At HOU.SEC.CON 2024, industry experts Kevin Kumpf and Joe O’Donnell delivered an insightful session on how organizations must address the dual challenge of workforce shortages and cyber risks in operational technology (OT) environments. The looming “Peak 65” retirement wave threatens to drain decades of OT expertise, just as increasing digitalization and connectivity are exposing critical infrastructure to unprecedented cybersecurity threats. Kumpf and O’Donnell urged companies to modernize OT cybersecurity strategies to attract next-generation talent and mitigate growing risks.
The speakers highlighted the historical divide between IT and OT teams as a major barrier to progress. Kumpf emphasized that while IT prioritizes security, OT has always focused on safety, creating a clash of cultures and priorities. However, shared concerns like supply chain security and secure contractor access offer common ground. O’Donnell stressed that framing cybersecurity improvements as safety enhancements is the fastest way to gain executive and operational buy-in, helping bridge the gap and drive collaborative solutions.
To secure the future of industrial operations, Kumpf and O’Donnell recommended embracing a holistic approach. Key strategies include deploying remote access and identity management tools, applying a people-process-technology model, and implementing zero trust principles tailored for OT environments. They also called for robust mentoring and training programs to transfer institutional knowledge to younger generations. Their core message was clear: overcoming the IT-OT divide and working together is essential to create a safer, more resilient industrial cybersecurity landscape.
