Tackling the Necessity of Converged IT/OT Security

Federal agencies take seriously the cybersecurity of their IT systems. They must observe numerous federal policies and programs, from Executive Order 14028 on down. Many agencies are far less aware of the need to strengthen the security of their operations technology (OT), the equipment that runs many kinds of systems, including healthcare. Historically, that was less of an issue since most OT systems were closed and standalone. But the internet has changed that; the prospect of improving efficiency, gathering performance data and lowering expenses has led to much more convergence between OT and IT.

After high-profile ransomware attacks that threatened OT systems, such as the Colonial Pipeline attack, the National Security Telecommunications Advisory Committee addressed the dangers of IT/OT convergence in a report. One of its findings: many organizations lack visibility into their complete OT inventory, including where OT and IT are converged.

Join us as thought leaders from government and industry discuss the challenges of addressing the security of OT and converged IT/OT systems and the basic steps agencies should take to meet them.

Learning Objectives

• Outline the procedures for inventorying OT systems, including environments where they are converged
• Review ways to implement enhanced OT-specific cybersecurity procurement requirements
• Identify mechanisms – already in place and needing development – to implement standardized, real-time, interoperable information sharing to improve collaboration in response to OT risks