(CS)²AI Podcast Show: Control System Cyber Security Derek Harp

We are delighted to have Chase Richardson, Head of US Operations for Bridewell, and Martin Riley, Director of Managed Services for Bridewell, joining us today!
We are changing things slightly for this episode, with Martin and Chase diving into how to integrate OT systems into your sim rather than presenting our regular biographical format. Their focus today is predominantly on the increasingly relevant topic of managing data across diverse platforms, particularly in OT applications. 
Join us as we explore this integration and unravel the challenges it presents.
Show highlights:
The evolution of cybersecurity technologyHow the industry struggles with integrating IoT and OT data into security simsWhy integrating separate systems into one platform is crucial for security teams How security and operational technology leadership teams convergeWhy hybrid teams are essential for managing cybersecurity risksThe importance of asset visibility and understanding the architecture for effectively implementing security solutions How AI and machine learning can help to reduce noise in security operationsWhy threat intelligence is essential for business risk and control validationThe importance of threat intelligence in the cybersecurity industry
Links and resources:
(CS)²AI 
Chase Richardson on LinkedIn
Martin Riley on LinkedIn
Bridewell
Derek Harp on LinkedIn

We are thrilled to welcome Juan Carlos Buenano as our distinguished guest for today’s episode of the CS2AI podcast! 
Carlos is the Chief Technology Officer for OT at Armis. He is a born technologist and an engineer by training. Beyond his professional endeavors, he embraces a life filled with adventure, enjoying many outdoor activities, including scuba diving, mountain biking, and exploring the scenic expanses of unspoiled nature. 
Carlos was born in Venezuela and grew up in a small town outside Caracas. After graduating as an electronic engineer in Venezuela, he traveled to Australia to learn English, fell in love with the country, the lifestyle, and the nature, and has lived there for the last 23 years.
Carlos brings a unique perspective to today’s show, shaped by his professional and personal experiences. Join us for an engaging discussion as he shares his wealth of experiences and insights and explains how he serves his community.
Show Highlights:
Carlos shares his journey to becoming an engineer in the energy industryHow his interest in control systems beganCarlos recounts his early cybersecurity experiences in industrial systems during the early 2000sThe importance of keeping operating systems up to date to prevent vulnerabilities and ensure reliabilityWhy it is essential to understand how technology works in both physical security and cybersecurityCarlos discusses the challenges of integrating cybersecurity into process control systemsCarlos offers advice for engineers who want to get into cybersecurityThe importance of mentorship and learning from others in their industryCarlos discusses the weekly open mic Ask Me Anything sessions he does at work
Links and resources:
(CS)²AI 
Derek Harp on LinkedIn
Carlos Buenano on LinkedIn
Armis

We are delighted to have Ken Munro joining us from the UK today! 
Ken is a Partner and Co-founder of Pen Test Partners. He is a seasoned technologist, the founder of multiple ventures, a pilot, a skier, and a dynamic and adventurous contributor to our community. 
Ken brings a wealth of experience and expertise that promises to enrich our understanding of the evolving landscape in cybersecurity. In today's discussion, we dive into his remarkable career journey and explore his perspective on OT and ICS-related cybersecurity.
Join us for this informative session with Ken as he shares his valuable perspectives.
Show Highlights:
Ken discusses his cybersecurity industry journeyHow Ken’s past Air Force experience relates to his current work in cybersecurityThe benefits of telling a story when communicating complex conceptsKen shares a story to highlight the importance of safety and security within the aviation industryKen talks about the unique systems on board planes and their vulnerabilitiesHow the isolated protocols used in older aircraft systems are more robust and stable than the modern systemsHow even simple display systems can cause airport outagesKen shares his concerns about cybersecurity risks within cloud management platforms for industrial control systemsHow including contractual language for liability in procurement contracts can protect organizations against cybersecurity risksKen shares his thoughts on the future of the cybersecurity industry
Links and resources:
(CS)²AI 
Derek Harp on LinkedIn
Ken Munro on LinkedIn
Pen TestPartners

We are excited to bring you another captivating industry leader interview today.  
In this episode, we interview Michelle Balderson, the Principal Security Architect at Issquared. Michelle is a seasoned professional. In addition to having extensive experience as an established contributor and leader within the industry, she is a technologist, devoted mother, wife, chef, and a true jack of all trades. Beyond her contributions to the industry, Michelle finds joy in the great outdoors, whether she is conquering hiking trails, setting up camp, or enjoying four-by-four adventures. 
In our discussion today, Michelle talks about her personal and professional journey, sharing insights she gained along the way and shedding light on the path that brought her to where she is in her current role as a security specialist.
Join us as we dive into the rich reservoir of wisdom and experience that Michelle brings to the table.
Show Highlights:
How moving around a lot while growing up allowed Michelle to develop an excellent rapport with othersMichelle describes her first experience with technologyMichelle shares her experience of working at Fortinet and SonicWALLWork opportunities within the OT security spaceWhy a more holistic approach to security is neededThe importance of changing the culture within businesses to bridge the gap between different domains How empathy and active listening can drive business successMichelle discusses her role at IssquaredMichelle shares the advice she would give to her younger self
Links and resources:
(CS)²AI 
Derek Harp on LinkedIn
Michelle Balderson on LinkedIn
ISSQUARED Inc.

Today, we are bringing you a fresh, new format called the Author Spotlight, where we focus on the authors within our community. 
We are delighted to launch the Author Spotlight by shining our light on Andrew Ginter, the VP of Industrial Security at Waterfall Security Solutions. Andrew has been a steadfast CS2AI supporter since its inception, dedicating considerable time to CS2AI initiatives, and Waterfall is one of our oldest sponsors. 
We are grateful to Andrew for generously sharing his insights and all the invaluable contributions he and his company, Waterfall, have made. Andrew's offerings include editing, reading, and committing much of his time to community projects. 
Join us today as we explore Andrew's wealth of wisdom and experience.
Show Highlights
Andrew reflects on his writing process and discusses his new book, The Golden Black Book.Andrew talks about a new approach of combining cybersecurity and engineering to manage risk.How Andrew structured his book for a mixed audience of engineers and managersThe importance of using mathematical modeling when making cybersecurity decisions rather than relying on intuition or guessworkAndrew highlights the lack of cybersecurity expertise within industrial settings.How complex risks have created the need for a multi-faceted approach to cybersecurityAndrew emphasizes the importance of security by design within product development.Why it’s essential to understand the broader definition of vulnerability Andrew discusses the challenges of writing a book on industrial cybersecurity
 Links and resources:
(CS)²AI 
Derek Harp on LinkedIn
Andrew Ginter on LinkedIn
WaterfallSecurity

We are thrilled to have another exceptional guest on the show today!
Ron Fabela is the Field Chief Technology Officer at Xona. He is a multifaceted individual who has been a stalwart contributor to the industry for many years. His impressive resume includes being an Industrial Security champion, a military veteran, and a technologist. Beyond his professional achievements, Ron is also a founder, a father, a husband, an astronomy expert interested in anything space-related, and, believe it or not, a goat herder. 
Ron has had a wealth of experiences, making him an all-around fascinating guest. Get ready for a long-overdue and truly insightful discussion with Ron Fabela!
Show highlights:
How Ron’s interest in technology beganRon discusses his career in the military and talks about his cybersecurity trainingRon offers advice for young people The benefits of working for large organizations, doing internships, and doing volunteer workHow Ron progressed in his cybersecurity careerWhy no opportunity for exposure to systems and networks should ever get squanderedHow Ron’s military experience shaped his approach to workRon shares insights on the challenges of consultingThe importance of having hobbies and passions outside of workRon talks about his role as a Field CTOHow the control systems cybersecurity industry has evolvedWhy it is essential to persevere with projects, even when facing challenges or the progress is slow 
Links and resources:
(CS)²AI 
Derek Harp on LinkedIn
Ron Fabela on LinkedIn
Xona