The Industrial Security Podcast

Ransomware continues to evolve and sophisticated phishing attacks are the most popular attack vector. James McQuiggan of KnowBe4 explores ransomware, phishing and what we can do about it.

Internet communications are creeping into electric distribution systems. James McCarthy and Don Faatz join us from the NIST NCCoE to talk about this project & others where they provide detailed "how to" industrial security documentation.

Join us to learn about the Beer ISAC movement, the Beer ISAC podcast, the Russian industrial security community and other community initiatives. Anton Shipulin and Vladimir Dashchenko of Kaspersky are our guests, exploring these and other initiatives that Kaspersky supports in local and global industrial security communities.

Explore a targeted ransomware attack at a pharmaceuticals plant, the incident response and how hard it is to just "restore from backup" with Ofer Shaked, Co-Founder & Chief Technology Officer at SCADAfence.

Author, researcher and industrial security pioneer Jake Brodsky explores the security and operational benefits of configuring self-consistency checks into industrial control systems. He argues that these checks quickly pay for themselves through operational benefits, and substantially improve our ability to detect the most sophisticated of cyber attacks as well.

Derek Harp, CEO and Co-Founder of CS2AI and Founder of The Cyber List speaks to the history and future of CS2AI, and provides some insights into cyber security training for non-cyber-savvy audiences.

Blockchain is a hot buzz-word, but does it really make sense for industrial control systems? Join Roman Arutyunov, Co-Founder at Xage Security to explore industrial block-chains: intrinsically distributed and redundant, proof of authority vs proof of work, a leger for permissions, not for bitcoin, and many other topics.

Marco Blume, Product Manager for Embedded at WIBU Systems introduces discrete manufacturing and explores how intellectual property protection, safety and cybersecurity work in that vertical and others.

Phil Neray, VP Industrial Security of CyberX reviews findings, remediations and C-level responses for security assessments at 1800 industrial sites.

Industrial Defender was a pioneer of Industrial Security, but the brand dropped off the radar for several years. As of January though, Industrial Defender has returned. Phil Dunbar, CTO of the new Industrial Defender joins us to explore the significance of the firm's historical contributions, and where the new Industrial Defender is headed today.

Andy Bochman of Idaho National labs describes CCE, a new methodology for industrial security with a focus on mission assurance, which means different things in different industries.

Robert Pitcher of Public Safety Canada explores Canadian industrial security, including very popular attack training/awareness sessions and the annual industrial security symposium.

Security PHA Review - a new methodology for protecting safe operations. Join our discussion with one of the authors of the new ISA book describing a robust connection between safety and cyber security.

How education differs from training, with examples from Dr. Art Conklin at the University of Houston.

And other topics such as analog control systems, IIoT at nuclear sites and control system product "labeling" for security. Join Matt Gibson from the Electric Power Research Institute (EPRI) to explore these and other applied research insights for industrial security.