PodcastyBiznesPrOTect It All

PrOTect It All

Aaron Crow | Operational Technology & Cybersecurity Host
PrOTect It All
Najnowszy odcinek

113 odcinków

  • PrOTect It All

    AI for OT Cybersecurity: Real-World Strategies to Protect Critical Infrastructure

    06.07.2026 | 1 godz. 12 min.
    AI is changing OT cybersecurity - but success still depends on understanding your operations.

    In this episode of Protect It All, host Aaron Crow welcomes Vivek Ponnada for a practical conversation about how artificial intelligence is transforming the way organizations defend critical infrastructure.

    With decades of experience in industrial automation and OT security, Vivek shares firsthand insights into the realities of protecting legacy control systems while preparing for a future increasingly shaped by AI, automation, and digital transformation.

    Together, Aaron and Vivek discuss how organizations can use AI to improve visibility, accelerate threat detection, prioritize vulnerabilities, and strengthen operational resilience, without losing sight of the fundamentals that keep industrial environments safe.

    Key Learning: 

    How AI is transforming OT cybersecurity and industrial operations

    Practical AI use cases for protecting critical infrastructure

    Why legacy systems remain one of the biggest OT security challenges

    How AI can improve vulnerability management and incident response

    The role of digital twins in strengthening cyber resilience

    Why trust, collaboration, and operational knowledge remain essential in OT security

    Whether you're responsible for manufacturing, utilities, energy, water, or other critical infrastructure, this episode provides practical insights into balancing innovation with operational reliability.

    Tune in to discover how AI can strengthen OT cybersecurity while helping organizations protect the systems that keep the world running.

    Key Moments: 

    06:43 AI and cloud adoption in OT

    13:27 Controller logic changes and safety steps

    21:24 Discussing Digital Twins for Security Use

    26:51 Managing vulnerabilities at scale

    32:41 Understanding Power Plant Limitations

    37:17 Keeping up with plant changes

    41:43 Automating infrastructure and maintenance

    49:08 Rising importance of cybersecurity investment

    52:16 Early days in cybersecurity and OT

    01:00:03 Ransomware impacts on industries

    01:01:53 Using GPUs for security and OT

    About the guest : 

    Vivek Ponnada is an Operational Technology (OT) Security practitioner with global experience and currently serves as the SVP of Growth & Strategy at Frenos, the world's first Simulated OT Pentesting Platform. Having started his career in Industrial Control Systems (ICS) as a Technician, Vivek became a Controls Engineer and commissioned Gas Turbines in Europe, Middle-East, Africa and South-East Asia. Post MBA, Vivek held multiple roles in Sales, Marketing & Business Development and Services covering ICS and OT Security solutions for Critical Infrastructure industries (Power, Oil & Gas etc.) at GE, XenonCyber Dynamics and Nozomi Networks. He was a co-lead for the Top 20 Secure PLC Coding Practices Project and regularly speaks at Information Security Conferences. Vivek has a C.Eng. from IEI, MBA from McCombs (UT Austin) and holds the ISA/IEC 62443 Cybersecurity Expert & GICSP certifications. He is a member of the ISA, ISACA, Public Safety Canada ICS Security Symposium Advisory Committee and is a CS2AI Fellow.

    How to connect Vivek: 

    Frenos: https://frenos.io 

    LinkedIn: https://www.linkedin.com/in/1ot/ 

    Frenos YouTube: https://www.youtube.com/@Frenos_Security

    Learn more about PrOTect IT All:

    Email: info@protectitall.co
  • PrOTect It All

    OT Cybersecurity That Works: Defense in Depth, AI Risks & Protecting Critical Infrastructure

    29.06.2026 | 44 min.
    When it comes to OT cybersecurity, the fundamentals still matter - even in the age of AI.

    In this episode of Protect It All, host Aaron Crow sits down with Caleb Davis for a practical discussion on securing industrial environments where uptime, safety, and resilience are non-negotiable.

    From legacy control systems and tight budgets to AI-powered threats and open-source security tools, Aaron and Caleb explore the real challenges organizations face every day - and the strategies that deliver meaningful protection without requiring massive investments.

    A major focus of the conversation is defense in depth: building multiple layers of protection, fostering trust between IT and OT teams, and strengthening foundational cybersecurity practices before chasing the latest technology.

    You'll learn:

    Why defense in depth remains the cornerstone of OT cybersecurity

    How to improve security in legacy industrial environments

    Practical ways to strengthen OT security - even with limited budgets

    Why asset inventory, segmentation, and basic cyber hygiene still matter most

    How AI is changing both offensive and defensive cybersecurity

    The importance of trust and collaboration between IT, engineering, and operations

    Whether you're responsible for manufacturing, utilities, water treatment, energy, or any critical infrastructure environment, this episode delivers practical strategies you can apply immediately.

    Tune in to learn how layered defenses, strong relationships, and proven fundamentals create resilient OT security programs - only on Protect It All.

    Key Moments: 

    05:41 PLCs and network security challenges

    07:24 Challenges in Updating OT Systems

    11:33 Impact of Downtime on Security

    16:03 Using affordable cybersecurity tools

    19:14 Building Trust in Business Deals

    23:01 Security challenges in medical devices

    25:49 Trust and IT implementation risks

    28:35 Using AI for safer software updates

    31:05 Cybersecurity best practices for plants

    33:40 Balancing Security Costs and Business Needs

    37:50 Nurturing OT like raising kids

    41:20 AI and cybersecurity concerns

    About the guest : Caleb Davis is a founding member of SolaSec, a cybersecurity consulting firm specializing in advanced penetration testing for embedded and connected systems. Based in Dallas/Fort Worth, he holds a degree in Electrical Engineering from the University of Texas at Tyler and is a patent-holding expert with vast experience in hardware and firmware security. Caleb leads deep technical assessments across a range of high-impact industries, including medical devices, automotive, industrial control systems, ATMs and financial terminals, aerospace components, and consumer electronics. His work focuses on secure design, trusted boot processes, cryptographic implementations, and threat modeling, helping organizations integrate security throughout the development lifecycle and align with industry and regulatory standards.

    How to connect Celeb :

    SolaSec: https://solasec.io 

    LinkedIn: https://www.linkedin.com/in/caleb-davis-400439100/ 

    OTPCAP (OT PCAP analysis tool): https://github.com/SolaSec/otpcap

    Learn more about PrOTect IT All:

    Email: info@protectitall.co 

    Website: https://protectitallpod.com/ep112

    X:<...
  • PrOTect It All

    Quantum Readiness: The Cybersecurity Threat Most Organizations Aren’t Prepared For

    22.06.2026 | 41 min.
    Quantum computing isn't a future problem - it's a cybersecurity challenge organizations need to start preparing for today.

    In this episode of Protect It All, host Aaron Crow welcomes Jim Sortino for a timely discussion on quantum readiness, cryptographic risk, and the future of cybersecurity.

    As organizations continue accumulating technical debt and relying on aging cryptographic systems, the arrival of quantum computing threatens to disrupt the very foundations of digital trust. Jim explains why leaders need to think beyond today's threats and begin preparing for a future where current encryption standards may no longer provide adequate protection.

    Together, Aaron and Jim explore the practical realities of quantum risk, how organizations can identify vulnerable systems, and why crypto agility is becoming one of the most important cybersecurity priorities of the next decade.

    You'll learn:

    What quantum computing means for modern cybersecurity

    Why cryptographic technical debt creates long-term business risk

    How to assess your organization's quantum readiness

    The importance of crypto agility and encryption modernization

    Practical steps security leaders can take today

    Why IT and OT environments must prepare for the same emerging threats

    Whether you're a cybersecurity professional, technology leader, board member, or simply curious about the future of digital security, this episode provides actionable insights to help you prepare before quantum disruption arrives.

    Tune in to learn why the organizations that start preparing today will be the ones best positioned to protect tomorrow.

    Key Moments: 

    06:02 Challenges with product maintenance and AI integration

    08:42 Importance of Software in Everything

    12:30 Addressing cybersecurity risks

    16:00 Authentication and trust challenges

    18:13 Preparing for technological changes

    20:56 Planning and Implementing Projects

    25:38 Budget planning for cybersecurity risks

    28:54 Challenges for Small Financial Institutions

    31:27 Importance of regulations in business

    33:37 Legacy security systems and protocols

    36:38 Quantum readiness and future risks

    About the guest : 

    Jim Sortino is the Chief Revenue Officer and a Board Member at Isera Corporation, where he helps organizations address emerging cybersecurity challenges through innovative identity and cryptographic security solutions. With decades of experience working with global enterprises, Jim specializes in helping leaders navigate complex technology risks, from technical debt and encryption modernization to quantum readiness. He is a passionate advocate for proactive cybersecurity strategies that prepare organizations for the next generation of digital threats.

    How to connect Jim Sortino : https://www.linkedin.com/in/jamessortino/

    Learn more about PrOTect IT All:

    Email: info@protectitall.co 

    Website: https://protectitallpod.com/ep111

    X: https://twitter.com/protectitall 

    YouTube: https://www.youtube.com/@PrOTectITAll 

    FaceBook:  https://facebook.com/protectitallpodcast

     

    To be a guest or suggest a guest/episode, please email us at...
  • PrOTect It All

    Cybersecurity vs Resilience: What Business Leaders Need to Know About Managing Risk

    15.06.2026 | 44 min.
    Cybersecurity isn't the goal. Business resilience is.

    In this episode of Protect It All, host Aaron Crow sits down with Lee Ward to explore why organizations need to move beyond compliance checklists and start focusing on what really matters: the ability to withstand, recover from, and adapt to disruption.

    Drawing on more than two decades of experience spanning the UK civil service, logistics, supply chain operations, and governance, risk, and compliance (GRC), Lee shares practical insights on helping boards and executives understand cyber risk in business terms.

    Together, Aaron and Lee discuss the realities of risk acceptance, operational technology challenges, patching constraints, and why resilience not perfection should be the ultimate objective of any cybersecurity program.

    You'll learn:

    Why resilience is a better business objective than security alone

    How to communicate cyber risk to boards and executive leadership

    The difference between compliance and meaningful risk reduction

    Practical approaches to OT security, patching, and operational constraints

    Why risk acceptance is a critical leadership responsibility

    How logistics and supply chain organizations approach resilience planning

    Whether you're a security leader, executive, risk manager, or OT practitioner, this episode provides practical guidance for building organizations that can continue operating when disruptions inevitably occur.

    Tune in to learn why resilience not just security is becoming the defining metric of successful organizations.

    Key Moments: 

    03:59 Understanding Cyber Risks for Leaders

    07:16 Discussing non-cyber risks to services

    11:12 Understanding business impact of cyber risk

    15:45 Evaluating Cybersecurity Risks

    19:37 Understanding installation complexities

    21:15 Global risks affecting business resilience

    24:27 Discussing regulation impacts on business

    29:30 People's drive to make good choices

    31:27 Industrial control systems demo at DEFCON

    34:43 Limitations of technical security

    38:06 The future of AI and education

    About the guest : Lee Ward is a Governance, Risk Management, and Compliance (GRC) leader with more than 20 years of experience spanning the UK civil service, logistics, supply chain operations, and cybersecurity. Specializing in business resilience, risk governance, and operational technology security, Lee helps organizations translate complex cyber risks into meaningful business decisions. He is passionate about moving beyond compliance-driven security programs and helping leaders build resilient organizations that can adapt, recover, and thrive in an increasingly uncertain world.

    How to connect Lee:  https://www.linkedin.com/in/lee-ward-882a54244/

    Learn more about PrOTect IT All:

    Email: info@protectitall.co 

    Website: https://protectitallpod.com/ep110

    X: https://twitter.com/protectitall 

    YouTube: https://www.youtube.com/@PrOTectITAll 

    FaceBook:  https://facebook.com/protectitallpodcast

     

    To be a guest or suggest a guest/episode, please email us at info@protectitall.co

    Please leave us a review on Apple/Spotify Podcasts:

    Apple   -
  • PrOTect It All

    Continuous Trust in Cybersecurity : Why Identity Is the New Security Perimeter

    08.06.2026 | 44 min.
    What if trust wasn't something you granted once - but something you continuously verified?

    In this episode of Protect It All, host Aaron Crow sits down with Frank Goodman to explore one of the most important challenges in modern cybersecurity: establishing trust in an increasingly connected world.

    As organizations expand across cloud, OT, AI, APIs, and distributed workloads, traditional approaches based on static credentials, API keys, and long-lived tokens are struggling to keep up with modern threats. Frank shares his vision for continuous trust, where cryptographic source identity and automated policy enforcement work together to verify every interaction in real time.

    Together, Aaron and Frank discuss how organizations can move beyond traditional security models and build architectures capable of responding to threats at machine speed.

    You'll learn:

    Why static keys and tokens remain a major cybersecurity weakness

    How continuous trust differs from traditional Zero Trust approaches

    The growing importance of source identity across IT, OT, cloud, and AI environments

    How automated policy enforcement improves visibility and response times

    Why supply chain and API-based attacks continue to challenge organizations

    What the future of cybersecurity looks like when trust becomes dynamic and continuous

    Whether you're responsible for enterprise security, critical infrastructure, cloud operations, or emerging AI systems, this episode offers a practical look at the next evolution of cyber defense.

    Tune in to discover why identity, trust, and automation are becoming the foundation of modern cybersecurity - only on Protect It All.

    Key Moments: 

    03:56 Importance of cryptographic source identity

    08:52 Securing software supply chains

    11:31 Current gaps in network security solutions

    16:51 Improving cybersecurity through source identity

    17:50 Trust thresholds and security priorities

    23:51 Monitoring and securing backend systems

    24:51 Managing security with SaaS providers

    30:35 Enterprise security and infrastructure challenges

    32:23 Adapting to new technologies

    36:08 Improving cybersecurity tool integration

    40:38 Innovative tech solutions discussion

    About the guest : 

    Frank Goodman is a cybersecurity entrepreneur with 25+ years of experience in enterprise infrastructure and security. After leadership roles at Gigamon, NetScout, and VSS Monitoring, he founded Onoratio to tackle what he sees as a fundamental cybersecurity challenge: building continuous trust and verifiable source identity into the infrastructure itself.

    How to connect Frank : https://www.linkedin.com/in/frankgoodman/

    Learn more about PrOTect IT All:

    Email: info@protectitall.co 

    Website: https://protectitallpod.com/ep109

    X: https://twitter.com/protectitall 

    YouTube: https://www.youtube.com/@PrOTectITAll 

    FaceBook:  https://facebook.com/protectitallpodcast

    To be a guest or suggest a guest/episode, please email us at info@protectitall.co

    Please leave us a review on Apple/Spotify Podcasts:

    Apple   -
Więcej Biznes podcastów
O PrOTect It All
PrOTect IT All with Aaron Crow delivers weekly episodes focused on cybersecurity and operational technology, tackling emerging threats across industrial control systems, AI security, and IoT threats. The show emphasizes enterprise risk management, manufacturing security, power grid security, and threat intelligence, providing listeners with authentic conversations from security leaders and practitioners. It’s a resource for those committed to real-world IT operations security and understanding AI risks in critical infrastructures.
Strona internetowa podcastu

Słuchaj PrOTect It All, Ekonomicznie i wielu innych podcastów z całego świata dzięki aplikacji radio.pl

Uzyskaj bezpłatną aplikację radio.pl

  • Stacje i podcasty do zakładek
  • Strumieniuj przez Wi-Fi lub Bluetooth
  • Obsługuje Carplay & Android Auto
  • Jeszcze więcej funkcjonalności