March: Know Your Company

1 Mar 2025 | A Year In OT Security

Beginning in March we shift for the rest of this book from a focus on your career to a focus on your company’s OT security and cyber risk management program.  A common mistake is to begin by selecting and deploying security controls. You find a standard or...
S4x25 Keynote: Your Value As An OT Security Professional

S4x25 Keynote: Your Value As An OT Security Professional

26 Feb 2025 | 2025

Here’s the text version of my S4x25 keynote delivered on Feb 12th. Of course you don’t get the seesaw that you have in the video. What are you worth? Not as a person. As an OT security professional. What’s your value? How much more is your value than a...

Week 9: Identify And Plan Your Career Growth Area

24 Feb 2025 | A Year In OT Security

One last, but not least, task to complete your S4 month is to plan what area you will focus your career growth on over the next year. Hopefully your S4x25 experience and the tasks over the past two weeks have given you some insight on what both will inspire you and...
Time For Action, We Have Plenty Of Advice

Time For Action, We Have Plenty Of Advice

24 Jan 2025 | 2025

Seth Godin manages to put a lot of wisdom in his short daily blogs. This one hit me last week (key excerpt below). Generally, the advice isn’t really the hard part. There’s endless good advice just a click away. … We might not need better advice. We might simply...
Introduction Chapter From My New Book

Introduction Chapter From My New Book

15 Jan 2025 | 2025

This chapter from the book describes what it is, how to use it, and a bit of how I came to write it. I started reading a daily calendar book in 2019 and have continued every year since. My two favorites are The Daily Stoic and The Daily Drucker. Calendar books provide...
25 Years, Same Question

25 Years, Same Question

14 Jan 2025 | 2025

My first exposure to OT security was a security assessment of a water SCADA system in 2000. It was a disaster from a security perspective. Old OS and apps that hadn’t been touched since install. Poor network segmentation, Admin accounts used by all with default...
My New Book & 2025 Content Plan

My New Book & 2025 Content Plan

2 Jan 2025 | 2025

Some of you have asked where my weekly article went in November and December. The answer is I had to focus my writing time on edits and production of my new book, A Year In OT Security. 1,500 softcover books are now being printed and will be put in the S4x25 Swag...
Election 2024 – Simple Guidance For The Next Administration

Election 2024 – Simple Guidance For The Next Administration

4 Nov 2024 | 2024

The Cyberspace Solarium Commission, McCrary Institute, and others provide long lists of initiatives they recommend for the next administration. They tend to be bureaucratic. Stand up this new organization, draft this document, study this issue, … A lot of the...