@BEERISAC: OT/ICS Security Podcast Playlist

Podcast: IoT Security Podcast [https://www.listennotes.com/podcasts/iot-security-podcast-phosphorus-cybersecurity-fBmDv8uLkay/] (LS 24 · TOP 10% what is this? [https://www.listennotes.com/listen-score/]) Episode: Real-World Cyber Threats in Healthcare: Balancing Tech, Training, and Human Safety [https://www.listennotes.com/e/5fa1eb9f40d8434089797a4a6cb61bdd/] Pub date: 2025-05-27 Get Podcast Transcript → [https://www.listen411.com/?audio_url=https://audio.listennotes.com/e/p/5fa1eb9f40d8434089797a4a6cb61bdd/¬es=Real-World Cyber Threats in Healthcare: Balancing Tech, Training, and Human Safety] powered by Listen411 [https://www.listen411.com/] - fast audio-to-text and summarization [https://cdn-images-3.listennotes.com/podcasts/iot-security-podcast-phosphorus-cybersecurity-WOjuNQK67dR-fBmDv8uLkay.300x300.jpg] Cybersecurity in healthcare is facing heightened challenges as regulations shift, IoT devices proliferate, and ransomware attacks become increasingly devastating. Josh Spencer, Founder, and CIO at FortaTech Security and with over fifteen years in the field including time as CISO/CTO at UT Southwestern, explores why HIPAA changes are necessary, the high stakes of securing medical devices, and how both technology and culture play roles in protecting patient data and safety. The conversation breaks down risks, practical mitigation strategies, and the ongoing evolution of both threats and defensive tools -- including AI --  and covers the evolving HIPAA landscape and the move from “addressable” to required controls, ransomware’s impact on hospitals and patient safety, challenges and best practices in securing connected medical (IoT/OT) devices, the importance of real-world risk assessment and penetration testing in healthcare, and human factors, including security awareness training and leveraging AI both for defense and as a threat. Let’s connect about IoT Security! Follow John Vecchi at https://www.linkedin.com/in/johnvecchi [https://www.linkedin.com/in/johnvecchi] The IoT Security Podcast is powered by Phosphorus Cybersecurity. Join the conversation for the IoT Security Podcast — where xIoT meets Security. Learn more at https://phosphorus.io/podcast [https://phosphorus.io/podcast] The podcast and artwork embedded on this page are from Phosphorus Cybersecurity, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: PrOTect It All [https://www.listennotes.com/podcasts/protect-it-all-aaron-crow-nHYAjbOusmi/] (LS 25 · TOP 10% what is this? [https://www.listennotes.com/listen-score/]) Episode: From Plant Operator to OT Security: Stories of Failures and Breakthroughs [https://www.listennotes.com/e/a32c0bcf813c46bf8e70d74c2255aae4/] Pub date: 2025-05-26 Get Podcast Transcript → [https://www.listen411.com/?audio_url=https://audio.listennotes.com/e/p/a32c0bcf813c46bf8e70d74c2255aae4/¬es=From Plant Operator to OT Security: Stories of Failures and Breakthroughs] powered by Listen411 [https://www.listen411.com/] - fast audio-to-text and summarization [https://cdn-images-3.listennotes.com/podcasts/protect-it-all-aaron-crow-rc3G6uJYmNL-nHYAjbOusmi.300x300.jpg] In this episode, host Aaron Crow dives deep into the intersection of IT and OT cybersecurity with special guest Gavin Dilworth—a plant operator turned automation engineer and cybersecurity expert. Listen in as Gavin shares his candid and often humorous journey from factory floors to global consulting, including how a workplace near-miss sparked his “lightbulb moment” about the similarities between health and safety and cybersecurity. Aaron and Gavin discuss everything from operators’ creative workarounds on the plant floor, to the importance of trust and rapport between IT and OT teams, and why having hands-on experience is key to building effective cybersecurity programs in critical infrastructure environments.  You’ll also hear real-world stories of technology mishaps, the critical role of plant culture, and the practical challenges organizations face in securing legacy systems while keeping operations running. If you want honest, relatable insights and actionable advice on bridging the IT-OT divide—and a few laughs along the way—this episode is for you. Key Moments:  10:12 Operator Rounds and RFID Challenges 12:56 Operators' Ingenuity and Knowledge 21:29 IT vs. OT: Firmware Update Challenges 26:49 Understanding and Accepting Risk 28:12 Standards, Frameworks, and Continuity 33:08 High Voltage Safety Precautions 40:41 Bridging OT and IT Skills 43:46 Cybersecurity Cross-Training Surge 52:38 CISO Knowledge Gap in OT Security 54:32 "Experience: Essential for Understanding" 01:03:34 DCS System Configuration Challenges 01:06:52 Neglecting Redundancy Risks Operations 01:11:00 Optimizing Underutilized IT Resources 01:20:04 "Understanding Systems Before Advice" 01:22:06 Old Cables Remain Untouched About the guest :  Gavin Dilworth’s career took an unconventional path. As a plant operator, he was tasked with keeping production running smoothly and monitoring sensor readings, both on the computer and around the factory. However, Gavin was never quite the model operator—rather than dutifully making rounds and comparing readings, he often found himself absorbed in books, dreaming of a future in IT. Though he laughs about being a “pretty terrible operator,” Gavin’s story reflects his early drive to pursue his true interests in technology, even when duty called elsewhere. How to connect Gavin :  Linkedin : https://www.linkedin.com/in/gavin-dilworth/ [https://www.linkedin.com/in/gavin-dilworth/] Website: https://assessmentplus.co.nz/ [https://assessmentplus.co.nz/] Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow]   Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast]    To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co]   Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4] The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: ICS Cyber Talks Podcast [https://www.listennotes.com/podcasts/ics-cyber-talks-podcast-nachshon-pincu-wCayzhJPU4Q/] Episode: Michal Shlomo Head of cyber-Insurance @Howden Insurance Brokers IL on insurance role & cyber attack [https://www.listennotes.com/e/dff778e77ccf46678a140cd789813bd3/] Pub date: 2025-05-26 Get Podcast Transcript → [https://www.listen411.com/?audio_url=https://audio.listennotes.com/e/p/dff778e77ccf46678a140cd789813bd3/¬es=Michal Shlomo Head of cyber-Insurance @Howden Insurance Brokers IL on insurance role & cyber attack] powered by Listen411 [https://www.listen411.com/] - fast audio-to-text and summarization [https://cdn-images-3.listennotes.com/podcasts/ics-cyber-talks-podcast-nachshon-pincu-2au1y6vwtDS-wCayzhJPU4Q.300x300.jpg] אחת המחלוקות הגדולות בין אנשי המקצוע בסייבר היא נושא ביטוח הסייבר. כן צריך, לא צריך, האם המוצר הביטוחי מצדיק את ההוצאה והאם הוא נותן פתרון אמיתי בזמן משבר. הדס תמם בן אברהם סגנית הדיקן בקריה האקדמית אונו ונחשון פינקו יועץ ואוונגליסט סייבר מארחים את מיכל שלמה ראש מחלקת ביטוחי סייבר בסוכנות הביטוח האודן, בשיחה על ביטוחי סייבר ומה האמת למול השמועות. האם ביטוח סייבר באמת יקר האם ברגע שיש אירוע סייבר, חברת הביטוח לוקחת את המושכות ומנהלת את המשבר גם אם בניגוד לדעת הלקוח האם ביטוח סייבר הוא במקום התקשרות מבעוד מועד עם חברת איי.אר ועוד One of the most significant disputes among cyber professionals concerns cyber insurance. Is it necessary? Does the insurance product justify the expense? Does it provide a real solution during a cyber crisis? Hadas Tamam Ben Avraham, Vice Dean at the Ono Academic College, and Nachshon Pincu, cyber evangelist and consultant, host Michal Shlomo, Head of the Cyber Insurance Department at Howden Insurance Brokers Israel, in a conversation about cyber insurance and the truth in the face of rumours. Is cyber insurance costly? Does the insurance company take the reins and manage the crisis as soon as a cyber event occurs, even if contrary to the customer's opinion? Is cyber insurance a substitute for a contract in advance with an IR company? And more The podcast and artwork embedded on this page are from Nachshon Pincu, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: Casos de Ciberseguridad Industrial [https://www.listennotes.com/podcasts/casos-de-ciberseguridad-industrial-centro-SbQ7diXR6Fq/] Episode: 4/4 Desenlace Gestionando Ciberresiliencia en un entorno industrial [https://www.listennotes.com/e/af16093791104b55a642f1812d28c6d7/] Pub date: 2025-05-26 Get Podcast Transcript → [https://www.listen411.com/?audio_url=https://audio.listennotes.com/e/p/af16093791104b55a642f1812d28c6d7/¬es=4/4 Desenlace Gestionando Ciberresiliencia en un entorno industrial] powered by Listen411 [https://www.listen411.com/] - fast audio-to-text and summarization [https://cdn-images-3.listennotes.com/podcasts/casos-de-ciberseguridad-industrial-QlsI7xKEA9b-SbQ7diXR6Fq.300x300.jpg] En este episodio se muestra el papel que juegan la cultura organizacional y la concienciación del personal de operación en la resiliencia frente a ciberincidentes The podcast and artwork embedded on this page are from Centro de Ciberseguridad Industrial, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Podcast: OT Security Made Simple [https://www.listennotes.com/podcasts/ot-security-made-simple-klaus-mochalski-vE6iLZ2VHfd/] Episode: How to build a SIEM SOC in OT? | OT Security Made Simple [https://www.listennotes.com/e/685a52a612154ee183adaaca45ce16e5/] Pub date: 2025-05-22 Get Podcast Transcript → [https://www.listen411.com/?audio_url=https://audio.listennotes.com/e/p/685a52a612154ee183adaaca45ce16e5/¬es=How to build a SIEM SOC in OT? | OT Security Made Simple] powered by Listen411 [https://www.listen411.com/] - fast audio-to-text and summarization [https://cdn-images-3.listennotes.com/podcasts/ot-security-made-simple-klaus-mochalski-8KiYyg12-wd-vE6iLZ2VHfd.300x300.jpg] Zeek Muratovic, Director of Security Operations at Landis+Gyr talks about the first steps to build a SIEM SOC in OT environments. Being a pragmatist, he proposes a step-by-step approach that prevents OT operators from overkilling their budget AND workload. The podcast and artwork embedded on this page are from Klaus Mochalski, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.