Building Trust and Bridging the Gap in OT and IT Cybersecurity
- Author
- Aaron Crow
- Published
- Wed 04 Jun 2025
- Episode Link
- https://www.listennotes.com/e/1a373274a8274b8ca01efb8fe67b751b
Episode: Building Trust and Bridging the Gap in OT and IT Cybersecurity
Pub date: 2025-06-02
Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization
In this episode, host Aaron Crow sits down with Dean Parsons, one of the most recognized names in the OT and industrial control systems (ICS) security world, for a candid and insightful conversation.
Join Aaron and Dean as they explore what it truly takes to bridge the worlds of IT and OT. Drawing from decades of industry experience, their discussion covers everything from building trust across teams, to the superpower of understanding both operational technology and cybersecurity. Expect real-world stories, practical advice on breaking into OT cybersecurity, and memorable lessons from the plant floor to the boardroom.
They also break down what makes OT security fundamentally different from traditional IT approaches, why risk-based strategies are essential, and how building relationships, sometimes over donuts and coffee—can be just as important as deploying firewalls and patching systems. Whether you’re new to ICS and OT security, or a seasoned defender looking for fresh perspective, this episode brings actionable tips, honest assessments, and inspiration to help you better protect what matters most.
So grab your hard hat (and maybe a box of donuts!), and get ready for a masterclass on collaboration, building skills, and why trust is the real currency in the fight to secure our critical infrastructure.
Key Moments:
05:32 Listening Over Speaking in Legacy Spaces
07:01 IT Security Teamwork and Trust
11:21 Cost-Efficient ICS Security Solutions
15:42 Converging Skill Sets in IT Security
17:36 OT vs IT: Different Risks
22:28 Prioritizing Post-Assessment Actions
23:20 Prioritize SANS ICS Critical Controls
29:31 Engineering Perspective on Critical Assets
30:47 Detecting Misuse of Control Systems
35:52 Collaborative Incident Response Dynamics
39:03 Remote Hydroelectric Plant Journey
40:45 Building Trust with Baked Goods
44:55 "Safety Crucial in Facility Disruptions"
48:50 ICS Security: Closing Safety Gaps
53:37 Enhancing ICS Security Controls
57:18 "ICS Summit and LinkedIn Activities"
About the guest :
Dean is the CEO and Principal Consultant of ICS Defense Force and brings over 20 years of technical and management experience to the classroom. He has worked in both Information Technology and Industrial Control System (ICS) Cyber Defense in critical infrastructure sectors such as telecommunications, electric generation, transmission, distribution, and oil & gas refineries, storage, and distribution, and water management. Dean is an ambassador for defending industrial systems and an advocate for the safety, reliability, and cyber protection of critical infrastructure. His mission as an instructor is to empower each of his students, and he earnestly preaches that “Defense is Do-able!”
Over the course of his career, Dean’s accomplishments include establishing entire ICS security programs for critical infrastructure sectors, successfully conducting industrial-grade incident response and tabletops, ICS digital forensics, and ICS/OT Cybersecurity assessments across multiple sectors. As a SANS Principal Instructor, Dean teaches ICS515: ICS Visibility, Detection, and Response, is a co-author of the SANS Course ICS418: ICS Security Essentials for Managers and an author of SANS ICS Engineer Technical Awareness Training. Dean is a member of the SANS GIAC Advisory Board and holds many cybersecurity professional certifications including the GICSP, GRID, GSLC, and GCIA, as well as the CISSP®, and holds a BS in computer science. When not in the field, Dean spends tine chasing icebergs off the coast of Newfoundland on a jetski, or writing electric 80s inspired electronic music in this band Arcade Knights.
Resources Mentioned:
5 ICS Cybersecurity Critical Controls: https://www.sans.org/white-papers/five-ics-cybersecurity-critical-controls/
SANS ICS Cybersecurity Summit: https://www.sans.org/cyber-security-training-events/ics-security-summit-2025/
How to connect Dean:
https://www.linkedin.com/in/dean-parsons-cybersecurity/
https://www.sans.org/profiles/dean-parsons/
Dean’s Book:
https://www.amazon.com/ICS-Cybersecurity-Field-Manual-EXCLUSIVE/dp/B0CGG6GMHW/
Connect With Aaron Crow:
- Website: www.corvosec.com
- LinkedIn: https://www.linkedin.com/in/aaronccrow
Learn more about PrOTect IT All:
- Email: [email protected]
- Website: https://protectitall.co/
- X: https://twitter.com/protectitall
- YouTube: https://www.youtube.com/@PrOTectITAll
- FaceBook: https://facebook.com/protectitallpodcast
To be a guest or suggest a guest/episode, please email us at [email protected]
Please leave us a review on Apple/Spotify Podcasts:
Apple - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124
Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4
The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.
