Intel Sharing Drives Predictive Resilience

OT-ISAC Regional Director AJ Eserjose writes about the idea of predictive resilience and how a community of security pros sharing intel can piece together what attackers may be targeting.

Read more

AJ Eserjose, Regional Director for Operational Technology Information Sharing and Analysis Center (OT-ISAC), writes about how the information shared among members of a hub such as OT-ISAC creates a predictive resilience. Attack, threat, and risk signals are aggregated from contributions made by different members into comprehensive intelligence that improves overall cyber and operational resilience.

Project Glasswing and the Claude Mythos Preview have caused an upheaval related to vulnerability discovery and exploit development. On Nexus, former NSA Director Adm. Michael S. Rogers introduces some nuance to the discussion. The nuance that isn’t being articulated enough, he says, is that Project Glasswing is largely a defensive effort that does more to level the playing field between threat actors and defenders than we may realize.

Cyber Resilience

Operational Resilience

Vulnerability Management

Exploring Some Nuance on Project Glasswing

ADM. Michael S. Rogers, USN (Ret.)

OT has a cybersecurity skills gap. Leading organizations, however, are responding by building cross-functional IT/OT security teams, investing in OT-specific training, creating hybrid cybersecurity roles, and leveraging managed OT security services to bridge immediate gaps. They are also prioritizing asset visibility, documentation, and standardized processes to reduce reliance on tribal knowledge.

Operational Technology

Operational Resilience

Cyber Resilience

OT Cybersecurity Faces a Skills Gap

Data centers have been targeted for kinetic attacks during the ongoing Iran war, and given their strategic prioritization during the conflict, they could be targeted for cyberattacks as well. Nexus contributor James LaBonty explains the risk and potential vulnerabilities, including building management systems and other cyber-physical systems.

Cyber Resilience

Operational Technology

Risk Management

Vulnerability Management

Operational Resilience

Protecting Physical, Digital Security of Data Centers During Conflict

ASL Roma 1 CISO Stefano Scaramuzzino and Deloitte’s Fabio Battelli explain the next evolution of cybersecurity and risk governance at Italy’s largest public health authority: canonical risk. The hospital's HOPE framework is the decision layer for this concept, a governed, explainable, and auditable synthesis of technical signals, operational context, and explicit priority logic that inform remediation and mitigation actions.

Cyber Resilience

Operational Resilience

Risk Management

At ASL Roma 1, Canonical Risk Informs Governance, Remediation Actions

Stefano Scaramuzzino

Trending in Cyber

Explore now

Rapid7 Principal Security Research (IoT) lead Deral Heiland joins the Nexus Podcast to discuss work his team did on how attackers might weaponize cellular-based IoT. Rapid7 conducted three phases of this research, with the most recent digging into how attackers with access to these systems can abuse them to gain unauthorized access, potentially exfiltrate critical data, or pivot into backend network infrastructure.

Internet of Things

Vulnerability Management

Risk Management

Operational Resilience

Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

Operational Technology

Vulnerability Management

Nexus Podcast: Rob King on OT Asset Exposures, Mitigations

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

Nexus Podcast: MITRE on Caldera for OT Adversary Emulation

Tiffany Wilson, the founder of Wilson Inclusive Solutions (WINS), a disability accessibility consulting firm, joins the Nexus Podcast to discuss the proliferation of consumer technology into healthcare infrastructure. This technology—smart speakers that help manage medications or cameras that monitor vulnerable individuals—often handles patient data and safety, and operates in a regulatory void.

Risk Management

Internet of Things

Nexus Podcast: Tiffany Wilson on the Security Crisis of Consumer Tech in Healthcare

Essential Topics (for Security Leaders)

Discover expert insights on Risk Management, Cyber Resilience, Vulnerability Management, and more. Learn how top security leaders safeguard critical cyber-physical systems.

Explore more

Risk Management

How Collective Intelligence Enhances Predictive Resilience Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT Nexus Podcast: MITRE on Caldera for OT Adversary Emulation Nexus Digest: Jim LaBonty on Data Center and Manufacturing Cybersecurity

Cyber Resilience

How Collective Intelligence Enhances Predictive Resilience Exploring Some Nuance on Project Glasswing OT Cybersecurity Faces a Skills Gap Nexus Podcast: MITRE on Caldera for OT Adversary Emulation

Healthcare

Nexus Podcast: Tiffany Wilson on the Security Crisis of Consumer Tech in Healthcare Nexus Podcast: Joe Slowik on Securing Exposed Internet-Facing Assets Nexus Podcast: Health-ISAC's Phil Englert on Medical Device Cybersecurity At ASL Roma 1, Canonical Risk Informs Governance, Remediation Actions

Industrial

How Collective Intelligence Enhances Predictive Resilience OT Cybersecurity Faces a Skills Gap Nexus Podcast: Rob King on OT Asset Exposures, Mitigations Nexus Podcast: MITRE on Caldera for OT Adversary Emulation

Vulnerability Management

Exploring Some Nuance on Project Glasswing Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT Nexus Podcast: Rob King on OT Asset Exposures, Mitigations Nexus Digest: Jim LaBonty on Data Center and Manufacturing Cybersecurity

Latest Insights in

AJ Eserjose, Regional Director for Operational Technology Information Sharing and Analysis Center (OT-ISAC), writes about how the information shared among members of a hub such as OT-ISAC creates a predictive resilience. Attack, threat, and risk signals are aggregated from contributions made by different members into comprehensive intelligence that improves overall cyber and operational resilience.

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

How Collective Intelligence Enhances Predictive Resilience

Project Glasswing and the Claude Mythos Preview have caused an upheaval related to vulnerability discovery and exploit development. On Nexus, former NSA Director Adm. Michael S. Rogers introduces some nuance to the discussion. The nuance that isn’t being articulated enough, he says, is that Project Glasswing is largely a defensive effort that does more to level the playing field between threat actors and defenders than we may realize.

Cyber Resilience

Operational Resilience

Vulnerability Management

Exploring Some Nuance on Project Glasswing

Rapid7 Principal Security Research (IoT) lead Deral Heiland joins the Nexus Podcast to discuss work his team did on how attackers might weaponize cellular-based IoT. Rapid7 conducted three phases of this research, with the most recent digging into how attackers with access to these systems can abuse them to gain unauthorized access, potentially exfiltrate critical data, or pivot into backend network infrastructure.

Internet of Things

Vulnerability Management

Risk Management

Operational Resilience

Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

OT has a cybersecurity skills gap. Leading organizations, however, are responding by building cross-functional IT/OT security teams, investing in OT-specific training, creating hybrid cybersecurity roles, and leveraging managed OT security services to bridge immediate gaps. They are also prioritizing asset visibility, documentation, and standardized processes to reduce reliance on tribal knowledge.

Operational Technology

Operational Resilience

Cyber Resilience

OT Cybersecurity Faces a Skills Gap

Operational Technology

Vulnerability Management

Nexus Podcast: Rob King on OT Asset Exposures, Mitigations

AJ Eserjose, Regional Director for Operational Technology Information Sharing and Analysis Center (OT-ISAC), writes about how the information shared among members of a hub such as OT-ISAC creates a predictive resilience. Attack, threat, and risk signals are aggregated from contributions made by different members into comprehensive intelligence that improves overall cyber and operational resilience.

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

How Collective Intelligence Enhances Predictive Resilience

Project Glasswing and the Claude Mythos Preview have caused an upheaval related to vulnerability discovery and exploit development. On Nexus, former NSA Director Adm. Michael S. Rogers introduces some nuance to the discussion. The nuance that isn’t being articulated enough, he says, is that Project Glasswing is largely a defensive effort that does more to level the playing field between threat actors and defenders than we may realize.

Cyber Resilience

Operational Resilience

Vulnerability Management

Exploring Some Nuance on Project Glasswing

ADM. Michael S. Rogers, USN (Ret.)

Rapid7 Principal Security Research (IoT) lead Deral Heiland joins the Nexus Podcast to discuss work his team did on how attackers might weaponize cellular-based IoT. Rapid7 conducted three phases of this research, with the most recent digging into how attackers with access to these systems can abuse them to gain unauthorized access, potentially exfiltrate critical data, or pivot into backend network infrastructure.

Internet of Things

Vulnerability Management

Risk Management

Operational Resilience

Nexus Podcast: Deral Heiland on Weaponizing Cellular-Based IoT

OT has a cybersecurity skills gap. Leading organizations, however, are responding by building cross-functional IT/OT security teams, investing in OT-specific training, creating hybrid cybersecurity roles, and leveraging managed OT security services to bridge immediate gaps. They are also prioritizing asset visibility, documentation, and standardized processes to reduce reliance on tribal knowledge.

Operational Technology

Operational Resilience

Cyber Resilience

OT Cybersecurity Faces a Skills Gap

Operational Technology

Vulnerability Management

Nexus Podcast: Rob King on OT Asset Exposures, Mitigations

Cyber Resilience

Operational Resilience

Operational Technology

Risk Management

Nexus Podcast: MITRE on Caldera for OT Adversary Emulation

Former Pfizer global head of automation engineering Jim LaBonty is featured in Episode 2 of Nexus Digest. Jim discusses a recent article he wrote on the interlock between data centers and modern manufacturing facilities. He describes their dependencies and how cybersecurity fits in these relationships.

Vulnerability Management

Risk Management

Nexus Digest: Jim LaBonty on Data Center and Manufacturing Cybersecurity

Former Pfizer global head of automation engineering Jim LaBonty is featured in Episode 2 of Nexus Digest. Jim discusses a recent article he wrote on the…

Tiffany Wilson, the founder of Wilson Inclusive Solutions (WINS), a disability accessibility consulting firm, joins the Nexus Podcast to discuss the proliferation of consumer technology into healthcare infrastructure. This technology—smart speakers that help manage medications or cameras that monitor vulnerable individuals—often handles patient data and safety, and operates in a regulatory void.

Risk Management

Internet of Things

Nexus Podcast: Tiffany Wilson on the Security Crisis of Consumer Tech in Healthcare

Operational Resilience

Operational Technology

Internet of Things

Cyber Resilience

Risk Management

Nexus Podcast: Joe Slowik on Securing Exposed Internet-Facing Assets

1 ...