewalls that eliminate the potential for online attacks as a result of misconfiguration.

April 15, 2021 | SANS: 13 WAYS TO BREAK A FIREWALL – What you don’t know will hurt you…

Speaker: Mike Firstenberg
Date: Thursday, April 15 at 10:30 AM  (EDT Time)
Join us for an update on the 2012 classic Thirteen Ways to Break a Firewall. We review an updated list of 13 common kinds of breaches, with a host of real-life examples. These intrinsic weaknesses are the big reason secure sites demand at least one layer of unidirectional protection in their defense-in-depth architectures.

March 29-31 (virtual event workshop), 2021 | 7TH ANNUAL INDUSTRIAL CONTROL CYBERSECURITY

Speaker: Mike Firstenberg
Date: Mar 29, 1pm (EST Time)
Join us as we address the escalating cyber risk and resiliency challenges associated with the adoption and convergence of operational technologies. Our focus will continue to address how to best respond to evolving cyber threats, the importance of effective risk management, innovations in detection and mitigation, configuration management, remote access, IoT security, controlling device identities and how can we incorporate resilience into critical control system components and business process. Our mission – conversations that count.

March 5, 2021 | SANS ics summit solutions track

Speaker: Mike Firstenberg
Date: Fri, March 5 at 10 am EST time
How organizations prepare their IT and OT teams for security incidents is often dependent on what techniques and tools are available. Teams can use the latest solutions to increase the identification, containment, and eradication of suspicious or malicious activities and overall improve response times and reduce recovery efforts.This forum will explore various ICS topics, ranging from logic controllers (PLCs) to distributed controls systems (DCSs), through invited speakers while showcasing current capabilities available today.


Speaker: Jim Loughlin
Date: Tue-Thu March 2-3, 10:00AM Washington time (PST).
Join your cyber security peers to explore new NEI guidance focused on the identification and protection of digital assets associated with emergency preparedness, the balance of plant, security, safety-related and important-to-safety functions.
Discover best practices and lessons learned from industry cyber security professionals. Leave confident, aligned and ready to implement the highly comprehensive cyber security program with updated NEI guidance.


Speaker: Mike Firstenberg
Date: Tuesday, Mar 2, 10AM (UAE Time).
The 2nd Cyber Security in Energy and Utilities DigiConference will be organized to further contribute to development of cyber resilience of the region’s energy and utilities sectors and provide an annual meeting platform for industry experts to meet and share knowledge, explore latest updates on global best practices, and advance their cyber security skills and standards.

FEB 22, 2021 | SCADA virtual event –  iqpc Australia

Speaker: Courtney Schneider 
Date: Monday, Feb 22, 8:50AM (Australian Eastern Standard Time).
The SCADA Australia Summit has been the only dedicated cross industry conference for SCADA leaders and operators. Attending 2021 is your opportunity to learn from experts that are leading best practice in IT/OT integration, IoT integration with existing SCADA systems, incident management, and transforming business culture.

Feb 11, 2021 | The ics cybersec 2021 – what next? 

Speaker: Mike Firstenberg
Date: Thursday, Feb 11, 9:00 (GMT +2) 
Hear from Israeli and International experts on recent cyber risks, attack vectors and the most creative defense technologies for protecting electricity, water and waste treatment systems, communications, transportation, office buildings and more

August 25 | Revolutionizing Transit Through Innovation and Digitization

Webinar Language: English
Speaker: Jesus Molina
Transit agencies across North America are facing similar challenges around increasing capacity and safety, meeting riders’ mobility demands, and keeping up with the rate of digital change. Missed the webinar?

August 20, 2020 | IT & OT In Power – New Priorities and Requirements: Pre-and Post-Covid

Cyber Security Imperatives
Webinar Language: English
Speaker: Andrew Ginter
Missed the webinar?

July 30, 2020 | MiSi – The Israel Critical Infrastructure Panel

Webinar Language: English
Speaker: Lior Frenkel
This panel discussion brings together representatives from Israel’s leading critical infrastructure organizations to share their insights on cyber innovation, trends and standards.


July 28, 2020 | The Risk to Our Water Infrastructure from Cyber Hackers

Webinar Language: English
Speaker: Andrew Ginter
Missed the webinar?

July 28, 2020 | Critical Rail Networks in the Age of Digital Transformation

Steadily-escalating cyber threats put safe, reliable and efficient operations at risk for all rail systems operators. The industry urgently needs a robust, future-proof cybersecurity solution that will withstand even the most sophisticated attacks, for decades.

July 27, 2020 | IQPC – Re-thinking ICS Security By Upgrading IT/OT Controls, Frameworks And Threat Monitoring For The Digital Age

Missed the webinar? Explore 8 common firewall mistakes.

July 21, 2020 | SANS Webcasts – Eight Common OT / Industrial Firewall Mistakes

Webinar Language: English
Speaker: Mike Firstenberg
We explore eight common mistakes that firewall administrators make and describe how these mistakes can compromise ICS network security. The lesson here though is not stop making mistakes. We explore technology alternatives to OT firewalls that eliminate the potential for online attacks as a result of misconfiguration.

June 3, 2020 | What Do Really Secure OT / ICS Sites Do Differently? Webinar

Webinar Language: English
Speaker: Andrew Ginter
This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs.

May 14, 2020 | SANS Webinar: is OT security monitoring safe?

Webinar Language: English
Speaker: Andrew Ginter
A new “golden age” of security monitoring for industrial enterprises is dawning. This webinar reviews the industrial security monitoring problem, describes current trends, and demonstrates how these trends are combining into a new “gold standard” for universal industrial security monitoring. 

May 05, 2020 | SecurityWeek Webinar: Unidirectional Remote Access

Webinar Language: English
Speaker: Andrew Ginter
In these challenging times of quarantines and travel restrictions, remote access has become vitally important to industrial sites.

April 20, 2020 | Terilogy Webinar: OT / ICS Cybersecurity

Webinar Language: Japanese
Speakers: Takumi Miki & Elisha Olivestone
The webinar explores powerful new tools for securing industrial and manufacturing networks: Nozomi Guardian and Waterfall Unidirectional Gateways.

April 7, 2020 | EnergySec Webinar: Failures of Imagination: Smart Grid

Threats and Modern Mitigations
Webinar Language: English
Speaker: Andrew Ginter
Recording of the live EnergySec webinar – Failures of Imagination: Smart Grid Threats and Modern Mitigations with industrial security expert Andrew Ginter.


Waterfall Team