Online
Webinar Replay : Building a Resilient OT Security Program - Align, Transform, Respond
With guest speaker: Marco Ayala, President at InfraGard Houston and Global OT Security LeaderTargeting critical infrastructure through Operational Technology (OT) cyberattacks is now part and parcel of the global geopolitical landscape. Key technology and security trends indicate that the integrity of OT systems is critical for avoiding severe real-world physical impacts. However, the road to achieving OT security maturity is loaded with challenges.
During the session, Kroll OT security experts Sameer Koranne and Sumit Janmejai are joined by guest speaker, Marco Ayala, President at InfraGard Houston and Global OT Security Leader.
The briefing covers:
- Insights into today’s OT threat landscape, from supply chain attacks and ransomware to more physical threats such as unauthorized physical access
- Common obstacles to OT security maturity, such as legacy systems, low tolerance for system downtime and the shortage of specialized skills for proprietary systems
- Key steps to getting started with your OT cybersecurity program and mapping out key milestones to progress your maturity across key security domains
Key Security Gaps in OT – Are You at Risk?
“One of the big gaps I see when I'm talking to manufacturers or any of the types of facilities that we deal with, is a lack of understanding about whether they have a true demarcation, a place where they can actually break away from IT if there is an outbreak or an incident.” Marco Ayala
Here, our experts outline their perspective on the most critical security gaps impacting OT security. From lack of visibility to the risks associated with legacy systems to the ineffective planning of roles, they drill down into the key errors organizations are making to put their OT systems at risk. Watch now.
Overcoming Challenges – Improving Your Security Posture
“The trend that I've noticed, especially after COVID-19, is that organizations have started to look more carefully at their remote access solutions and remote access paths. They are investing in just-in-time zero trust-based remote access solutions, but there are still many gaps to be addressed.” Sumit Janmejai
Here, our experts move on to what businesses can do to address security gaps, exploring dos and don'ts, myths, fallacies and pitfalls. While they point out there is some progress in how organizations are addressing OT security, there is still much more to be done to ensure better OT security, for example, through the use of intrusion detection systems.
Mitigate Against Potential Pitfalls
“I’ve been fortunate enough to work in environments where a single minute of unp lanned downtime means millions of dollars washed away. We need to be careful about the unique limitations and requirements of the OT environment.” Sumit Janmejai
Here, the team discusses the types of pitfalls associated with improving OT security architecture, such as the risks of “lifting and shifting” IT security playbooks into OT systems. As they highlight, OT security has its own unique limitations and challenges, so improvements must be undertaken strategically. Listen now to discover the steps that organizations can take to manage and mitigate the potential risks.
Improve Your OT Resilience – Understanding Transformation
“Transformation is really about taking a view of where you are at and looking at how can you improve your resiliency by completing the fundamental steps in a strategic manner.” Sameer Koranne
Here, the experts discuss their view of the differences between organizational transformation and OT security transformation. They explore how an effective approach to transformation cannot overlook the core principles of cybersecurity, such as protecting systems and implementing effective recovery strategies. Watch now.
Implementing New Technology – A Double-Edged Sword?
“I think there's a balance. While I think AI does have great potential, from an OT perspective, we have to be very cognizant about auditing and testing these technologies before we just let them loose in our environments.” Marco Ayala
Here, the team explores how newer technologies such as AI, machine learning and digital twins, are starting to reshape opportunities and risks in OT security. They share a note of caution that while these innovations are important, organizations must be realistic about what is achievable and vigilant about not overlooking the core elements. Watch now.
The Building Blocks to an Effective OT Crisis Response
"The clear message, especially coming from the control system space and the operational space, as I do, is that we need to be able to work together from an IT perspective and an OT perspective. To be able to work that plan, we need to understand what needs to be done first, while maintaining safety and integrity.” Marco Ayala
Here, our experts discuss how organizations can best handle crisis response when under pressure. Watch now to gain insights into the key building blocks for building an effective OT incident response plan, including identifying key responsibilities and people, scheduling and compliance.
The Unknown Unknowns – The Challenges Organizations are Facing
“Having an understanding of what’s in your environment really helps build a better and more sound OT security program” Sameer Koranne
Here, the experts share their views on the biggest challenges to building an effective OT security program. They discuss key solutions to these obstacles, such as mapping with intrusion detection systems, understanding your asset landscape, creating a plan specifically for OT and the importance of skilled personnel before moving on to discussing their take on the one bold move organizations should take to progress their OT security over the next 12 months.
Stay Ahead with Kroll
Cyber and Data Resilience
Kroll merges elite security and data risk expertise with frontline intelligence from thousands of incident responses and regulatory compliance, financial crime and due diligence engagements to make our clients more cyber- resilient.
OT Security
Safeguard your most critical systems against cyber threats with Kroll’s comprehensive OT security services, ensuring visibility, business continuity and resilience.
Cyber Risk Assessments
Kroll's cyber risk assessments and advisory services deliver actionable recommendations to improve security, using industry best practices & the best technology available.
Red Team Security Services
Red team security services from Kroll go beyond traditional penetration testing, leveraging our frontline threat intelligence and the adversarial mindset used by threat actors to push the limits of your information security controls.
Cyber Risk Retainer
Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.
Digital Forensics Services
In the event of a security incident, Kroll’s digital forensics investigators can expertly help investigate and preserve data to help provide evidence and ensure business continuity.
