dalepeterson, Author at Dale Peterson: ICS Security Catalyst

“Discovering ICS Vulns Is So Yesterday”

22 Apr 2025 | 2025

Love this comment from Bryan Owen on one of my posts. Discovering ICS vulns is so yesterday, discovering implants is the new, new thing. In observation, there needs to be more emphasis and coverage on discovered implants… otherwise sponsors of defensive programs...

Week 17: Prevent OT Compromise From Affecting Safety And Protection

21 Apr 2025 | A Year In OT Security

If any of your failure scenarios from last week required isolating the safety and protection devices and systems from OT, then this week you will design your solution. Note: Even if you don’t need to isolate your safety and protection you should read this section. The...

Mythology and Metrics

15 Apr 2025 | 2025

OT Security needs metrics. I originally wrote more metrics, but we have almost no metrics. We includes asset owners, governments, vendors, industry groups, … We shouldn’t be funding anything that doesn’t include a hypothesis and a metric that will...

Week 16: No High Consequence Events If (When?) OT Is Compromised

14 Apr 2025 | A Year In OT Security

Last week you identified failure scenarios that could cause a high consequence event when OT is compromised. This week’s task is simple and important. For each failure scenario from Week 15, identify a solution that would prevent the high consequence event if OT were...

Most People’s 1st Article On OT Security … OT Is Different Than IT

8 Apr 2025 | 2025

You just discovered OT. Maybe you’re in IT and got a tour of your company’s factory or mill. Maybe you went down a rabbit hole on some site or social media and learned about it. You want to share this world, and more often than not it leads to an article...

Volt Typhoon Is A Fait Accompli In Cyber Persistence Theory

7 Apr 2025 | 2025

All Sides Accept Some Level Of Compromise Of Critical Infrastructure For Reconnaissance and Pre-Positioning If you want to understand US government cyber strategy, offense and defense, you need to master Cyber Persistence Theory. The US would argue they didn’t...

Gresham’s Law – Part 2

7 Apr 2025 | 2025

Gresham’s law is a monetary principle stating that “bad money drives out good”. For example, if there are two forms of commodity money in circulation, which are accepted by law as having similar face value, the more valuable commodity will gradually...

Week 15: Identify OT Cyber Incidents That Could Cause High Consequence Events

7 Apr 2025 | A Year In OT Security

This week’s task builds on the information collected in the previous five weeks and provides a key output for your OT security program. It identifies the high consequence events that could be caused by a cyber incident if an attacker gains access to and control of OT....

April: High Consequence Event Risk Reduction

1 Apr 2025 | A Year In OT Security

The tasks in April are the most important, and the most rarely done, tasks in OT security and cyber risk management. This should be clearer after March when you learned about your company and its risk management program. In a perfect world, systems would work 100% of...

Week 14: Understand Your Safety And Protection Systems

31 Mar 2025 | A Year In OT Security

Last week you identified the high consequence events related to the industrial process being monitored and controlled in OT. This week you learn what is in place to prevent these high consequence events. The engineers who designed the process are again your primary...