Manufacturing Resilience Tips

James LaBonty writes about manufacturing's increased exposures as assets are connected to the internet and shares four things CISOs need to know.

Read more

Internet-facing cyber-physical systems (CPS) are a consequential and structural risk in many modern manufacturing environments, one that can introduce disruption without the need for much sophistication on a threat actor’s part.

Swisscom Head of Physical Security, Safety, BCM, Emergency & Crisis Management Thomas Dummermuth writes about the growing mandates to achieve operational resilience—digital and physical—within data centers and critical infrastructure organizations to meet evolving threats.

Operational Resilience

Cyber Resilience

Achieving Cyber and Physical Resilience Across Data Centers, Critical Infrastructure

Thomas Dummermuth

AJ Eserjose, Regional Director for Operational Technology Information Sharing and Analysis Center (OT-ISAC), writes about how the information shared among members of a hub such as OT-ISAC creates a predictive resilience. Attack, threat, and risk signals are aggregated from contributions made by different members into comprehensive intelligence that improves overall cyber and operational resilience.

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

How Collective Intelligence Enhances Predictive Resilience

Project Glasswing and the Claude Mythos Preview have caused an upheaval related to vulnerability discovery and exploit development. On Nexus, former NSA Director Adm. Michael S. Rogers introduces some nuance to the discussion. The nuance that isn’t being articulated enough, he says, is that Project Glasswing is largely a defensive effort that does more to level the playing field between threat actors and defenders than we may realize.

Cyber Resilience

Operational Resilience

Vulnerability Management

Exploring Some Nuance on Project Glasswing

ADM. Michael S. Rogers, USN (Ret.)

OT has a cybersecurity skills gap. Leading organizations, however, are responding by building cross-functional IT/OT security teams, investing in OT-specific training, creating hybrid cybersecurity roles, and leveraging managed OT security services to bridge immediate gaps. They are also prioritizing asset visibility, documentation, and standardized processes to reduce reliance on tribal knowledge.

Operational Technology

Operational Resilience

Cyber Resilience

OT Cybersecurity Faces a Skills Gap

Trending in Cyber

Explore now

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

Vulnerability Management

Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks

Rapid7 Principal Security Research (IoT) lead Deral Heiland joins the Nexus Podcast to discuss work his team did on how attackers might weaponize cellular-based IoT. Rapid7 conducted three phases of this research, with the most recent digging into how attackers with access to these systems can abuse them to gain unauthorized access, potentially exfiltrate critical data, or pivot into backend network infrastructure.

Internet of Things

Vulnerability Management

Risk Management

Operational Resilience

Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

Operational Technology

Vulnerability Management

Nexus Podcast: Rob King on OT Asset Exposures, Mitigations

Jon Holzbauer, OT systems manager at Silgan Containers, is featured in Episode 3 of Claroty Nexus Digest. Jon discusses the skills gap between IT security teams and OT asset operators as these two distinct operational disciplines converge. He also describes the challenges and conflicting priorities that emerge in converged environments, and how to navigate those.

Cyber Resilience

Operational Resilience

Operational Technology

Nexus Digest: Jon Holzbauer on CPS Security Skills Gap

Jon Holzbauer, OT systems manager at Silgan Containers, is featured in Episode 3 of Claroty Nexus Digest. Jon discusses the skills gap between IT security…

Essential Topics (for Security Leaders)

Discover expert insights on Risk Management, Cyber Resilience, Vulnerability Management, and more. Learn how top security leaders safeguard critical cyber-physical systems.

Explore more

Risk Management

From Inventory to Insight: Turning OT Visibility into Concrete Risk Reduction Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks How Collective Intelligence Enhances Predictive Resilience Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

Cyber Resilience

Exposed Manufacturing Assets a Consequential Risk Achieving Cyber and Physical Resilience Across Data Centers, Critical Infrastructure From Inventory to Insight: Turning OT Visibility into Concrete Risk Reduction Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks

Healthcare

Nexus Podcast: Tiffany Wilson on the Security Crisis of Consumer Tech in Healthcare Nexus Podcast: Joe Slowik on Securing Exposed Internet-Facing Assets Nexus Podcast: Health-ISAC's Phil Englert on Medical Device Cybersecurity At ASL Roma 1, Canonical Risk Informs Governance, Remediation Actions

Industrial

Exposed Manufacturing Assets a Consequential Risk Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks Nexus Digest: Jon Holzbauer on CPS Security Skills Gap How Collective Intelligence Enhances Predictive Resilience

Vulnerability Management

From Inventory to Insight: Turning OT Visibility into Concrete Risk Reduction Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks Exploring Some Nuance on Project Glasswing Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

Latest Insights in

Internet-facing cyber-physical systems (CPS) are a consequential and structural risk in many modern manufacturing environments, one that can introduce disruption without the need for much sophistication on a threat actor’s part.

Cyber Resilience

Operational Resilience

Exposed Manufacturing Assets a Consequential Risk

Swisscom Head of Physical Security, Safety, BCM, Emergency & Crisis Management Thomas Dummermuth writes about the growing mandates to achieve operational resilience—digital and physical—within data centers and critical infrastructure organizations to meet evolving threats.

Operational Resilience

Cyber Resilience

Achieving Cyber and Physical Resilience Across Data Centers, Critical Infrastructure

ICS Advisory founder Dan Ricci explains why a list of operational technology (OT) assets is not an asset inventory. Asset inventories must be organized, updated, and physically validated. Only then can this facet of asset management support enterprise-wide risk management and cyber-physical systems protection programs.

Cyber Resilience

Operational Resilience

Operational Technology

Vulnerability Management

Risk Management

From Inventory to Insight: Turning OT Visibility into Concrete Risk Reduction

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

Vulnerability Management

Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks

Jon Holzbauer, OT systems manager at Silgan Containers, is featured in Episode 3 of Claroty Nexus Digest. Jon discusses the skills gap between IT security teams and OT asset operators as these two distinct operational disciplines converge. He also describes the challenges and conflicting priorities that emerge in converged environments, and how to navigate those.

Cyber Resilience

Operational Resilience

Operational Technology

Nexus Digest: Jon Holzbauer on CPS Security Skills Gap

Internet-facing cyber-physical systems (CPS) are a consequential and structural risk in many modern manufacturing environments, one that can introduce disruption without the need for much sophistication on a threat actor’s part.

Cyber Resilience

Operational Resilience

Exposed Manufacturing Assets a Consequential Risk

Swisscom Head of Physical Security, Safety, BCM, Emergency & Crisis Management Thomas Dummermuth writes about the growing mandates to achieve operational resilience—digital and physical—within data centers and critical infrastructure organizations to meet evolving threats.

Operational Resilience

Cyber Resilience

Achieving Cyber and Physical Resilience Across Data Centers, Critical Infrastructure

Thomas Dummermuth

ICS Advisory founder Dan Ricci explains why a list of operational technology (OT) assets is not an asset inventory. Asset inventories must be organized, updated, and physically validated. Only then can this facet of asset management support enterprise-wide risk management and cyber-physical systems protection programs.

Cyber Resilience

Operational Resilience

Operational Technology

Vulnerability Management

Risk Management

From Inventory to Insight: Turning OT Visibility into Concrete Risk Reduction

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

Vulnerability Management

Nexus Podcast: Ric Derbyshire on Living-Off-the-Plant OT Cyberattacks

Jon Holzbauer, OT systems manager at Silgan Containers, is featured in Episode 3 of Claroty Nexus Digest. Jon discusses the skills gap between IT security teams and OT asset operators as these two distinct operational disciplines converge. He also describes the challenges and conflicting priorities that emerge in converged environments, and how to navigate those.

Cyber Resilience

Operational Resilience

Operational Technology

Nexus Digest: Jon Holzbauer on CPS Security Skills Gap

Jon Holzbauer, OT systems manager at Silgan Containers, is featured in Episode 3 of Claroty Nexus Digest. Jon discusses the skills gap between IT security…

AJ Eserjose, Regional Director for Operational Technology Information Sharing and Analysis Center (OT-ISAC), writes about how the information shared among members of a hub such as OT-ISAC creates a predictive resilience. Attack, threat, and risk signals are aggregated from contributions made by different members into comprehensive intelligence that improves overall cyber and operational resilience.

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

How Collective Intelligence Enhances Predictive Resilience

Project Glasswing and the Claude Mythos Preview have caused an upheaval related to vulnerability discovery and exploit development. On Nexus, former NSA Director Adm. Michael S. Rogers introduces some nuance to the discussion. The nuance that isn’t being articulated enough, he says, is that Project Glasswing is largely a defensive effort that does more to level the playing field between threat actors and defenders than we may realize.

Cyber Resilience

Operational Resilience

Vulnerability Management

Exploring Some Nuance on Project Glasswing

ADM. Michael S. Rogers, USN (Ret.)

Rapid7 Principal Security Research (IoT) lead Deral Heiland joins the Nexus Podcast to discuss work his team did on how attackers might weaponize cellular-based IoT. Rapid7 conducted three phases of this research, with the most recent digging into how attackers with access to these systems can abuse them to gain unauthorized access, potentially exfiltrate critical data, or pivot into backend network infrastructure.

Internet of Things

Vulnerability Management

Risk Management

Operational Resilience

Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

OT has a cybersecurity skills gap. Leading organizations, however, are responding by building cross-functional IT/OT security teams, investing in OT-specific training, creating hybrid cybersecurity roles, and leveraging managed OT security services to bridge immediate gaps. They are also prioritizing asset visibility, documentation, and standardized processes to reduce reliance on tribal knowledge.

Operational Technology

Operational Resilience

Cyber Resilience

OT Cybersecurity Faces a Skills Gap

1 ...