SANS Open-Source Intelligence (OSINT) Summit & Training offers immersive cyber security courses and a free Summit!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

The Fusion of IT and OT Security: What You Need to Know

  • Wednesday, November 02, 2016 at 1:00 PM EDT (2016-11-02 17:00:00 UTC)
  • Rebecca Lawson, Derek Harp, Bengt Gregory-Brown


  • GE

You can now attend the webcast using your mobile device!



Convergence with IT environments has introduced new security vulnerabilities into OT networks. Because of their design, operational issues and other factors, the OT controls network environment is often a blind spot where malicious activity directed toward control systems can't be seen by traditional IT security tools and techniques.

And, a traditional IT approach to security can be risky in an OT environment, which has critical uptime, safety, and other operational requirements. But given the inevitable integration of IT and OT, what can be done to ensure visibility into networks and to protect critical infrastructure assets from attacks?

This webcast will cover what you need to know about protecting physical assets in your OT environment, including:

  • Challenges to securing OT environments
  • The nature of threats and vulnerabilities in IT vs OT environment
  • How to identify security gaps and implement compensating controls
  • How to justify the need for OT security to decision makers
  • ICS Security Recommendations

View the associated white paper here:

Speaker Bios

Bengt Gregory-Brown

Bengt Gregory-Brown is a consultant to the SANS ICS program and the principal analyst at Sable Lion Ventures, LLC, a virtual accelerator focused on emerging cyber security solutions. He brings more than 20 years of experience to bear in his writings about the management of IT and infrastructure projects, enterprise security governance, IT and ICS security risk analysis, regulatory compliance and policy conformance for high-profile companies. Bengt has managed multiple patents from ideation through issuance and has authored works for numerous corporate entities.

Derek Harp

Derek Harp is currently the director for ICS Global Programs at SANS and chair of the GICSP Steering Committee. He is responsible for organizing events, resources and initiatives that educate and enable increased collaboration within the entire ICS security community. Derek has served as a founder, CEO or advisor of early-stage companies for the past 18 years with a focus on cyber security. He is a former U.S. Navy officer with experience in combat information management, communications security and intelligence.

Rebecca Lawson

Rebecca Lawson serves as executive director for cybersecurity at GE Wurldtech, a company that focuses on cyber-physical security for embedded devices, industrial control systems, and OT network communications. Rebecca focuses on product and service strategy, including security research and threat intelligence. Previously with Juniper Networks and HP, Rebecca's security experience covers data, application, infrastructure, cloud, and network security. Her background in enterprise and internet technologies spans more than 25 years in product marketing and product management, strategy, marketing communications and business development.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.