Given the vulnerable nature of much OT software and the increasing sophistication of threat actors targeting essential services, it is no longer a matter of if, but when a cyberattack will happen. Modern operational technology environments face evolving attack vectors and heightened geopolitical tensions that challenge traditional prevention-focused security strategies. When robust defensive measures may not be sufficient, maintaining critical operations requires resilience frameworks that prioritize survival and continuity over complete attack prevention.

This session, led by Brian Foster, lead OT security architect at Southern California Edison, will cover:

• The current state of securing critical infrastructure amid shifting OT architectures and geopolitical tensions;
• The need to shift focus from preventing attacks to ensuring survival and maintaining operations during active incidents;
• Innovative strategies and frameworks to close emerging security gaps as critical infrastructure faces new vulnerabilities that challenge traditional security assumptions and defensive approaches.