Critical Infrastructure Security,
Governance & Risk Management,
Operational Technology (OT)
OT Experts Advocate for Collaboration and “Adversary-Hostile” National Defenses
Operational technology environments have increasingly become vulnerable to cyberattacks, with their historical insulation from threats eroding in the face of aggressive nation-state hacking activities. This vulnerability is underscored by escalating global tensions and the growing convergence of IT and OT systems.
Panelists at the Global Cyber Innovation Summit in New York highlighted the persistent need for foundational measures such as public-private partnerships and information sharing to safeguard these critical systems. The discussion included seasoned experts like retired Army General Paul Nakasone and Chris Wray, former FBI director, who emphasized the importance of resilience planning across organizations, irrespective of their size.
Despite prior warnings, many decision-makers across boardrooms and legislative committees continue to underestimate the potential fallout from successful infrastructure attacks. Rob Lee, CEO of Dragos, noted that the capabilities of OT defenders often exceed the threats yet remarked on the urgency for better investment in protective measures rather than ongoing discussions.
The operational landscape has shifted, with contemporary attackers employing more reusable and scalable techniques, as opposed to historical, highly-targeted approaches like Stuxnet. This transformation necessitates a shift in mindset from merely preventive measures to developing robust response strategies that account for an environment in which attackers may already have access to critical systems.
Wray pointed to the 2021 Colonial Pipeline incident as a case study where effective communication and established relationships with law enforcement mitigated the impact of a breach. However, he acknowledged that smaller operators, which manage a majority of infrastructure like water and power systems, often lack the necessary visibility and expertise to respond effectively to similar threats, putting entire communities at risk.
This scenario is compounded by an industry focus on advanced, AI-driven security solutions that can overlook the basic needs of regional operators. Fehrman, CEO of American Electric Power, stressed the vital need for actionable guidance from government and regulatory bodies to enhance operators’ cyber defenses before they delve into advanced threat intelligence.
As discussions continue, stakeholders are reminded of the pressing need for a strategic deterrence approach that raises the operational costs for adversaries. Dawned in the conversation was the idea of exposing malicious actors, thereby diminishing their anonymity and operational freedom, an essential step in countering the rise in cyber threats. Industry leaders are calling for urgent, united action to reinforce the security of critical infrastructure amid a continuously evolving threat landscape.
The momentum established at the summit highlighted the critical nature of ongoing dialogue among stakeholders in the cyber arena. As Fanning, former CEO of Southern Company, pointedly stated, advocating for critical infrastructure security transcends business imperatives, emerging as a fundamentally patriotic duty toward the nation’s security.
