@BEERISAC: OT/ICS Security Podcast Playlist

Podcast: Industrial Cybersecurity Insider
Episode: Is Your IIoT Strategy Creating More Security Risks?
Pub date: 2026-06-09

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization

Craig and Dino address one of the most overlooked problems in OT security: the IIoT devices your security tools don't automatically detect.
Most OT intrusion detection platforms do a reasonable job of identifying core control-layer assets such as PLCs, drives, and motor control centers. The problem is everything else. Laptops plugged into the network, third-party devices brought in by contractors, and a growing range of connected IIoT equipment often go completely undetected. Those are the gaps where risk accumulates.
Craig and Dino explain why the belief that machines are air-gapped is a dangerous myth, how PLCs acting as gateways prevent intrusion detection platforms from seeing the devices behind them, and why an asset inventory is not the same as knowing your real risk and CVE exposure in multi-vendor environments.
They reframe OT cybersecurity as a process-integrity problem and show how unmanaged network activity, third-party remote access, and even routine IT security scans can quietly degrade OEE and trigger unplanned downtime that costs millions.
Using predictive-maintenance analogies such as thermal, harmonics, and vibration sensing, they make the case for treating digital anomalies the same way mature plants already treat mechanical ones.
They close by examining why so many OT detection tools become shelfware, how to escape alert fatigue, and the two practical paths to real IT/OT convergence: building the right relationships with OEMs, system integrators, and AEC partners, and designing security-ready facilities from the ground up.
It's a practical listen for CISOs, plant and engineering leaders, and OT/IT teams responsible for securing manufacturing and critical infrastructure.
Chapters:
(00:00:00) - Why No Industrial Asset Is Truly Air-Gapped
(00:01:08) - IoT vs. IIoT: How OT Assets Get Classified
(00:03:15) - The Control-Layer Blind Spot: Drives, Robots, and Motor Controls
(00:05:25) - How PLC Gateways Hide Assets From Intrusion Detection
(00:07:30) - Asset Inventory Isn't Risk: The CVE Gap in Multi-Vendor Plants
(00:08:55) - When Cyber Blind Spots Become Costly Downtime
(00:10:05) - Process Integrity: How Security Scans Disrupt Production
(00:11:35) - Predictive Maintenance Meets Digital Anomaly Detection
(00:17:45) - Avoiding OT Shelfware and Alert Fatigue
(00:19:45) - IT/OT Convergence: Choosing a Partner and Building Secure-by-Design

Links And Resources:
Want to Sponsor an episode or be a Guest? Reach out here.
Industrial Cybersecurity Insider on LinkedIn
Cybersecurity & Digital Safety on LinkedIn
BW Design Group Cybersecurity
Dino Busalachi on LinkedIn
Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It All (LS 27 · TOP 10% what is this?)
Episode: Continuous Trust in Cybersecurity : Why Identity Is the New Security Perimeter
Pub date: 2026-06-08

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization

The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Industrial Cybersecurity Insider
Episode: Five Federal Agencies. One Zero-Trust OT Briefing. Most Haven't Read it.
Pub date: 2026-06-03

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization

The joint CISA, FBI, Department of War, Department of Energy, and Department of State briefing on adapting Zero Trust to operational technology landed on April 29. Has OT leadership read it?
In this episode, Craig and Dino address how the European Cyber Resilience Act is quietly forcing US plants into failed audits, why IT teams still see less than a third of OT assets, how EDR tools are taking down $100K-an-hour packaging lines, and why only a handful of integrators in North America have a real OT cybersecurity practice.
They walk through what zero trust and micro-segmentation actually look like inside a 20-year-old plant with flat layer-two networks, DLR rings, jump boxes, and Cradlepoint workarounds, and lay out the first concrete move every CISO and CIO should make to start closing the IT/OT gap.
Chapters:
(00:00:00) - Cold Open: How the European CRA Is Failing US Plants
(00:01:30) - The April 29 CISA/FBI Zero Trust in OT Briefing Nobody Read
(00:05:00) - Compliance Without Teeth: Why US Regulations Aren't Moving the Needle
(00:07:30) - When CrowdStrike Shuts Down a $100K-an-Hour Packaging Line
(00:10:30) - The Visibility Gap: IT Sees Less Than a Third of OT Assets
(00:15:30) - OEM Resistance: The Million-Dollar, Six-Month Cybersecurity Tax
(00:18:30) - The Cradlepoint Workaround: How Plant Managers Bypass IT
(00:21:30) - Layering Zero Trust onto a 20-Year-Old Plant Without Rip-and-Replace
(00:25:30) - Why Only 5–10 of 1,000 Integrators Have a Real OT Cyber Practice
(00:31:30) - Where CISOs Should Actually Be Looking (Hint: Not RSA or Black Hat)

Links And Resources:
Want to Sponsor an episode or be a Guest? Reach out here.
Industrial Cybersecurity Insider on LinkedIn
Cybersecurity & Digital Safety on LinkedIn
BW Design Group Cybersecurity
Dino Busalachi on LinkedIn
Craig Duckworth on LinkedIn

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

The podcast and artwork embedded on this page are from Industrial Cybersecurity Insider, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: (CS)²AI Podcast Show: Control System Cyber Security
Episode: 132: Solving Problems at Scale: Kenny Mesker on OT Cybersecurity Strategy, Risk, and Leadership
Pub date: 2026-06-02

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization

Kenny Mesker, OT Cybersecurity Strategist and Distinguished Engineer at Chevron, joins Derek Harp to share his remarkable journey from growing up on a farm in West Texas to becoming one of the industry's leading voices in operational technology (OT) cybersecurity.
With more than 30 years of experience spanning electric utilities, SCADA systems, industrial control systems, and cybersecurity, Kenny reflects on the evolution of OT security from the days of air-gapped networks to today's interconnected digital environments. He discusses how a passion for problem-solving led him from electrical engineering into industrial operations and ultimately into cybersecurity strategy.
Kenny offers practical advice for professionals looking to enter the OT cybersecurity field, explaining why hands-on operational experience remains one of the most valuable foundations for success. He also explores the challenges of IT/OT convergence, the importance of risk assessment, and how cybersecurity leaders must think beyond individual systems to protect entire organizations and critical infrastructure.
Looking ahead, Kenny shares his perspective on artificial intelligence, cloud technologies, and the future of OT architectures, highlighting both the opportunities and challenges these emerging technologies will bring to industrial environments.
Whether you're an engineer, cybersecurity professional, student, or industry leader, this episode provides valuable insights into building a successful OT cybersecurity career while helping protect the systems that power modern society.

The podcast and artwork embedded on this page are from Derek Harp, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: ICS Cyber Talks Podcast
Episode: Yigal Gueta CEO & Dor Tuchman VP-Tech @Scadasudo on cyber sales and tailored solutions for customers
Pub date: 2026-06-02

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization

אחד הנושאים היותר מאתגרים למנהל אבטחת מידע בארגון הוא בחירת טכנולוגיות הגנת סייבר, מאות מוצרים שלכל אחד מהם השטיק שלו, ברושורים ומצגות על כך שהמוצר עושה הכול כולל קפה

נוסיף את העובדה שאנשי אבטחת מידע נמצאים תמיד תחת הצף וקשה להם לבדוק מגוון טכנולוגיות ולכן הם נאלצים לקבל סוג של החלטה מושכלת ולבצע בדיקת יתכנות למוצר בודד ומאידך החשש מהחלפת טכנולוגיה מוטמעת במוצר חדש

נחשון פינקו מארח את יגאל גויטע מייסד ומנכ"ל ואת דור טוכמן סמנכ"ל הנדסה ופיתוח עסקי בסקאדה סודו, בשיחה על בכירה של טכנולוגיות סייבר בכובע היועץ, הצורך בהכרות עמוקה עם הצרכים של הלקוח לפני שבכלל ניגשים למציאת פתרונות והחשיבות של התאמת פתרון לצורך ולא צורך לפתרון

A major challenge for Chief Information Security Officers (CISOs) is choosing the right cybersecurity technologies. With hundreds of vendors touting unique value propositions and comprehensive solutions, the selection process becomes overwhelming. Security teams, often stretched thin, lack the bandwidth to assess multiple platforms at once. As a result, CISOs must make strategic choices and conduct a Proof of Concept (PoC) on a carefully chosen solution. On the other hand, there is apprehension about replacing an embedded, established technology with a new product.

Nachshon Pincu hosts Yigal Gueta, Founder & CEO, and Dor Tuchman, VP of Engineering & Business Development at SCADASudo, in a comprehensive discussion on evaluating cyber technologies from a consultant’s perspective. The conversation highlights the importance of thoroughly understanding client needs before engaging with vendors and stresses the necessity of aligning solutions with business requirements—rather than adapting cyber needs to fit a specific product.

 

The podcast and artwork embedded on this page are from Nachshon Pincu, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.