Skip to content
Sign In Subscribe
OT.SEC.CON. 2026video

Agentic AI in OT: The Ultimate Insider Threat

 and  CYBR.SEC.Media
1 min read

Presenter:

Ian Bramson

This talk argues that OT security efforts fail because organizations underestimate how interconnected and exposed their environments have become—especially as IT/OT convergence expands the attack surface.

Subscribe to the CYBR.SEC.Media newsletter

Key takeaways

  • IT/OT convergence expands risk
    • Increased connectivity between business systems and industrial systems
    • More pathways for attackers to move laterally
    • Traditional boundaries no longer hold
  • Exposure grows faster than defenses
    • New connections are added for efficiency and visibility
    • Security controls don’t keep pace
    • Attack surface quietly expands over time
  • Perimeter thinking is outdated
    • There is no clear “inside vs. outside” anymore
    • Trust assumptions break down in interconnected environments
    • Attackers don’t need to break in—they move through
  • Operational impact is the real risk
    • Disruption to availability and safety is the primary concern
    • Incidents affect physical processes, not just data
    • This raises stakes beyond traditional cybersecurity models
  • Defense needs to follow connectivity
    • Visibility across IT and OT environments
    • Segmentation aligned to real workflows
    • Monitoring that reflects how systems actually interact

Related

Latest

Identity Is the Perimeter. Attackers Know It. Do You?
blog

Identity Is the Perimeter. Attackers Know It. Do You?

Dave Lewis, Global Advisory CISO at 1Password, says if you treat identity as your perimeter, you stop caring about where traffic comes from and start caring about who is asking for access, how they proved it, and what they are allowed to do. Here's how to go about it.

 and  Dave Lewis
CYBR.HAK.CAST Episode 13: Winn Schwartau
CYBR.HAK.CAST

CYBR.HAK.CAST Episode 13: Winn Schwartau

Winn Schwartau argues that the biggest threat facing defenders isn’t just technical, but cognitive: overwhelming information flows that push humans into “mental DDoS.” He has introduced the concept of “critical ignoring” as a prerequisite to critical thinking.

 and  CYBR.SEC.Media