Summary

In this “2024 Episode 1 Full Interview,” cybersecurity subject-matter expert Max Kon discusses his career journey and the crucial aspects of industrial cybersecurity. Interviewed by Angle Lopez, Max highlights the differences between IT and OT security, the importance of availability and consequence prevention, and the role of the International Society of Automation (ISA). He addresses common mistakes in the industry, the need for thorough risk assessments, and the importance of specialized training programs. The interview emphasizes viewing cybersecurity as an investment and outlines best practices for end-users, service providers, and manufacturers.

• 0:00 Initial Employment and ISA Recommendation
• 1:01 Introduction and Purpose of Interview
• 1:14 Max’s Professional Background
• 3:07 Founding of Own Company and Focus on Cybersecurity
• 5:02 Involvement with ISA and Cybersecurity Standards Development
• 6:39 Overview of ISA and Its Role
• 7:49 Differences Between IT and OT Security
• 9:44 Significance of Availability in Industrial Environments
• 10:12 Lifespan of Control Systems vs IT Systems
• 11:38 Importance of Consequence Prevention in OT Security
• 15:16 Best Practices in Industrial Cybersecurity
• 16:09 End-User Responsibilities in Cybersecurity
• 17:16 Service Provider Responsibilities
• 18:44 Manufacturer Responsibilities in Cybersecurity
• 20:44 Common Mistakes in Industrial Cybersecurity
• 22:16 Issues with Risk Assessment and Budgeting
• 23:03 Problems with Copying IT Security Approaches to OT
• 24:17 Mistakes by Solution Providers and Manufacturers
• 25:32 Major Challenges in Industrial Cybersecurity
• 28:28 Reasons for Continued Failures in Cybersecurity
• 29:09 Considering Cybersecurity as an Investment
• 30:43 Best Training Programs for Cybersecurity
• 32:01 Purpose of ISA Training Programs
• 34:01 Overview of WisePlant Training Program
• 36:00 Conclusion and Thank You

In “24 Episode 1 Full Interview,” Angel Lopez and cybersecurity subject matter expert Max Kon as they dive into an in-depth discussion on industrial cybersecurity. Max, with extensive experience in engineering, control systems, and industrial automation, shares his journey from working at multinational companies to founding his own cybersecurity firm. The interview explores the distinctions between IT and OT security, emphasizing the critical importance of availability and consequence prevention in industrial settings.

The video delves into the role of the International Society of Automation (ISA), offering insights into its standards and the significance of adopting proper cybersecurity measures. Max also addresses common mistakes made by end-users and providers, stressing the need for thorough risk assessments and tailored cybersecurity management programs. The conversation highlights the challenges faced by companies in implementing effective cybersecurity strategies and the benefits of viewing cybersecurity as an investment rather than an expense.

Additionally, the session touches on the importance of specialized training programs, including ISA’s certification courses and WisePlant practical training approach, to ensure that all stakeholders are well-equipped to manage cybersecurity risks. This comprehensive interview serves as a valuable resource for professionals seeking to understand and improve industrial cybersecurity practices.

Episode 1 Clips

Individual clips have been produced covering specific topics within the interview.