In this special rewind edition of Industrial Cybersecurity Insider, we revisit some of the most powerful insights shared on how to elevate OT cybersecurity across complex, distributed environments.

From budget allocation strategies to disaster recovery frameworks and the nuances of executive engagement, this episode distills frontline lessons into a compact, high-impact listen.

Whether you're navigating remote access risks, managing hybrid architectures, or striving to align plant managers with corporate cybersecurity goals, these reflections are a roadmap for driving resilience and maturity in your OT security strategy.

Chapters:

• 00:00:00 - Rewind Kickoff: From Blind Spots to Bold Predictions
• 00:00:46 - The A-Z of Industrial Cybersecurity for OT Environments with Industry Expert Bryson Bort
• 00:10:57 - Gartner, DOGE, and the Future of OT Cybersecurity Policy
• 00:21:38 - Uncovering Blind Spots in OT Cybersecurity

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• BW Design Group Cybersecurity
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Dino and Craig tackle one of the most misunderstood challenges in cybersecurity for industrial environments. The persistent disconnect between IT-led cybersecurity tools and operational technology realities.

They explore the concept of "shadow OT," as well as the limits of traditional IDS deployments.

They discuss why visibility is key to protecting critical systems. Vulnerability scanning alone isn't enough.

Real world case studies reveal how failing to engage OT teams derails cybersecurity strategies.

One case involved rogue servers causing daily production failures. Another featured misconfigured modules choking brewery operations. These examples show that even the most advanced strategies fail without OT team involvement.

For leaders in manufacturing, utilities, and critical infrastructure, this is a must-listen conversation. It's about redefining risk management through OT-first thinking.

Chapters:

• 00:00:00 - When Machines Stop, Money Bleeds: The Downtime Dilemma
• 00:00:47 - Shadow IT or Ingenious OT? Rethinking Rogue Tech
• 00:02:29 - Cybersecurity Isn’t Enough: The OT Risk You’re Missing
• 00:04:37 - Server Ghosts & Brewery Blunders: Fixing What IT Can’t See
• 00:06:41 - Visibility is Power: Using the Tools You Already Own
• 00:09:50 - IT vs. OT: Breaking Silos, Building Alliances
• 00:13:28 - Final Thoughts: Who Really Owns OT Security?

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• BW Design Group Cybersecurity
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this special rewind episode we highlight outside influences shaping control system integrity, the impact of AI, emerging technologies, and the dynamics of building a career in OT cybersecurity.

Drawing from frontline experiences and industry events like the S4 Conference, the discussion explores the growing organizational shift toward dedicated OT cybersecurity roles.

We address the critical need for alignment between capital and operational expenditures, and the importance of selecting technologies that provide actionable visibility across diverse plant environments.

Listeners will gain strategic guidance on integrating cybersecurity into capital planning, addressing asset variability across sites, and implementing scalable, non-disruptive security frameworks.

From OT-specific IDS deployment to balancing remote access with zero-trust principles, this episode offers practical, forward-looking advice.

Whether you're a practitioner or a decision-maker, focused on securing extended IIoT environments while maintaining operational resilience, this episode covers practical and relatable challenges and solutions.

Chapters:

• 00:00:00 – A Strategic Rewind: Exploring the Emerging Roles, Budget Realities, and Lessons Learned in OT Cybersecurity
• 00:00:41 - Gartner, DOGE, and the Future of OT Cybersecurity Policy
• 00:12:12 - The Future Looks Bright : Building a Career in OT Cybersecurity
• 00:22:44 - AI, Global Trends, and More: A Glimpse into the Future of OT Cybersecurity with Claroty

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• BW Design Group Cybersecurity
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Dino sits down with Mike Holcomb, Fellow and Director of ICS/OT Cybersecurity at Fluor, to explore the critical, and often overlooked challenges in securing operational technology.

From his early fascination with hacking culture to leading OT security for one of the world’s largest engineering firms, Mike shares personal insights and lessons learned.

The conversation covers the delayed cybersecurity maturity in OT environments and the lasting impact of the Colonial Pipeline breach.

They address the crucial role of visibility, engineering partnerships, and cultural buy-in when building secure industrial systems.

Whether you’re managing pipelines, power grids, or manufacturing floors, this episode delivers actionable insights and strategic foresight for leaders protecting our most vital infrastructure.

Chapters:

• 00:00:00 - Why OT Security Still Falls Behind
• 00:01:03 - Mike Holcomb’s Unlikely Path to Cybersecurity
• 00:01:23 - Hacking Curiosity and a Love for Breaking Things
• 00:02:16 - From Network Admin to OT Defender
• 00:03:08 - Stuxnet, Colonial, and the Wake-Up Calls We Ignored
• 00:06:18 - When OT and IT Don’t Speak the Same Language
• 00:12:14 - Threats Are Getting Smarter — Are We Keeping Up?
• 00:26:29 - Evolving the Culture of Cyber Hygiene
• 00:32:14 - Final Takeaways for Security Leaders

Links And Resources:

• Mike Holcomb on LinkedIn
• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• BW Design Group Cybersecurity
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Dino welcomes Kevin Kumpf, Chief OT/ICS Security Strategist at Cyolo to this episode. They discuss the growing challenges and evolving strategies around cybersecurity in industrial environments.

Kevin shares a seasoned perspective on bridging the gap between IT and OT, busting myths about Zero Trust certifications, and the dangers of underutilized security tools - or "shelfware."

From real-world examples involving breweries, milk production, and energy plants, the conversation uncovers how lack of visibility, broken remote access practices, and aging systems create critical vulnerabilities.

Most importantly, Kevin offers actionable advice for CISOs, CTOs, and plant managers on building resilient cybersecurity frameworks without disrupting operations.

Don't miss this episode full of practical advice from industry experts.

Chapters:

• 00:00:00 - Kicking Off: Why OT Cybersecurity Can't Wait
• 00:01:18 - Meet Kevin Kumpf: From Bank Vaults to Industrial Battlegrounds
• 00:02:56 - Hard Truths About Securing Operational Technology
• 00:06:42 - Shelfware Syndrome: Why Tools Fail Without Strategy
• 00:12:09 - Plant Managers, Vendors, and the Battle for Cyber Resilience
• 00:23:56 - Remote Access Exposed: The Hidden Risks Inside Your Plant
• 00:30:58 - Closing Thoughts: Building Stronger, Smarter Industrial Defenses

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Dino and Craig address the recent acknowledgment by China of their role in U.S. infrastructure hacks. They explore the urgent cybersecurity challenges facing industrial environments.

With rising geopolitical tensions, tariffs, the push to bring more manufacturing back to the U.S. and increasing attacks on critical infrastructure, the stakes have never been higher.

From end-of-life PLCs still running core operations, to the disconnect between IT and OT leadership, this conversation identifies the systemic gaps leaving industrial operations exposed.

They outline the pressing need for visibility, actionable incident response plans, and a cultural shift toward collaboration across the stack, from plant floor to the boardroom.

Whether you’re a CISO or an operations lead, this episode offers real-world insights, battle-tested perspectives, and one clear takeaway: in cybersecurity, doing nothing is no longer an option.

Chapters:

• 00:00:00 - Kicking Off: Why IT-OT Unity Isn’t Optional Anymore
• 00:01:17 - Cyber Threats, China, and the Global Wake-Up Call
• 00:02:16 - CISA’s New Role: From Background Player to OT Ally
• 00:05:32 - Still Separate, Still Vulnerable: Why IT & OT Must Sync Up
• 00:09:48 - Blind Spots Kill: Why Visibility Is the Real MVP
• 00:10:43 - Remote Access Realities and the Myth of the Air Gap
• 00:20:29 - Crisis Mode: Are You Ready for the Worst?
• 00:23:50 - Dino & Craig’s Parting Shot: Do Something - Now

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity & Digital Safety on LinkedIn
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this special rewind episode, Dino Busalachi and Jim Cook address the messy but critical reality of implementing Zero Trust in operational technology (OT) environments.

Drawing from years of hands-on experience, they break down why traditional IT frameworks often fail on the plant floor, especially when facing flat OT networks, legacy assets, and limited change windows.

They introduce a "bucket approach" to segmenting and securing OT networks from the ground up. With real-world insights into asset inventory, process integrity, remote access challenges, and cross-functional collaboration, this episode is invaluable.

Whether you're a CISO, CTO, an OT engineer, or IT expert; this episode offers solid advice on navigating the convergence of IT and OT in complex industrial systems and environments.

Chapters:

• 00:00:00 – Why Zero Trust Doesn’t Fit the Plant Floor (Yet)
• 00:00:45 - Zero Trust : IT versus OT with Dino Busalachi and Jim Cook
• 00:15:59 - Zero Trust in OT: Adapting IT's Playbook for Enhanced Security

Links And Resources:

• Industrial Cybersecurity Insider
• LinkedIn Cybersecurity Group Page
• Dino Busalachi on LinkedIn
• Jim Cook on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this episode, Dino and Craig address the practicalities of building cyber resilience directly into manufacturing environments - rather than after the fact.

Using real-world analogies and field-tested insights, they break down why treating OT security like physical safety is crucial.

They challenge the outdated mindset of retrofitting cybersecurity protection after deployment of industrial plant floor equipment.

This episode covers all the key elements of protecting your plant floor. From the importance of designing cybersecurity upfront, to implementing the SANS 5 Critical Controls, specific to cybersecurity in operational technology (OT) environments.

Whether you're planning a greenfield build or managing legacy systems, this episode equips mid-to-senior leaders with actionable strategies to align IT and OT teams, boost visibility across XIoT assets, and future-proof operational environments in high-risk industries.

Chapters:

• 00:00:00 - Kicking Off: Why Cybersecurity Can’t Be an Afterthought in Manufacturing
• 00:01:52 - Dino’s Five Must-Have OT Security Controls You Should Already Be Using
• 00:03:45 - When IT and OT Collide: Real Talk on Silos, Strategy, and Responsibility
• 00:06:08 - You Can’t Protect What You Can’t See: The Visibility Wake-Up Call
• 00:11:24 - Build It In, Don’t Bolt It On: Making Cybersecurity Part of the Machine
• 00:19:26 - Lost Docs and Retiring Experts: Managing Risk Across the Lifecycle
• 00:20:41 - Dino and Craig’s Final Word: Start Now, Start Smart—Security Is the New Safety

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity Insider Newsletter
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this episode, Dino and Craig dive deep into the disturbing talent exodus in cybersecurity. The discussion is sparked by Gartner’s prediction that 25% of cybersecurity professionals will leave the field in the next year.

They explore the growing gap between IT and OT teams, the lack of CISO influence in executive leadership, and the friction between cybersecurity goals and operational uptime.

With real-world anecdotes and hard-hitting insights, they unpack everything from rogue assets and malware in OT environments to the challenges of implementing EDR tools in live production lines.

Whether you're a CISO, CIO, or plant manager, this episode offers a candid look at the complex dynamics of securing industrial environments — and how collaboration is the only path forward.

Chapters:

• 00:00:00 – Kicking Off with a Brutal Reality Check on Cybersecurity
• 00:01:06 – Gartner Says 25% of Cyber Pros Are Leaving — Here’s Why That Matters
• 00:03:15 – IT vs OT: The Culture Clash Still Killing Cyber Progress
• 00:09:35 – Why the Wrong Service Partner Could Be Your Biggest Risk
• 00:14:05 – Malware, Rogue Assets, and the Ugly Truth About Your Plant Floor
• 00:18:22 – Real Strategies for Fixing the IT/OT Disconnect (Without Killing Uptime)
• 00:24:06 – Stop Talking. Start Acting. What Cyber Leaders Need to Do Today

Links And Resources:

• Industrial Cybersecurity Insider on LinkedIn
• Cybersecurity Insider Newsletter
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

In this episode, Dino and Craig tackle one of the most overlooked vulnerabilities in industrial cybersecurity: the unintentional chaos caused when IT security procedures are blindly applied to OT environments.

Using real-world examples like the CrowdStrike EDR failure, they illustrate how tools meant to protect can actually shut down production lines, cripple HMIs, and introduce massive operational risk.

They call out the air-gap myth, the need for shared authority between IT and OT, and the critical importance of context when deploying cybersecurity solutions on the plant floor.

For executives and practitioners alike, this episode is a wake-up call to rethink governance, accountability, and collaboration between traditionally siloed IT and OT teams.

Chapters:

• 00:00:00 – IT vs. OT: The Unspoken War
• 00:01:03 – Meet Your Guides: Dino & Craig
• 00:01:05 – IT/OT Explained… Without the Jargon
• 00:02:26 – How IT Crashed the Plant Floor
• 00:05:12 – Talk to Me Like I’m Production
• 00:08:53 – Security Priorities: Worlds Collide
• 00:13:40 – Vendors, Integrators & Invisible Risks
• 00:21:52 – Who Owns the Fallout?

Links And Resources:

• Cybersecurity & Digital Safety Group on LinkedIn
• Dino Busalachi on LinkedIn
• Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!