Cybersecurity Under Pressure. Real Attacks, Real Lessons

Antonio González

This podcast breaks down real cybersecurity incidents to understand what actually went wrong, not in theory, but in practice. Each episode analyzes a recent attack, explains the technical mechanics in clear language, and translates them into concrete lessons for security, engineering, and business teams. Topics covered: OT security, ICS cybersecurity, industrial control systems, critical infrastructure protection, NIS2 compliance, Zero Trust architecture, operational technology resilience, railway cybersecurity, automotive security, and cyber-physical systems.

  1. Jun 26

    The Compliance Theater. Draining Supplier R&D and Breaking Automotive Silos.

    our Tier-2 supplier just spent 80,000 euros on compliance. Their product cybersecurity did not improve by a single cent. In this episode of "Cybersecurity Under Pressure: Real Attacks, Real Lessons," we look at the compliance trap the automotive industry has built for its own supply chain. A single electronic component supplier must now navigate the overlapping demands of UNR 155, TISAX, and ISO 21434, and potentially the EU Cyber Resilience Act (CRA). The consequence? One exhausted engineering team building parallel "compliance theaters" to satisfy different auditors instead of building one secure product. We discuss the fatal flaw of managing requirements in silos and move beyond the sales pitch of PLM automation tools. Instead, we analyze the real engineering challenge: process convergence. Discover how to integrate Information Security Management Systems (ISMS) with Cybersecurity Management Systems (CSMS), using TISAX corporate controls as the baseline for ISO 21434 organizational requirements. We challenge OEMs and Tier-1s to stop outsourcing their compliance anxiety. Residual risk in the automotive supply chain isn't solved by adding more audit cycles. We explore practical strategies to optimize the audit burden and ensure supplier budgets are invested in actual product resilience, not just bureaucratic overhead. Listen now and subscribe to "Cybersecurity Under Pressure" for practical lessons on supply chain risk, process convergence, and real-world automotive cybersecurity defense.

    30 min

About

This podcast breaks down real cybersecurity incidents to understand what actually went wrong, not in theory, but in practice. Each episode analyzes a recent attack, explains the technical mechanics in clear language, and translates them into concrete lessons for security, engineering, and business teams. Topics covered: OT security, ICS cybersecurity, industrial control systems, critical infrastructure protection, NIS2 compliance, Zero Trust architecture, operational technology resilience, railway cybersecurity, automotive security, and cyber-physical systems.

You Might Also Like