In ICS (industrial control systems) or OT (operational technology) security, there is an endless list of ‘security’ issues that could be ‘remediated’.  Many industrial organisations, much less IT/OT stakeholders don’t know where to start.

This talk will present five cybersecurity controls that can be utilised together to create an efficient and effective industrial control system (ICS) or operational technology (OT) security program. Peter will discuss the controls and the rationale behind them so that organisations can adapt the controls to fit their environment and risks. The controls are intended to be outcome focused instead of prescriptive in nature. They are also intelligence-driven in that they have been chosen based on the analysis of recent compromises and attacks in industrial companies around the world.

Peter will bring ANZ-specific ICS/OT (e.g. SOCI, AESCSF, VCSS, etc.) insights to AusCERT from >15 years in supporting industrial organisations with ICS resilience as an experienced pragmatic engineer and SANS instructor.