Lesley Carhart Jan 13
Check out my latest appearance with the 'PrOTect IT All' podcast. You can tune in here where we discuss how to practically build an OT cybersecurity program, and how to build a career in the field as a cybersecurity practitioner! https://protectitall.co/episodes/understanding-cybersecurity-challenges-in-industrial-settings-with-lesley-carhart #ICScybersecurity
Understanding Cybersecurity Challenges in Industrial Settings with Lesley Carhart

In this episode, host Aaron Crow converses with Lesley Carhart, Technical Director at Dragos, who brings over 15 years of experience in incident response and forensics within critical infrastructure sectors. The episode dives deep into the standard practices in industrial settings, such as operators shutting down power plants for safety and the lack of forensic investigation into equipment failures. Lesley emphasizes the importance of integrating cybersecurity into these environments, pointing out that many failures are due to maintenance or human error, though a notable portion does involve cyber threats. Listeners will learn about the challenges and necessary collaborations between operational technology (OT) and information technology (IT) teams. The discussion addresses cultural and trust barriers that hinder effective cybersecurity measures and advises on how organizations can improve their defenses regardless of size and resources. Lesley also highlights the evolving landscape of cyber threats, including the increasing sophistication of adversaries and the vulnerabilities caused by standardizations in industrial systems. Real-world examples underscore the complexity of securing these environments, emphasizing the need for proactive and informed cybersecurity practices, such as "cyber-informed engineering." Tune in to better understand the critical intersections of cybersecurity and industrial operations, and learn practical strategies to safeguard essential services. Key Moments:  05:00 IT-OT miscommunication leads to cybersecurity risks. 09:23 IT processes are too slow; bypassing is required for solutions. 11:36 Leaving an outdated system may pose less risk. 15:09 Slow changes in OT due to unforeseen impacts. 19:17 Include cybersecurity in root cause analysis discussions. 20:31 Nation-states analyze and bypass industrial control systems. 25:40 Cybersecurity is essential to combat potential system threats. 29:27 Communication, champions, and leadership crucial for cybersecurity. 31:37 Cybersecurity struggle due to resources community helps. 35:03 OT vs. IT language differences affect incident classification. 38:08 Empowered safety culture prevents accidents and retribution. 40:22 Few people have diverse cybersecurity skills and experience. 45:05 Experience across all 17 critical infrastructure verticals. 48:29 Evading detection in the nuclear enrichment process. 51:25 Identify industrial devices, build security program. About the guest :  Lesley Carhart is a renowned cybersecurity expert specializing in industrial control systems (ICS) security. With a keen understanding of the convergence between traditional IT and operational technology (OT), Lesley has been at the forefront of safeguarding critical infrastructures. Her work emphasizes the vulnerabilities of human-machine interfaces (HMIs) and programming devices, which are increasingly resembling typical computers and thus becoming prime targets for malware and ransomware attacks. Lesley's insights highlight the significant risks posed by these hybrid systems, underscoring the importance of robust cybersecurity measures in protecting essential processes. Lesley is honored to be retired from the United States Air Force Reserves, and to have received recognition such as “DEF CON Hacker of the Year”, “SANS Difference Maker”, and “Power Player” from SC Magazine. How to connect Lesley:  Instagram : https://www.instagram.com/hacks4pancakes/ Blog: https://tisiphone.ne Mastodon : https://infosec.exchange/@hacks4pancakes Linkedin : https://www.linkedin.com/in/lcarhart/ Connect With Aaron Crow: Website: www.corvosec.com  LinkedIn: https://www.linkedin.com/in/aaronccrow   Learn more about PrOTect IT All: Email: info@protectitall.co  Website: https://protectitall.co/  X: https://twitter.com/protectitall  YouTube: https://www.youtube.com/@PrOTectITAll  FaceBook:  https://facebook.com/protectitallpodcast    To be a guest or suggest a guest/episode, please email us at info@protectitall.co Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4

Matt FranzJan 12
Ah the I-word https://www.linkedin.com/pulse/25-years-same-question-dale-peterson-vm0vc #ics #scada #ICSCybersecurity #otsecurity
25 Years, Same Question

Why don't we see more OT cyber incidents? My first exposure to OT security was a security assessment of a water SCADA system in 2000. It was a disaster from a security perspective.

Show threadLesley Carhart Dec 10, 2024
Not feeling quite ready to jump right into IR for OT, and want some more foundational knowledge of ICS? My colleague Don Weber will be teaching ICS410 at the same time! This is a great way to get your start in #icscybersecurity. Both courses are full of hands on labs with industrial technologies.
Dragos, Inc.Oct 25, 2024

Dragos’s Robert M. Lee has been selected to present at SXSW 2025! This March, he’ll present a session: “Geopolitical Cyber Threats to Our Water, Electricity & Fuel,” along with other tech and cybersecurity thought leaders from around the globe. Stay tuned for more details including session date and time!

Learn more about his presentation and the event: https://hubs.la/Q02VLSTv0

#icscybersecurity #otcybersecurity #industrialcybersecurity #DragosIntel

Geopolitical Cyber Threats to our Water, Electricity & Fuel

SXSW 2025 Schedule | As geopolitical tensions rise, we’re beginning to see our local water, electricity, and fuel targeted by cyberthreats that in past years were limited to countries at war. Case in point: in the past year cyberattacks linked to conflicts in Europe and the Middle East impacted community water in Texas, Kansas, and Pennsylvania. Attacks can come from sophisticated state actors and now we’ve seen the first successful “hacktivist” attack on US critical infrastructure. These attacks can disrupt popu...

SXSW 2025 Schedule
Dragos, Inc.Oct 18, 2024

Dragos's Technical Director of Incident Response Lesley Carhart shares the latest trends in OT incident response cases that showcase a growing sophistication and awareness in OT cybersecurity. Be sure to catch these valuable insights in their recent blog post: https://www.dragos.com/blog/the-shifting-landscape-of-ot-incident-response

#icscybersecurity #otcybersecurity #industrialcybersecurity #incidentresponse @hacks4pancakes

The Shifting Landscape of OT Incident Response | Dragos

Dragos's Lesley Carhart covers recent trends in OT incident response cases that highlight an increase in OT cybersecurity maturity and awareness.

Dragos | Industrial (ICS/OT) Cyber Security
Lesley Carhart Oct 7, 2024
I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. https://careers.dragos.com/jobs/2118?lang=en-us #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs
Principal ICS/OT Cybersecurity Consultant in United States | Dragos

Dragos is hiring a Principal ICS/OT Cybersecurity Consultant in United States. Review all of the job details and apply today!

Principal ICS/OT Cybersecurity Consultant in United States | Dragos
Lesley Carhart Oct 1, 2024
Happy that I can share today that @dragosinc has acquired Chicago-based Network Perception. We’re super excited to be working with their team and to work with their software! https://www.dragos.com/resources/press-release/dragos-acquires-network-perception/?utm_content=310015842&utm_medium=social&utm_source=linkedin&hss_channel=lcp-11050198 #ICSCybersecurity
Lesley Carhart Sep 5, 2024
I was on the Domaintools podcast discussing #ICScybersecurity
https://www.linkedin.com/posts/domaintools_cybersecurity-operationaltechnology-otsecurity-activity-7237128572723740672-QTcW?utm_source=share&utm_medium=member_ios
DomainTools on LinkedIn: #cybersecurity #operationaltechnology #otsecurity

In this episode of the Breaking Badness Cybersecurity Podcast, Kali Fencl and Daniel Schwalbe sat down with Lesley Carhart, a seasoned incident responder…

Show threadLesley Carhart Aug 30, 2024
Speaking of #ICSCybersecurity… I think I’ve gotten a lot of followers on social justice and general IT lately. As a little re-intro, what I do for a living is respond to and investigate hacking of critical industrial infrastructure like power, water, manufacturing, and transportation. Stuff that doesn’t look like computers but often is today. I’ve been doing it for over a decade and a half, If that’s ever something you want to know more about, AMA and I’ll do my best to answer your questions.
Lesley Carhart Aug 30, 2024
I’m sorry, but for some reason there are exactly two types of humans in industrial cybersecurity. 95% are mission driven and incredibly fun and kind. 5% are very angry and gatekeepy senior people who want to prevent anyone else from ever contributing to the field. #ICSCybersecurity