Kyle Peters is a recovering building automation and HVAC technician and programmer who was drawn to the dark side of cybersecurity and never looked back. Today he is the senior consultant for OT Cybersecurity, focusing on building automation systems at Intelligent Buildings. If you’d like to geek out on such things, reach out to Kyle via LinkedIn or email blackhole@secretdomain.xyz.
In this conversation, Kyle discusses the world of building management systems and the importance of cybersecurity in this field. He highlights the diversity of building systems and the interconnectedness of various components. The conversation emphasizes the need for a risk-based approach to security and the importance of policies and standards. Kyle also emphasizes the value of understanding the system and planning ahead to mitigate risks. The conversation concludes with a discussion on securing remote access and implementing segmentation. The conversation explores the lack of cybersecurity preparedness in organizations, the need to translate cybersecurity risks to business risks, the likelihood of attacks and targeting, the challenge of selling likely risks, exciting technological advances in cybersecurity, concerns about AI and rapid technological changes, and closing thoughts and a call to action.
Takeaways
Building management systems encompass a wide range of components, including HVAC systems, fire alarms, and lighting.
A risk-based approach to security is crucial in building management, considering the diverse systems and potential vulnerabilities.
Policies and standards play a significant role in ensuring the security and reliability of building management systems.
Simple solutions, such as proper cable management and backup plans, can greatly enhance the security and availability of building systems.
Understanding the system and planning ahead are essential for effective risk mitigation in building management.
Securing remote access and implementing segmentation are key measures to protect building management systems from cyber threats. Many organizations are not adequately prepared for cybersecurity threats, either due to limited budgets or lack of expertise.
It is important to translate cybersecurity risks into business risks to help organizations understand the potential impact on their operations.
Cyber attacks can come from various sources, including nation-state actors, but also from simple human errors or system failures.
Selling the importance of cybersecurity can be challenging, as the most likely risks may not be as sensational as nation-state attacks.
Exciting technological advances in cybersecurity are on the horizon, but they also bring concerns about the potential risks and implications of AI and rapid technological changes.
—
Connect with Kyle:
Connect with Aaron Crow:
- Website: www.corvosec.com.css-j9qmi7{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:row;-ms-flex-direction:row;flex-direction:row;font-weight:700;margin-bottom:1rem;margin-top:2.8rem;width:100%;-webkit-box-pack:start;-ms-flex-pack:start;-webkit-justify-content:start;justify-content:start;padding-left:5rem;}@media only screen and (max-width: 599px){.css-j9qmi7{padding-left:0;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;}}.css-j9qmi7 svg{fill:#27292D;}.css-j9qmi7 .eagfbvw0{-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;color:#27292D;}Mark as Played
Popular Podcasts
Dateline NBC
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations.
Stuff You Should Know
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
The Nikki Glaser Podcast
Every week comedian and infamous roaster Nikki Glaser provides a fun, fast-paced, and brutally honest look into current pop-culture and her own personal life.