SANS 2021 features 30+ Interactive Courses, Three NetWars Tournaments, Trivia Night, and Bonus Talks. Save $150 thru Tomorrow!


To attend this webcast, login to your SANS Account or create your Account.

Ensuring OT Cybersecurity and Operational Resilience for Smart Buildings

  • Thursday, March 11, 2021 at 10:30 AM EDT (2021-03-11 15:30:00 UTC)
  • John Gilbert, Phil Neray


  • Microsoft

You can now attend the webcast using your mobile device!



As more IoT sensors are introduced to OT networks linking crucial building safety systems like elevators, fire safety, BMS, and other Cyber-Physical Systems, the attack surface grows and the risk of safety incidents and corporate liability increases.

In this educational webinar, John Gilbert will share lessons learned highlighting the importance of adapting the best of IT security to the unique challenges of securing OT networks in smart buildings. John and his team at Rudin Management Company (RMC) have created a single platform that acts as a building's brain, giving all building data a common place to live while removing the silos where this data resided previously, thus allowing valuable data correlations and insights to occur.

NantumOS is a smart building OS that analyzes data from disparate systems (BMS, utility & power quality meters, elevators and access control, and others) combined with data from third-party sources (such as weather, occupancy, and IoT sensors) to prescribe operational adjustments that improve building performance and enhance the tenant experience while also decreasing energy use and carbon emissions.

He will also describe how RMC is leveraging Azure Defender for IoT, Microsoft's agentless IoT/OT security platform, to continuously monitor OT networks for anomalous or unauthorized activity. A recent example was when RMC's SOC was immediately alerted to the presence of a contractor's OT devices communicating with the internet to perform call home operations.

RMC is also leveraging the deep integration between Azure Defender for IoT and Azure Sentinel, Microsoft's cloud-native SIEM/SOAR platform, to rapidly detect and respond to multistage attacks that cross IT/OT boundaries.

Speaker Bios

John Gilbert

John Gilbert is COO/CTO for Rudin Management Company (RMC), New York City’s largest privately owned real estate company. He is acknowledged nationally as an industry thought leader in the integration of technology into the built environment. As a co-inventor of the Nantum® building operating system and Executive Chairman of Prescriptive Data, his vision is to future proof real estate by giving all buildings a ‘brain.’ He has been involved in every major project the company has developed over the last 24 years, including the redevelopment and creation of the world’s first smart building at 55 Broad Street, the development of the Reuters Building at 3 Times Square, the redevelopment of the former AT&T Long Lines Building at 32 Avenue of the Americas, the redevelopment of 130 West 12th Street, and the development of The Greenwich Lane. He is also intimately involved with Rudin’s latest project, Dock 72, a ground-up, 675,000-square-foot office building located in the Brooklyn Navy Yard. This project is a joint venture with WeWork and Boston Properties.

Phil Neray

Phil Neray is Director of IoT & Industrial Cybersecurity at Microsoft. He joined Microsoft as a result of their acquisition of CyberX, a leader in agentless security and behavioral analytics for industrial and critical infrastructure networks. Prior to CyberX, Phil held executive roles at IBM Security/Q1 Labs, Symantec, Veracode, and Guardium. Phil began his career as an engineer with Hydro-Quebec and as a Schlumberger engineer on oil rigs in South America. He has a BSEE from McGill University, is certified in cloud security (CCSK), and has a First Degree Black Belt in American Jiu Jitsu.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.