OT Security Blog: Insights & Industry News

USB Device Controls Using Verve Asset Management and BigFix Software

Reducing OT cyber security attack surface by disabling USB ports as a best practice system hardening task

Quantifying Cyber Risk

Driving empirical analysis of OT cyber security risk in providing effective OT asset management practices.

Virtual Twins in a Compensating Control Process for Windows 7 & Server 2008 EOL

Converting physical systems to virtual representations when Microsoft End of Lifes (EOLs) Occur on an Operating System

Quantifying Risk in OT Cyber Security

An initial process on Risk management and vulnerability management in terms of probabilities of successful cyber attacks on Operational Technology (OT)

OEM Suppliers: Are they keeping up?

Cyber Risk Increases in OT when IT Selects Tools

IT and OT worlds continue to run into one another – why is that a challenge? Because good intentions without proper context can lead to disaster!

The Balance of Risk Reduction vs. Cost, and The Question of Exposure

Pragmatically examining exposure as part of the risk reduction process to prevent and mitigate risks without fear-uncertainty-and-doubt (FUD).

How to map Department of Defense CMMC to NIST CSF

Exploring how to map Department of Defense CMMC to NIST CSF, 800-82 and 800-171 for enhanced target security levels and controls.

Building the Technical Case for Validated Asset Profiles

OT cyber security requires a wider and deeper understanding of what assets are in an OT environment to proactively plan and execute much-needed security practices.

Cyber Security and Risk Management: Contextual Risk in CVEs

Vulnerability and Risk Monitoring in OT Cyber Security

Focus on the aspects of monitoring as they practically apply to an OT environment, and look at challenges with alternatives to vulnerability scanning.

FERC Audit Report Findings - Part IV