Episode 128
Five Federal Agencies. One Zero-Trust OT Briefing. Most Haven't Read it.
The joint CISA, FBI, Department of War, Department of Energy, and Department of State briefing on adapting Zero Trust to operational technology landed on April 29. Has OT leadership read it?
In this episode, Craig and Dino address how the European Cyber Resilience Act is quietly forcing US plants into failed audits, why IT teams still see less than a third of OT assets, how EDR tools are taking down $100K-an-hour packaging lines, and why only a handful of integrators in North America have a real OT cybersecurity practice.
They walk through what zero trust and micro-segmentation actually look like inside a 20-year-old plant with flat layer-two networks, DLR rings, jump boxes, and Cradlepoint workarounds, and lay out the first concrete move every CISO and CIO should make to start closing the IT/OT gap.
Chapters:
- (00:00:00) - Cold Open: How the European CRA Is Failing US Plants
- (00:01:30) - The April 29 CISA/FBI Zero Trust in OT Briefing Nobody Read
- (00:05:00) - Compliance Without Teeth: Why US Regulations Aren't Moving the Needle
- (00:07:30) - When CrowdStrike Shuts Down a $100K-an-Hour Packaging Line
- (00:10:30) - The Visibility Gap: IT Sees Less Than a Third of OT Assets
- (00:15:30) - OEM Resistance: The Million-Dollar, Six-Month Cybersecurity Tax
- (00:18:30) - The Cradlepoint Workaround: How Plant Managers Bypass IT
- (00:21:30) - Layering Zero Trust onto a 20-Year-Old Plant Without Rip-and-Replace
- (00:25:30) - Why Only 5–10 of 1,000 Integrators Have a Real OT Cyber Practice
- (00:31:30) - Where CISOs Should Actually Be Looking (Hint: Not RSA or Black Hat)
Links And Resources:
- Want to Sponsor an episode or be a Guest? Reach out here.
- Industrial Cybersecurity Insider on LinkedIn
- Cybersecurity & Digital Safety on LinkedIn
- BW Design Group Cybersecurity
- Dino Busalachi on LinkedIn
- Craig Duckworth on LinkedIn
Thanks so much for joining us this week. Want to subscribe to Industrial Cybersecurity Insider? Have some feedback you’d like to share? Connect with us on Spotify, Apple Podcasts, and YouTube to leave us a review!
