Sign up to save your podcasts
Or
Share The CISO's Impossible Task: Protecting Plant Floors They've Never Seen
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The CISO's Impossible Task: Protecting Plant Floors They've Never Seen
Craig and Dino tackle one of the most pressing challenges in industrial cybersecurity: the disconnect between IT security teams and operational technology environments.
They explore why traditional CISOs struggle to protect manufacturing plants despite their best intentions, revealing that most security executives get 30 minutes or less per quarter to present cyber risks to their boards—leaving little time to address the complexities of OT environments they barely understand.
The conversation digs into the fundamental differences between enterprise IT and plant floor operations, where safety and uptime trump traditional security approaches, and where telling an engineer to remove a Windows 7 machine from the network might mean shutting down millions of dollars in production.
Craig and Dino make a compelling case for why external expertise, cross-functional collaboration, and a fundamental shift in how organizations approach industrial cybersecurity are not just recommended—they're essential for survival in an evolving threat landscape where adversaries only need to get lucky once.
Chapters:
- (00:00:00) - The IT Security Mindset vs. OT Reality
- (00:01:00) - Has the CISO Really Engaged with Industrial Cybersecurity?
- (00:03:00) - The Disconnect: IT Owns the Network, OT Owns the Assets
- (00:05:00) - What CISOs Don't Know About the Plant Floor
- (00:07:00) - Safety and Uptime: The Top Two Priorities CISOs Must Understand
- (00:10:00) - The Asset Visibility Problem: Do You Really Know What's Out There?
- (00:13:00) - 30 Minutes or Less Per Quarter: The CISO's Impossible Task
- (00:16:00) - Why External Expertise Isn't Optional Anymore
- (00:19:00) - The Cyber Insurance Myth: Why Your Policy Won't Save You
- (00:22:00) - Secure by Demand: Holding Vendors Accountable
- (00:25:00) - Getting to the "Know": Where to Start and What to Ask
Links And Resources:
- Want to Sponsor an episode or be a Guest? Reach out here.
- Industrial Cybersecurity Insider on LinkedIn
- Cybersecurity & Digital Safety on LinkedIn
- BW Design Group Cybersecurity
- Dino Busalachi on LinkedIn
- Craig Duckworth on LinkedIn
Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!
View all episodes
By Industrial Cybersecurity InsiderCraig and Dino tackle one of the most pressing challenges in industrial cybersecurity: the disconnect between IT security teams and operational technology environments.
They explore why traditional CISOs struggle to protect manufacturing plants despite their best intentions, revealing that most security executives get 30 minutes or less per quarter to present cyber risks to their boards—leaving little time to address the complexities of OT environments they barely understand.
The conversation digs into the fundamental differences between enterprise IT and plant floor operations, where safety and uptime trump traditional security approaches, and where telling an engineer to remove a Windows 7 machine from the network might mean shutting down millions of dollars in production.
Craig and Dino make a compelling case for why external expertise, cross-functional collaboration, and a fundamental shift in how organizations approach industrial cybersecurity are not just recommended—they're essential for survival in an evolving threat landscape where adversaries only need to get lucky once.
Chapters:
- (00:00:00) - The IT Security Mindset vs. OT Reality
- (00:01:00) - Has the CISO Really Engaged with Industrial Cybersecurity?
- (00:03:00) - The Disconnect: IT Owns the Network, OT Owns the Assets
- (00:05:00) - What CISOs Don't Know About the Plant Floor
- (00:07:00) - Safety and Uptime: The Top Two Priorities CISOs Must Understand
- (00:10:00) - The Asset Visibility Problem: Do You Really Know What's Out There?
- (00:13:00) - 30 Minutes or Less Per Quarter: The CISO's Impossible Task
- (00:16:00) - Why External Expertise Isn't Optional Anymore
- (00:19:00) - The Cyber Insurance Myth: Why Your Policy Won't Save You
- (00:22:00) - Secure by Demand: Holding Vendors Accountable
- (00:25:00) - Getting to the "Know": Where to Start and What to Ask
Links And Resources:
- Want to Sponsor an episode or be a Guest? Reach out here.
- Industrial Cybersecurity Insider on LinkedIn
- Cybersecurity & Digital Safety on LinkedIn
- BW Design Group Cybersecurity
- Dino Busalachi on LinkedIn
- Craig Duckworth on LinkedIn
Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!