Connecting cyber controls to business decisions

Ted Gutierrez, CEO & Co-Founder

An ongoing, live conversation weekly about connecting cyber controls to business decisions

Initially presented as a standalone presentation in Q1 2022 to asset owners, the Business of Cyber series is slowly transforming the OT cyber discussion into a business discussion.

Leading OT Cyber Teams

In this episode, we delve into the world of cybersecurity leadership within Operational Technology for critical infrastructure. We are joined by Bemi Anjous, a CISSO with extensive experience in the field. He will share valuable strategies on building, managing, and leading OT cyber teams that safeguard essential services from cyber threats.

Cyber Insurance in Critical Sectors

How should CISOs and their staff think about cyber insurance as a function of their security, resiliency, and recovery program? Join me live on May 7th at 10:00 a.m. CDT with Monica Tigleanu, CISSP, GICSP, Cyber Strategy Director at BMS Group, to discuss how the growing, competitive cyber insurance space is thinking about the OT market.

Retaining Cyber Talent

As cyber skills shortage continues to be one of the top challenges of cyber managers globally, learn alongside Ted Gutiérrez and Deidre Diamond the keys to investing in cyber talent in OT and IT.

CISO & Boardroom: A Tale of Two Cities

In this episode, we sit down with Laura Tibodeau, a trailblazer in the cybersecurity realm. She shares her extraordinary journey from her time as a CISO and beyond. Focusing on Laura’s experiences, we explore the pivotal moments, challenges, and triumphs that have defined her career trajectory. This episode provides unique insights into the evolution of cybersecurity leadership.

Cyber News of Q1 2024 + AMA

Join me to dive into the top cyber news stories that dominated headlines in the first quarter of 2024. This will be a fun one as we'll open this up to be an Ask Me Anything (AMA) session, where listeners can participate in the episode.

S4x24 Insights

Join Danielle Jablanski and me as we compare insights from the S4x24 conference in Miami. We’ll give an unapologetic view of our experience, what we learned, what we hoped for, and what we took away from the conference. Additionally, we plan to comment on an article we co-wrote late last year on “Maximizing Limited Resources in OT” Tune in to learn how to maximize limited resources in OT security with transparency, accuracy, and precision.

Deep Dive into NIST Controls

Join us on our next episode as we sit down with Omar Sikander, an expert in the field of Operational Technology (OT) cybersecurity, for a deep dive into the practical aspects of implementing the NIST cybersecurity framework within OT environments. Together, we'll explore the hands-on side of applying NIST's guidance, focusing on specific controls that are pivotal for bolstering the cybersecurity posture of OT systems. Whether you're looking to refine your existing strategies or starting fresh, this discussion promises to provide valuable insights and actionable advice for effectively navigating the complex landscape of OT cybersecurity. Don't miss this opportunity to learn from one of the best in the business.

Cyber Mergers & Acquisitions

Cyber Mergers & Acquisitions is already such a HOT TOPIC in 2024, we decided to host a session on the Business of Cyber Series. Will OT and IT markets loosen or tighten in 2024 - and why? I'm very excited collaborate on these topics with our esteemed guest Nathan Fink. We're going to cover unique topics aimed at widening the audience's perspective of how M&A plays a critical part in the safety and continuity of our critical sectors.

OT Cyber Terminology

Hot Topic Alert! Should OT and IT converge or is this concept something risk and security leaders should avoid? That is the foundation for Episode 25 on the Business of Cyber show where we'll dive into the top OT Terminology of today's industry and hear directly from Daniel Ehrenreich on the challenges, opportunities, and responsibility today's industrial leaders have regarding how they use, implement, and educate their teams on IT terms within the OT space. Whether you’re a seasoned professional or just starting in the field, this episode provides valuable guidance on mastering the softer side of cybersecurity.

Top Soft Skills in Cyber

Join me and guest Sean Tufts next Thursday, February 8th, at 10:00 AM CST as we discuss the importance of collaboration, problem-solving, adaptability, and communication in navigating the complex landscape of cyber threats. Gain valuable insights and practical tips on how to hone these skills to excel in your cybersecurity career. Whether you’re a seasoned professional or just starting in the field, this episode provides valuable guidance on mastering the softer side of cybersecurity.

Maintaining Data Integrity Across Global Assessments

Join me on Thursday, February 1st at 10:00 AM CST as we explore the intricacies of safeguarding operational technology (OT) and industrial control systems (ICS) against evolving cyber threats by ensuring a common syntax is understood, shared, and mapped effectively. From the complexities of global risk management to the practical application of frameworks, this episode equips cybersecurity practitioners with valuable strategies to ensure the integrity of data across diverse risk assessment scenarios.

Your Cyber Budget was Approved... Now What?

Join me alongside long-time partner Cherise Esparza who, in her previous role at a pipeline operator, managed $80M CAPEX and $30M OPEX budgets. Attendees will walk away with and understanding of the best approaches to ensuring your 2024 roadmap is streamlined, organized, and executed well. Join us to outline the essential skills, strategic certifications, training opportunities, and more to help you launch and grow your career in this critical and rapidly evolving field.

Top Ways to Get Into OT/ICS Cybersecurity

Join me LIVE alongside one of the top personalities in the OT/ICS space, Mike Holcomb to kick the Business of Cyber Series off for the new year! Together, we'll be discussing how to navigate your way within the OT/ICS cybersecurity field. Join us to outline the essential skills, strategic certifications, training opportunities, and more to help you launch and grow your career in this critical and rapidly evolving field.

2023 End of Year Review

Join us LIVE on Tuesday, December 19th, at 1:30 PM CST for a deep dive into the topics we've covered this year, who've we met, what we've talked about and more importantly - where we are going next year!

Who is Winning the Cyber Race: US or Europe?

Join Ted LIVE alongside Executive IT/OT Cyber Security Subject Matter Expert Trish McGill to collaborate on one of the biggest topics discussed by global CISOs today: which region is doing better in the cyber race?

NIST CSF Explained

Curious about the various facets of NIST CSF including applicability, context, education, and implementation? Join us for a deep dive into all NIST CSF's domains along with case studies of how to implement in your own environment or company.

How to Become a Cyber Consultant in 100 Days

Join Ted to learn how to start adding value as a cyber consultant in under 100 days.

ManuSec Recap

In this pre-recorded episode, Ted sits down with Sachin Shah, the Chair of the 2023 ManuSec 2023 conference. They discuss manufacturing CISO challenges, their views on the change in U.S. manufacturing cyber maturity in the last three years, and the demand/usage of ISA/IEC 62443 in the manufacturing sector.

Chemical Manufacturing Cyber Challenges

Join Ted and special guest, Randy Corner, to learn more about the unique differences leaders and operators are seeing in chemical manufacturing. We'll cover various topics in this discussion with benefits for novices entering the market and veterans of the ICS space alike.

ISA/IEC 62443 4-1 Certification Process

Join us for a discussion about product security life cycles from the perspective of a control system and component supplier, manufacturer, and certifying body. Alongside our guest, Rahul Gupta, we'll discuss life-cycle requirements and challenges for consultants, suppliers, and asset owners.

Why You Should Use a Consultant to Accelerate 62443 3-2

Join Ted and one of the original authors to comment and explore the value of bringing in an external team to drive success with 62443

Audit & Assessment: A Discussion of Differences

Confused on the difference between audits and assessments? Already a heated topic across IT, Governance, and Cyber divisions globally, Operational Technology environments actually can complicate the question even more. Join Ted for a live discussion with John Kingsley, Senior Cybersecurity Practitioner and ICS thought leader, to hear varied perspectives on the topic.

OT Sites are Different: Understand Why

Designed for beginners to experts alike, join Ted and Dennis Parker to learn more about how to understand OT security in your company better. Doing so positions you to prepare budgets, training, and process development in a scalable, efficient manner.

Understanding ISA/IEC 62443 Certificates

Learn from a security practitioner and recent recipient of the ISA/IEC 62443 certificates about what it takes to be successful in the training. Join Ted and Simon Heath for the next installment of the Business of Cyber series.

Deep Dive into ISA/IEC 62443 3-2

Join Ted and Kenny Mesker, Enterprise OT Cybersecurity Architect at Chevron, to dive into the workflow itself and understand why it has grown quickly as the standard of choice for asset owners across diverse sectors.

NIST Election Security Profile

With election season coming up for state and national positions, join Ted and Kyle Scott as they take a look at the NIST Election Infrastructure Profile and dive into the various Mission Objectives.

SEC Cyber Regulations

Join Ted alongside Elvis Moreland (CISO, BlueCyren) for an engaging discussion on the recent release in June. This discussion outlines some of the challenges the SEC and global companies will have in 2024 as cyber security investments become a larger discussion at the board of directors level.

Intro to ISA/IEC 62443

Whether you are in progress, just getting started, or don’t know where to start, join Ted and Andre Ristaino, Managing Director at the International Society of Automation (ISA) August 1st, 2023 for an in-depth discussion about how to launch your program effectively.

Cyber Controls

This discussion provides an overview of the fundamentals of security controls, by framework. Attendees will walk away with a deeper understanding of how to identify, evaluate, and organize their controls-based assessment.

Audits vs. Assessments

Audits and assessments each offer a different value set as part of a cyber security program throughout the maturity lifecycle. Join Ted for an overview of each and how to make the most of your limited resources.

Manufacturing Case Study

Join Ted to learn more about scalable ways to calculate the cost of reaching manufacturing sector goals. We'll be diving into available resources like NIST CSF and NISTIR 8183 alongside other tools you can use in your own company.

Maximize Today's Resources: Get the most of your team, time, and budget

Join Ted in this event to learn tips he's learned along his journey from operational facilities to the board room on getting the budgets you need to do more with less!

A Chat on Ways to Engage Your BoD Better

Join the discussion and learn how better teamwork at the BoD level drives alignment, resources, and collective wins across your critical infrastructure teams.