מה הקשר בין ממר"ם, ניהול משבר הקורונה בבני ברק, מלחמת ה-7 באוקטובר וסייבר? על פניו, מדובר באירועים מנותקים לחלוטין. בפועל, החוט המקשר ביניהם מבוסס על שתי מילים: טכנולוגיות שו"ב (שליטה ובקרה) ואיש אחד – ד"ר אבי כהן.

נחשון פינקו מארח את אל"מ (מיל') ד"ר אבי כהן לשיחה מרתקת על ניהול משברים לאומיים: משדה הקרב ועד למגפות עולמיות, מהפכת ה-AI והסוכנים האוטונומיים (Agents): פיתוח מאובטח ותפקיד ה-DPO בעולם החדש. עידן הקוונטום: האיום (וההזדמנות) שמגיעים אלינו הרבה יותר מהר מהצפוי. הצטרפו לניתוח עמוק של שינויי הפרדיגמה בהגנת הסייבר בעולם כאוטי.

Welcome to the Seafood Summer Series 2026 on the Bitesand Bytes Podcast, and we are kicking it off with a great one!

Over 120 million tons of seafood are farmed every year. Mostpeople have no idea. And the technology making it happen: AI-powered feeding systems, underwater robots, satellite-connected ocean farms, is advancing faster than the policy and security frameworks trying to keep up with it.  That disconnect is exactly why this conversation matters.

James Sibley, known in the aquaculture world as the Fish Fluencer, is an aquaculture educator and content creator who has spent five years visiting fish farms across four continents to explain one of the most consequential and overlooked food systems on the planet. From salmon farms in Scotland and New Zealand to shellfish operations in Southeast Asia, James has seen firsthand how technology is transforming the way we farm the sea, and what happens when that technology outpaces the people managing it.

This episode covers aquaculture technology, smart fishfarming, ocean farming innovation, seafood supply chain transparency, and food security. If you eat seafood, work in food and agriculture, or care about where your food comes from, this one is for you.

---------------Guest: James Sibley"Fish Fluencer" | Aquaculture Creator & Founder

🌐 james-sibley.com💼 linkedin.com/in/jameslsibley📸 Instagram: @sibleyaqua▶️ TikTok: @sibleyaqua

---------------

Episode Key Highlights

00:03:15   Meet James Sibley: The Fish Fluencer

00:07:26 James’s Origin Story: From Fishmonger to Content Creator

00:14:12   Inside the Farm: AI, 4K Cameras, and Live Monitoring

00:18:19   Cleaner Fish: Nature's Answer to Sea Lice

00:24:33   Climate Change: The Ocean Feels It First

00:36:09   Aquaculture and Global Food Security

00:38:39   IoT, Drones, and Tech on the Water

00:41:39   Underwater Robots and ROVs

00:47:00  Cybersecurity on the Water

00:53:04   The Supply Chain Reality: 3 Years vs. 48 Hours

---------------

📘 Info on Kristin’s upcoming book “Securing What Feeds Us: Cybersecurity in Food and Agriculture.”
Publish Date: September 29, 2026, published by Wiley
Learn More here: https://securingwhatfeedsus.com/
Newsletter: https://kristin-king.kit.com/newsletter

---------------

🎤 Book Kristin Demoranville to Speak

Invite Kristin to speak at your conference, corporate event, webinar, or workshop. Visit the ⁠website⁠ and submit a request.

---------------

🎤 Bites and Bytes Podcast Info:

⁠Website⁠: Explore all our episodes, articles, and more on our official website.  

⁠Merch Shop⁠: Show your support with some awesomeBites and Bytes gear!

⁠Substack⁠: Stay updated with the latest insights and stories from the world of cybersecurity in the food industry.

Socials: ⁠TikTok⁠; ⁠Instagram⁠; LinkedIn⁠; ⁠BlueSky⁠

‍---------------

🛡️ About AnzenSage & AnzenOT

⁠AnzenSage⁠ is a cybersecurity advisory firm specializing in cyber-physical risk management for the food, agriculture, zoo, and aquarium industries. AnzenSage offers practical, strategic guidance to help organizations anticipaterisks and build resilience.  Learn more about their offerings at ⁠anzensage.com⁠.​
⁠AnzenOT⁠helps organizations understand and prioritize operationalrisk faster, without slow or static assessments. Compliance supported, including NIST, ISA/IEC 62443-2-1, NIS2 Directive, CMMC, and many other industry-specific frameworks.  Subscription access is available, including a student option.

Learn more at ⁠anzenot.com.

Craig and Dino dig into the widening gap between IT and OT and why the plant floor keeps getting left behind.

They break down what Dragos ' acquisition of Phosphorus signals for the future of IoT security in manufacturing, from cameras and label printers to X-ray inspection systems that ship with default passwords and almost never get patched.

The conversation gets sharp on artificial intelligence: the same models helping plants work smarter are now lowering the barrier for attackers, putting Stuxnet-style capabilities into the hands of people who lack the resources and sophistication that nation states once needed.

Craig and Dino expose the everyday habits that leave operations vulnerable, including system integrators plugging personal laptops straight into production networks, locked USB ports that solve only half the problem, and remote access so wide open that a single entry point can expose an entire plant.

They argue that nobody truly owns OT cyber hygiene, that frameworks like IEC 62443 and the NIST 800 82 series get named in RFPs but rarely enforced, and that leaders keep tripping over dollars to pick up nickels by choosing the cheapest bid over real protection.

It's a candid, experience-driven look at why industrial security moves so slowly and what plant leaders, engineers, and security teams can actually do about it.

Chapters:

• (00:00:00) - AI Enters the OT Battlefield
• (00:01:30) - Why IoT Is Creeping Onto the Plant Floor
• (00:03:30) - Printers, Cameras, and the Default Passwords Nobody Owns
• (00:06:00) - Dragos, Phosphorus, and the Managed Services Question
• (00:08:00) - How AI Lowers the Bar for Attacking Control Systems
• (00:09:40) - Stuxnet Then vs. AI-Powered Attacks Now
• (00:12:00) - The Laptop in the Plant: Contractors, USBs, and Open Networks
• (00:16:00) - Frameworks on Paper vs. Reality (IEC 62443 & NIST 800-82)
• (00:19:00) - Tripping Over Dollars to Pick Up Nickels
• (00:24:00) - Short-Tenure CISOs and Why You Shouldn't Go It Alone

Links And Resources:

• Want to Sponsor an episode or be a Guest? Reach out here.
• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• BW Design Group Cybersecurity
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Cybersecurity isn't the goal. Business resilience is.

In this episode of Protect It All, host Aaron Crow sits down with Lee Ward to explore why organizations need to move beyond compliance checklists and start focusing on what really matters: the ability to withstand, recover from, and adapt to disruption.

Drawing on more than two decades of experience spanning the UK civil service, logistics, supply chain operations, and governance, risk, and compliance (GRC), Lee shares practical insights on helping boards and executives understand cyber risk in business terms.

Together, Aaron and Lee discuss the realities of risk acceptance, operational technology challenges, patching constraints, and why resilience not perfection should be the ultimate objective of any cybersecurity program.

You'll learn:

Whether you're a security leader, executive, risk manager, or OT practitioner, this episode provides practical guidance for building organizations that can continue operating when disruptions inevitably occur.

Tune in to learn why resilience not just security is becoming the defining metric of successful organizations.

Key Moments: 

03:59 Understanding Cyber Risks for Leaders

07:16 Discussing non-cyber risks to services

11:12 Understanding business impact of cyber risk

15:45 Evaluating Cybersecurity Risks

19:37 Understanding installation complexities

21:15 Global risks affecting business resilience

24:27 Discussing regulation impacts on business

29:30 People's drive to make good choices

31:27 Industrial control systems demo at DEFCON

34:43 Limitations of technical security

38:06 The future of AI and education

About the guest : Lee Ward is a Governance, Risk Management, and Compliance (GRC) leader with more than 20 years of experience spanning the UK civil service, logistics, supply chain operations, and cybersecurity. Specializing in business resilience, risk governance, and operational technology security, Lee helps organizations translate complex cyber risks into meaningful business decisions. He is passionate about moving beyond compliance-driven security programs and helping leaders build resilient organizations that can adapt, recover, and thrive in an increasingly uncertain world.

How to connect Lee:  https://www.linkedin.com/in/lee-ward-882a54244/

Learn more about PrOTect IT All:

To be a guest or suggest a guest/episode, please email us at [email protected]

Please leave us a review on Apple/Spotify Podcasts:

Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124

Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4

Krista Arndt, the Associate Chief Information Security Officer (CISO) at the St. Luke's University Health Network, a 15-hospital health system in Pennsylvania and New Jersey, joins the Nexus Podcast to discuss cybersecurity and resilience in a large hospital system. 

Krista and her team talk about the role of healthcare cybersecurity teams in ensuring patient safety, and some of the ongoing challenges in keeping medical devices and the healthcare network available and resilient to attack. 

Krista also discusses a microsegmentation project implemented through Elisity that helped remove blockers impeding innovation around robotic surgical systems. 

Subscribe and listen to the Nexus Podcast here. 

• Balancing compliance, resilience, data sovereignty and uptime across IT and OT environments - whether a cloud-first strategy is viable in CNI
• How the need to harness operations data for optimisation, innovation, risk management, and organisational resilience challenges legacy security models
• Adapting proven resilience models from IT cloud transformation to OT security in CNI and the importance of public-private partnerships in its success 

- Thom Langford, Host, #teissTalk
- Amal Kotecha, Head of Technology, INEOS
- Sarah Clarke, Head of Information, Strategic Command
- Alex Holben, Strategy & Technology Officer, Fortinet

In this episode of Exploited: The Cyber Truth, host Paul Ducklin is joined by Shane Fry, CTO of RunSafe Security, and Andrew McPhee, Solutions Manager for Industrial Security at Cisco, to examine why visibility is one of the biggest challenges in OT cybersecurity.

As industrial environments become more connected, organizations are struggling to identify unknown assets, understand hidden dependencies, and secure systems that were never designed with cybersecurity in mind. McPhee explains how attackers exploit these blind spots, why traditional IT security approaches often fall short in OT environments, and how visibility and segmentation can help reduce risk.

Together, they explore:

• Why asset visibility is the foundation of OT security
• How unknown assets and communication pathways create risk
• The differences between active and passive asset discovery
• Why segmentation remains one of the most effective OT security controls
• How IT/OT convergence is expanding the attack surface
• The role of risk tolerance and risk acceptance in security decisions

From manufacturing facilities to critical infrastructure, this episode explores what security teams must understand before they can effectively protect the systems they depend on.

התוקפים מבינים שטכנולוגיה אפשר לעדכן ולחסום, אך רגשות ותגובות אנושיות נשארים קבועים, והם מנצלים את האמון, הפחד והסקרנות שלנו כדי לגרום לנו לפתוח להם את הדלת מרצוננו.

כיום להסתמך על המשתמש בלבד שיזהה פישינג או דייפ-פייק כבר לא עובד, התחכום והתגובה המיידית של מתקפות משולבות AI מצליחות להטעות גם אנשי מקצוע הטובים ביותר לא כול שכן משתמשים רגילים.

הפתרון טמון במערכות הגנה אקטיביות מבוססות AI שיכולות לנתח בזמן אמת תגובות, נקודות לחץ, ניתוח עומק של לינקים ולהתעדכן בכול רגע מתקיפות דומות שמתרחשות ברשת.

נחשון פינקו מארח את אורי סגל יזם סדרתי ומנכ"ל חברת הסייבר הישראלית Cyvore (סייבור) בשיחה על אבטחת סביבת עבודה (Workspace Security) הגנה פרואקטיבית מפני מגפת הפישינג (דיוג), גניבת זהויות והונאות דיגיטליות

Hackers recognize that while technology can be updated and protected, human emotions and behaviors remain predictable. They capitalize on trust, fear, and curiosity, often manipulating individuals into granting them access unintentionally

Today, relying solely on users to identify phishing or deepfake attempts is no longer effective. The sophistication and speed of AI-driven attacks can deceive even seasoned professionals, making it increasingly difficult for average users to distinguish threats

The answer lies in proactive, AI-powered defense systems that analyze behavioral patterns, stress indicators, and suspicious links in real time. These systems continuously update themselves by learning from emerging threats across the digital landscape

Nachshon Pincu hosts Uri Segal, serial entrepreneur and CEO of Israeli cybersecurity firm Cyvore, for an in-depth discussion on Workspace Security and proactive strategies to combat phishing, identity theft, and digital fraud.

Critical infrastructure is under attack. AI just made it easier. Legacy devices can't be patched. Piotr Kupisiewicz, CTO at Elisity, describes how your best defense is the basics that you're ignoring.

Klaus Mochalski and OT security veteran Dale Peterson (S4 Events) discuss the long-standing discrepancy between predicted cyber doom and the actual lack of catastrophic OT incidents. Discover how the crowdsourced OT Incident Impact Score helps eliminate media FUD, and learn why tracking "near misses" is the true key for asset owners to understand and mitigate real-world threats.

You can find more information on OT Security Made Simple at rhebo.com or send us your ideas, questions, or guest suggestions at [email protected].