The Podcast of the S4 ICS / SCADA Security Conference
Waterfall Security Solutions and ICSSTRIVE put out an annual threat report that Dale Peterson believes is the best in OT. Why? It only includes incidents that had physical consequences on systems monitored and controlled by OT.Â
Dale and Andrew discuss:
What is in and out of scope for the report.
The breakdown of the 68 incidents that occurred in 2023 by industry sector, cause, threat actor and more.
The impact reporting requirements may have on these numbers in the future.
What percentage of OT cyber incidents with physical consequences are made public.
Ransomware on IT causing physical consequences, exfil v. encryption, and what asset owners should do given this represents 80% of the known incidents in the report.
And more.
Links:
2024 Threat Report: https://waterfall-security.com/ot-insights-center/ot-cybersecurity-insights-center/2024-threat-report-ot-cyberattacks-with-physical-consequences/Â
ICSSTRIVE: https://icsstrive.com
S4 Events YouTube Channel: https://youtube.com/s4events
Patrick Miller has OT cybersecurity experience as an asset owner, PacificCorp. As a regulator and one of the first NERC CIP auditors with WECC. As a community organizer creating and leading EnergySec and the BeerISAC. And as an entrepreneur creating and leading a number of consulting practices. He is currently the Founder of Ampyx Cyber.
Â
In this episode Patrick and Dale discuss:
Why Patrick changed the company name and selected Talinn as the location for the new European office.
The major differences in approaches to OT cybersecurity and risk management between Europe and the US. (more than just regulatory differences)
What has the EU learned or improved on regulation from NERC CIP.
What is the current state of NERC CIP regulatory risk? Are the regulated entities understanding and meeting the standards’ requirements?
The challenge of slow NERC CIP modifications, eg virtualization and cloud.
Bad standard & good regulator v. good standard & bad regulator.
Should water follow the NERC CIP model as recommended by AWWA?
How Patrick is dealing with AI.
Â
Links
Ampyx Cyber: https://ampyxcyber.com
Patrick’s Critical Assets Podcast: https://amperesec.com/podcast
Subscribe to Dale’s ICS Security Friday News & Notes: https://friday.dale-peterson.com/signup
Advertise on Unsolicited Response: https://dale-peterson.com/advertising/Â
Â
Emma Stewart joins Dale to discuss the 3 big OT & ICS security stories from the first quarter. They end by giving their win, fail and prediction for Q1.
In this solosode episode Dale reviews the status of his three predictions from the Q1, 2 and 3 quarter in review episodes and answers a listener question.
Dale is joined by Steve Pozza, CISA Section Chief of Operational Resilience, and Tom Millar, CISA Branch Chief of Resilience, to discuss some of CISA's security services for asset owners. They discuss:
Links
Andrew Ginter published his third book this year: Engineering-Grade OT Security. Dale interviews Andrew on the book including:
 Links
This week is a Dale Peterson solosode.
Updates and Announcements
Dale provides updates about S4x24 ticket sales and announces the Women In ICS Security program and sponsor package.
Main Topics
Your feedback is valuable to us. Should you encounter any bugs, glitches, lack of functionality or other problems, please email us on [email protected] or join Moon.FM Telegram Group where you can talk directly to the dev team who are happy to answer any queries.