Save the Date: Nexus Conference 2024: Sept. 10-12
Claroty Nexus Logo
Topics:
See all in Cyber Resilience See all in Articles
See all in Videos
See all in Podcasts

Exposures Beyond Vulnerabilities

Learn about cyber-physical systems' exposure points such as misconfigurations and insecure remote access that jeopardize processes beyond the risks introduced by software and firmware vulnerabilities.

Read More
The Change Healthcare cyberattack has spurred the proposal of new legislation from Sen. Mark Warner to demand minimum cybersecurity standards of hospitals and healthcare delivery organizations, or face financial penalties.
Healthcare

Change Healthcare Attack May Spur New Cybersecurity Laws

George V. Hulme
/
Apr 23, 2024
The UK's National Cyber Security Centre (NCSC) reacts to growing cloud implementations for operational technology, SCADA, and industrial control systems. The shift to cloud computing has caused the NCSC to be concerned that organizations aren't properly managing the new connectivity, including security boundaries and access control mechanisms.
Risk Management
Cyber Resilience
Operational Technology

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

George V. Hulme
/
Apr 9, 2024
Cyber Resilience
Operational Resilience
Risk Management

Think Like an Attacker: Be Frogger

John Frushour
/
Apr 1, 2024

Most Popular

See all
Operational Resilience

Nexus Podcast: Adam Gluck on Industrial DevOps

Michael Mimoso
Typical OT network
Operational Technology
Industrial

The Purdue Model's Risky Blindspot

George V. Hulme
Operational Technology
Vulnerability Management
Operational Resilience

OT Patch Management Truths

George V. Hulme
The U.K.'s enhanced Cyber Assessment Framework is designed to help critical infrastructure organizations comprehensively assess and improve their ability to defend against, and respond to, cyberattacks.
Cyber Resilience
Operational Technology
Operational Resilience

UK Critical Infrastructure Sectors Brace for Enhanced Cyber Assessment Framework

George V. Hulme

Latest on Nexus Podcast

See all episodes
The Nexus podcast features conversations with security leaders, researchers, and experts sharing their expertise on cyber-physical systems security.
In this episode of the Claroty Nexus Podcast, Istari Chief Technology Officer and Head of Advisory Abel Archundia joins to discuss the implications of complexity within critical infrastructure. Companies struggle with technical debt and are largely accumulated assets that are still part and parcel of their core businesses, and challenge their ability to proactively secure them and manage risk.
Risk Management
Healthcare

Nexus Podcast: Abel Archundia on Complexity in Critical Infrastructure
Operational Resilience

Nexus Podcast: Adam Gluck on Industrial DevOps
Healthcare
Cyber Resilience
Vulnerability Management

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Latest in

Expert Don C. Weber writes that safety devices are within scope for cybersecurity risk assessments. This includes conducting high-level risk assessments to assemble documentation for specific Systems-under-Consideration (SuC) of the safety solution, performing a vulnerability assessment of the SuC, feeding the results into the detailed risk assessment to allow the risk management team to identify and address residual risks.
Operational Technology
Operational Resilience
Vulnerability Management

Architecting Safety Using Cybersecurity Requirements and Assessments

Don C. Weber
OT and ICS asset owners must consider non-traditional OT exposures beyond software vulnerabilities—a comprehensive exposure management approach to risk reduction—to understand the multifaceted challenges and the proactive measures necessary to safeguard critical infrastructure.
Cyber Resilience
Operational Technology
Risk Management

Operational Technology Exposure: Beyond Software Vulnerabilities

Dan Ricci
In this episode of the Claroty Nexus Podcast, Istari Chief Technology Officer and Head of Advisory Abel Archundia joins to discuss the implications of complexity within critical infrastructure. Companies struggle with technical debt and are largely accumulated assets that are still part and parcel of their core businesses, and challenge their ability to proactively secure them and manage risk.
Risk Management
Healthcare

Nexus Podcast: Abel Archundia on Complexity in Critical Infrastructure

Michael Mimoso
Operational Resilience

Nexus Podcast: Adam Gluck on Industrial DevOps

Michael Mimoso
The Change Healthcare cyberattack has spurred the proposal of new legislation from Sen. Mark Warner to demand minimum cybersecurity standards of hospitals and healthcare delivery organizations, or face financial penalties.
Healthcare

Change Healthcare Attack May Spur New Cybersecurity Laws

George V. Hulme
The UK's National Cyber Security Centre (NCSC) reacts to growing cloud implementations for operational technology, SCADA, and industrial control systems. The shift to cloud computing has caused the NCSC to be concerned that organizations aren't properly managing the new connectivity, including security boundaries and access control mechanisms.
Risk Management
Cyber Resilience
Operational Technology

UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations

George V. Hulme
Healthcare
Cyber Resilience
Vulnerability Management

Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack

Michael Mimoso
Healthcare
Vulnerability Management
Risk Management

FDA Sets Sights on Medical Device Vulnerability Management

George V. Hulme
Cyber Resilience
Operational Resilience
Risk Management

Think Like an Attacker: Be Frogger

John Frushour

Featured Topics

Read more about the topics prioritized by security leaders responsible for cyber-physical systems protection.
Explore more
Risk Management
Operational Technology Exposure: Beyond Software Vulnerabilities Nexus Podcast: Abel Archundia on Complexity in Critical Infrastructure UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations FDA Sets Sights on Medical Device Vulnerability Management
Cyber Resilience
Operational Technology Exposure: Beyond Software Vulnerabilities UK NCSC Urges OT/ICS Operators to Secure Cloud Migrations Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack Think Like an Attacker: Be Frogger
Healthcare
Nexus Podcast: Abel Archundia on Complexity in Critical Infrastructure Change Healthcare Attack May Spur New Cybersecurity Laws Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack FDA Sets Sights on Medical Device Vulnerability Management
Industrial
The Purdue Model's Risky Blindspot Nexus 2023 in Miami NSA's ELITEWOLF Signatures Detect Malicious Activity in OT Environments Overcoming Inherent Design and Security Limitations of OT Devices
Vulnerability Management
Architecting Safety Using Cybersecurity Requirements and Assessments Nexus Podcast: Greg Garcia on the Change Healthcare Cyberattack FDA Sets Sights on Medical Device Vulnerability Management Nexus Podcast: Ryan Pickren on New Web-Based PLC Malware Research