Episode 63

Avoiding Compliance Risks : From Audit to Action

Published on: 4th March, 2025

Industrial cybersecurity is no longer an option—it’s a necessity. 

In this episode, Kimberly Anderson, Managing Director at UHY, joins Craig Duckworth to explore the growing cybersecurity challenges facing manufacturers and industrial operations. 

They discuss the gaps in cybersecurity accountability, IT/OT entanglement, and why network segregation is still a major hurdle. 

Kimberly shares insights on cyber insurance pitfalls, compliance best practices, and why businesses should move beyond "checking the box" to build a truly resilient cybersecurity program. 

Whether you're facing vendor or OEM remote access risks, securing legacy systems, or navigating industrial cybersecurity regulations, this conversation provides actionable insights to help you stay in compliance and ahead of common cybersecurity pitfalls.

Chapters:

  • 00:00:00 - Ransomware Isn’t Your Biggest Threat—Human Error Is
  • 00:00:44 - Meet Kimberly Anderson: From Chemistry to Cybersecurity Leadership
  • 00:01:17 - Why Technology Risk & Compliance Can’t Be Ignored in Industrial Cybersecurity
  • 00:02:29 - IT/OT Security Integration: Why It’s a Struggle and How to Get It Right
  • 00:03:56 - Network Segregation: The Critical Security Step Most Companies Overlook
  • 00:05:42 - The IT/OT “Divorce”: Why Separating Networks is a Game-Changer
  • 00:06:41 - Rushing to the Cloud? Avoid These Vendor Security Pitfalls
  • 00:11:48 - Cyber Insurance Isn’t a Safety Net—Here’s What You’re Missing
  • 00:14:43 - Beyond “Checking the Box”: How to Build a Resilient Cybersecurity Strategy
  • 00:18:25 - Final Takeaways: Simple Steps to Strengthen Your Security Today

Links And Resources:

Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!

Next Episode All Episodes Previous Episode

Listen for free

Show artwork for Industrial Cybersecurity Insider

About the Podcast

Industrial Cybersecurity Insider
Everything You Need to Know to 'Get Safer Sooner'
Created by Velta Technology, 'Industrial Cybersecurity Insider' offers a thorough look into the field of industrial cybersecurity for manufacturing and critical infrastructure. The podcast delves into key topics, including industry trends, policy changes, and groundbreaking innovations. Each episode will feature insights from key influencers, policy makers, and industry leaders. Subscribe and tune in weekly to stay in the know on everything important in the industrial cybersecurity world!

About your host

Profile picture for Hector Santiesteban

Hector Santiesteban