This episode begins with a 10 minute monologue from Dale Peterson on why demonstrations of insecure by design, no SDL and modifying physical processes is not particularly interesting for the advanced ICS security audience ... and why it is still important. Then we...read more
We, the ICS community, have some mantras: It will take decades to fix the ICS security problemOperations Technology (OT) is different than Information Technology (IT)You can't do X, Y or Z in ICS because ... which is followed by a variety of reasons such as the system...read more
Rob Lee Dale Peterson interviews Rob Lee, founder and CEO of Dragos - SANS 515 Creator - former SCADA Diva - Chief FUD Debunker - ..., focusing on how an asset owner should select an advanced IDS detection solution from a crowded market of 25+ new...read more
Joel Langill, aka the SCADAHacker, joined me on the Unsolicited Response podcast to discuss ICSsec training and workforce development. Joel is the Director of ICS Cybersecurity at AECOM, see http://www.aecom.com/solutions/converged-resilience/. He also runs...read more
Rebooting the Unsolicited Response Podcast was one of my 2017 goals, and I didn’t want it to be one and done. So I recorded a number of them before issuing this first episode so you can expect at least one a month. (Episode 2 is with Joel Langill, aka SCADAhacker). If...read more
Goal: Help Owner/Operators select the best anomaly detection solution for their ICS. It sounds simple, but after getting numerous demos and pitches from vendors, the almost unanimous contention from each vendor was that their solution was the best. Why? Because they...read more
It’s not getting better, and the number of vendors offering ICS anomaly detection solutions continues to grow in numbers and angel/venture funding. How is an asset owner to determine what anomaly detection approach, if any, is right for them? The first decision points...read more
ICS Industry Pioneer and Expert Eric Byres of ICS-Secure reports on the RSA Conference last week. I just returned from the RSA Conference 2017 in San Francisco, after a five year hiatus. If you are not familiar with the RSA Conferences, they are one of the...read more
Article Archive By Year
Article Archive By Category
Sept 19-20 in Sochi, Russia
I'll give a keynote at the Kaspersky Industrial Cybersecurity Conference 2019. I spoke at this event in 2017, and Kaspersky is always a tremendous host. Hopefully some of my Russian followers will be there.
S4x20 ... Jan 21 - 23 in Miami South Beach
Make sure you mark your calendar for the largest and most advanced OT / ICS Security event. And you can catch up on past S4 on the S4xEvents YouTube Channel.
2019 PAST EVENTS
April 11th in Cebu
A private event where I'll discuss the future of attacks on and defense of Level 1 devices (PLC's). A lot changed in 2018, and this is just a hint as to what is coming.
March 5th in San Francisco
I moderated an event by the Basque Cybersecurity Centre to promote leading edge cybersecurity countries in the region.
February 4th in New Orleans
Best Practices in Utility Security at Distributech. (See the video) I spoke about Real Time Network and Asset Monitoring at this new event. Lot's to say after the S4x19 ICS Detection Challenge experience.