My article last week debunked the claim that “you can’t protect what you don’t know”. Many of the public and private comments insisted that an asset inventory is required to provide any protection. And stressing it is foundational, one of the first things that should...
One of the most common OT Security mantras this decade is “You Can’t Protect What You Don’t Know”. Have you heard that one? It implies that without an accurate and detailed asset inventory you can’t protect cyber assets. You Can’t Protect What You Don’t Know. This is...
Vendors will gladly provide demos. Of course, the demo attempts to show the solution in the best light. You’d never show a demo where your product is lagging or lacking. Each company selects its own advantageous environment and circumstances. This makes comparing even...
Last week ICS manufacturer Rockwell Automation bought OT security company Verve Industrial Protection for an undisclosed (non-material) price. On Tuesday I wrote on this from the Verve and OT security company’s point of view. Today’s article covers the...
Last week ICS manufacturer Rockwell Automation bought OT security company Verve Industrial Protection for an undisclosed (non-material) price. Today I’ll cover this from the Verve and OT security company’s point of view. On Thursday I’ll have a bonus...
CISA has a Secure Our World campaign as part of October being Cybersecurity Awareness Month. The tag line is “simple ways to protect yourself, your family and your business from online threats.” There’s a 1-minute video aimed every...
A lot of content about the recent SEC rules around cyber security and cyber incidents is missing the mark, imo. No Change Companies already had the requirement to report any unscheduled material event, including cyber incidents that had a material impact,...
Digital Bond was born on October 5, 1998. We turn 25 this month. In this article I’ll crow a bit about successes and joy. Last week I covered failures and lessons learned. Nurturing Talent Most of the first 15 years were spent trying to grow a ICS security consulting...
Digital Bond was born on October 5, 1998. We turn 25 this month. In this article I’ll highlight the biggest failures and lessons learned, and next week I’ll crow a bit about the success. Swing(s) And A Miss In 1998 the dot com bubble was ballooning. With...
The classic 5 x 5 risk matrix with consequence broken out by category: financial, health & safety, customer impact, and reputation. Create scenarios and see where they fall on the martrix, with the ever present challenge of determining likelihood. The first...
