See All Nexus 2024 Sessions
Claroty Nexus Logo
Topics:
See all in Cyber Resilience See all in Articles
See all in Videos
See all in Podcasts

What it Takes to Build an OT Cybersecurity Program

Port Authority of NY-NJ OT cybersecurity lead John Ballentine writes about his journey designing and managing and OT security program in a large government organization.

Listen to the episode
Risk managers—especially C-suite and boards of directors—looking to establish a culture of OT cyber awareness and risk remediation proactivity in their organizations need to establish a formal and measurable program approach. The program must provide a shared vision and a practical roadmap that makes sense because it relates to many of the unique characteristics of their organization, OT environment, business model, and risk appetite.
nexus_navigate-sbom-stds.jpg
Cyber Resilience
Vulnerability Management

SPDX, CycloneDX, or SWID: Navigating the SBOM Standard Landscape

George V. Hulme
/
Dec 18, 2024
nexus_steven-adair.jpg
Cyber Resilience
Vulnerability Management
Risk Management

Nexus Podcast: Volexity’s Steven Adair on the Nearest Neighbor Attack

Michael Mimoso
/
Dec 10, 2024
Securing connectivity in operational technology (OT) environments is crucial for the safety of critical infrastructure and maintaining the uninterrupted service it provides. Leaving unnecessary open ports, protocols, and services exposed, along with directly connected devices to the internet, such as programmable logic controllers (PLCs) and human machine interfaces (HMIs), greatly increases the risks of cyberattacks.
Industrial
Operational Technology
Risk Management

Explaining the Importance of Secure Connectivity in OT

Dan Ricci
/
Nov 18, 2024
nexus_secure-by-design-labonty.jpg
Operational Technology
Cyber Resilience

Secure by Design in Manufacturing is Not an Empty Concept

Jim LaBonty
/
Nov 12, 2024

Most Popular

See all
nexus_grant1.jpg
Industrial
Healthcare
Ransomware
Cyber Resilience
Operational Resilience
Operational Technology

Nexus Podcast: Grant Geyer on the Business Impact of Disruptions from Cyberattacks

Michael Mimoso
nexus_jim-miller.png
Nexus Conference

Jim Miller on Establishing OT Cybersecurity Baselines for Factory Environments

Jim Miller, Director of OT Cybersecurity for Magna, explains how distributed OT factory environments manage cybersecurity from cultural issues, to the need for…
Michael Mimoso
Mike Ratliff, AVP Security Engineering and Operations at Providence, writes about five steps healthcare delivery organizations should take to mitigate the risk of ransomware and extortion-based attacks.
Ransomware
Healthcare
Cyber Resilience

5 Things Hospitals Can Do to Mitigate Threats of Ransomware

Mike Ratliff
Sam Templeton
nexus_cranes-hulme.jpg
Cyber Resilience
Risk Management
Industrial

US Government Expands Tech Restrictions to Safeguard Critical Infrastructure

George V. Hulme

Featured Topics

Read more about the topics prioritized by security leaders responsible for cyber-physical systems protection.
Explore more
Risk Management
Lessons Learned from Creating an OT Cybersecurity Program in a Large, Slow-Moving Government Agency Nexus Podcast: Volexity’s Steven Adair on the Nearest Neighbor Attack Water, Wastewater Cybersecurity Still Has Long Way to Go ASL Roma 1 HyperSOC Approach Secures Patient Safety, Operational Efficiency
Cyber Resilience
SPDX, CycloneDX, or SWID: Navigating the SBOM Standard Landscape Nexus Podcast: Team82 on Attacking the Insecure IoT Cloud Nexus Podcast: Volexity’s Steven Adair on the Nearest Neighbor Attack Water, Wastewater Cybersecurity Still Has Long Way to Go
Healthcare
ASL Roma 1 HyperSOC Approach Secures Patient Safety, Operational Efficiency A Predictive, Proactive Approach to the Governance of Medical Devices Nexus Podcast: Joe Saunders on Advanced Attacks Against Critical Infrastructure Significant Changes to HIPAA Security Rule on the Way
Industrial
Lessons Learned from Creating an OT Cybersecurity Program in a Large, Slow-Moving Government Agency Water, Wastewater Cybersecurity Still Has Long Way to Go Explaining the Importance of Secure Connectivity in OT Nexus Podcast: Joe Saunders on Advanced Attacks Against Critical Infrastructure
Vulnerability Management
SPDX, CycloneDX, or SWID: Navigating the SBOM Standard Landscape Nexus Podcast: Volexity’s Steven Adair on the Nearest Neighbor Attack Water, Wastewater Cybersecurity Still Has Long Way to Go Better Medical Device Classification for Enhanced Risk Management

Latest in

nexus_navigate-sbom-stds.jpg
Cyber Resilience
Vulnerability Management

SPDX, CycloneDX, or SWID: Navigating the SBOM Standard Landscape

George V. Hulme
Team82’s Noam Moshe discusses state actor targeting of OT, why it’s so challenging to develop ransomware for OT and industrial control systems, and the mitigation strategies available to defenders of cyber-physical systems.
Cyber Resilience
Internet of Things

Nexus Podcast: Team82 on Attacking the Insecure IoT Cloud

Michael Mimoso
Risk managers—especially C-suite and boards of directors—looking to establish a culture of OT cyber awareness and risk remediation proactivity in their organizations need to establish a formal and measurable program approach. The program must provide a shared vision and a practical roadmap that makes sense because it relates to many of the unique characteristics of their organization, OT environment, business model, and risk appetite.
Industrial
Risk Management

Lessons Learned from Creating an OT Cybersecurity Program in a Large, Slow-Moving Government Agency

John Ballentine
nexus_steven-adair.jpg
Cyber Resilience
Vulnerability Management
Risk Management

Nexus Podcast: Volexity’s Steven Adair on the Nearest Neighbor Attack

Michael Mimoso
An OIG report critical of the water and wastewater industry's cybersecurity practices and posture illuminates endemic security issues within this critical infrastructure sector, from unpatched vulnerabilities to a lack of sharing of incident data.
Cyber Resilience
Industrial
Vulnerability Management
Risk Management

Water, Wastewater Cybersecurity Still Has Long Way to Go

George V. Hulme
ASL Roma 1's implementation of an advanced security operation center called HyperSOC allows it to convert its cybersecurity approach from reactive to proactive, ensuring effective management of cyber threats. The adoption of this safeguard has led to a significant reduction in security incidents, despite the growing number of attacks at national and European level, because of the continuous monitoring of the attack surface of the infrastructure, which guarantees a higher level of security than other peers in the sector.
Healthcare
Cyber Resilience
Risk Management

ASL Roma 1 HyperSOC Approach Secures Patient Safety, Operational Efficiency

Stefano Scaramuzzino
Fabio Battelli
In an increasingly interconnected and constantly evolving healthcare environment, there are numerous cybersecurity challenges that hospitals must face to guarantee patients high-quality health services, avoid interruptions in supply, optimize the use of devices, and effectively manage cyber risks. These challenges require the use of cutting-edge technologies and real-time availability of diverse data and information.
Healthcare
Risk Management
Cyber Resilience

A Predictive, Proactive Approach to the Governance of Medical Devices

Stefano Scaramuzzino
Fabio Battelli
Enterprise CISOs must consider disinformation and misinformation campaigns targeting their companies and industries as part of their threat model. Organizations must also develop disinformation response plans, similar to incident response actions.
Operational Resilience
Cyber Resilience
Risk Management

CISOs Urged to Prepare for Evolving Disinformation Tactics

George V. Hulme
Securing connectivity in operational technology (OT) environments is crucial for the safety of critical infrastructure and maintaining the uninterrupted service it provides. Leaving unnecessary open ports, protocols, and services exposed, along with directly connected devices to the internet, such as programmable logic controllers (PLCs) and human machine interfaces (HMIs), greatly increases the risks of cyberattacks.
Industrial
Operational Technology
Risk Management

Explaining the Importance of Secure Connectivity in OT

Dan Ricci