Real-world OT security
thinking and
disruptive insights

Blog
Curated industrial cyber security content to help you stay ahead of the cyber threat.

Follow us for the latest updates

When CapEx does more for OT Security than your security budget

A CISO presents a modest cyber security budget to the board. The numbers are tight. The justification is careful. Every line item is defended. Meanwhile, three floors down, engineering just approved a multi-million-dollar system upgrade. New...

Read briefing >

The Principle Method: Principle #6 – OT Security Compliance

Compliance isn’t the goal. It’s the baseline. The OT Security Compliance principle in the Industrial Cyber Security Principle Method™ helps organisations not only meet regulatory obligations but do it in a way that supports real security...

Read briefing >

The Principle Method: Principle #5 – OT Security Focused

If you’re securing OT with an IT playbook, you’re already behind. The OT Security Focused principle in the Industrial Cyber Security Principle Method™ demands total commitment to the unique world of operational technology. That means no...

Read briefing >

The Principle Method: Principle #4 – Methodical

When it comes to securing critical infrastructure, cutting corners is a liability. The Methodical principle in the Industrial Cyber Security Principle Method™ is all about resisting the urge to rush, skip steps, or settle for one-size-fits-all...

Read briefing >

Effective system security begins with strategy, not software. Learn how to build a robust industrial defence.

In industrial cyber security, one of the most pervasive and costly mistakes is the belief that buying a security tool equates to solving a problem. This mindset—referred to as the ‘technology-first approach’—is not merely misguided; it’s...

Read briefing >

Is your industrial cyber security strategy too generic? Learn about the hidden risks and how to avoid them.

Industrial cyber security is complex. Organisations managing critical infrastructure and Operational Technology (OT) face constant pressure from evolving cyber threats. In response, many organisations adopt a one-size-fits-all, or “blanket,” approach—applying uniform security measures across all systems,...

Read briefing >
SIS conducted a risk assessment of our operational technology environment and we were very impressed with their approach, methodology, execution, and delivery. They are adaptable, technically astute, and demonstrated a strong ability to fully understand business requirements specific to the oil and gas sector.
PMO and GRC ConsultantOil and Gas
The project provided our organisation with a clear view of our cyber security maturity and highlighted the range of threats that could impact our systems at any time. As a result of the assessment, several mitigation steps have already been implemented based on SIS’ key recommendations.
SCADA and EMS ProgrammerEnergy Interconnection
SIS delivered an Information Security Management System framework that ensured governance was appropriately embedded across ICT operations, including business critical control systems. This significantly strengthened our audit compliance posture against recognised industry standards.
Chief Information OfficerWater Utility
SIS effectively identified the required security controls to ensure essential services such as patching, configuration management, data backup, and secure remote access were available across both IT and OT environments for our new ADMS platform. Their familiarity with OT security is exceptional.
ADMS Project ManagerElectricity Distribution
SIS’ tailored methodology for control systems testing demonstrated a high level of specialist expertise in this domain. They also showed strong flexibility in accommodating changing schedules and efficiently mobilising resources to meet critical production deadlines during a major network management system upgrade.
OT Security LeadEnergy Infrastructure
SIS consultants applied a professional and structured approach to a complex OT enablement scenario. This resulted in comprehensive designs covering key functional and non functional requirements, while also identifying security risks and the supporting process framework. SIS is best in class for IT and OT integration work.
Technology Program ManagerMining and Resources
SIS’ level of expertise in operational technology security is outstanding.
Senior Technology LeaderRail and Freight Transport

See how
your organisation
stacks up against
the benchmark

Put your organisation to the test with the SIS Industrial Cyber Security Assessment Scorecard.
Take the Scorecard

Tell us a bit about you

Our workshops are tailored, so please check any specific areas of interest you might have.

Tell us a bit about you

Our workshops are tailored, so please check any specific areas of interest you might have.