Sveriges mest populära poddar
@BEERISAC: OT/ICS Security Podcast Playlist
NäringslivTeknologi

Compliance Isn’t Security: NERC CIP 15 and the Real Gaps in OT Network Monitoring

23 min24 februari 2026
Podcast: PrOTect It All (LS 27 · TOP 10% what is this?)
Episode: Compliance Isn’t Security: NERC CIP 15 and the Real Gaps in OT Network Monitoring
Pub date: 2026-02-23

Get Podcast Transcript →
powered by Listen411 - fast audio-to-text and summarization



Passing an audit doesn’t mean you’re secure.

In this episode of Protect It All, host Aaron Crow dives into one of the biggest misconceptions in operational technology: the belief that compliance equals protection. Using NERC CIP 15 as a real-world case study, Aaron explores why meeting regulatory requirements is only the starting point - not the finish line.

A major focus of this conversation is OT network monitoring, especially the often-overlooked east-west traffic inside your environment. Many organizations monitor perimeter traffic while internal blind spots remain wide open.

You’ll learn:

  • Why compliance frameworks don’t automatically create security
  • The real challenges of implementing NERC CIP 15 at scale
  • Why internal network visibility (east-west monitoring) matters
  • How to establish meaningful baselines in legacy OT environments
  • The difference between audit success and operational resilience
  • Why architecture, tooling, and skilled personnel must work together

Whether you’re working in utilities, manufacturing, or critical infrastructure, this episode provides practical guidance on how to move beyond checklists and build security programs that truly reduce risk.

Tune in to learn how to transform compliance requirements into real operational protection - only on Protect It All.

Key Moments: 

00:00 OT Security Blind Spots

05:15 "OT Security and Monitoring Challenges"

10:41 Aging Switches and Monitoring Challenges

13:16 OT Protocols and Infrastructure Challenges

15:42 "IT vs OT: Complexity Challenges"

18:03 "Balancing Compliance and Security"

21:57 Securing Critical Infrastructure Spaces

Connect With Aaron Crow:

Learn more about PrOTect IT All:

 

To be a guest or suggest a guest/episode, please email us at [email protected]

Please leave us a review on Apple/Spotify Podcasts:

Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124

Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4



The podcast and artwork embedded on this page are from Aaron Crow, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Fler avsnitt av @BEERISAC: OT/ICS Security Podcast Playlist

Visa alla avsnitt av @BEERISAC: OT/ICS Security Podcast Playlist
The Invisible Attack Surface: Cybersecurity for Embedded Systems
33 min
Securing Packaged Systems
22 min
EP 84: Airports as Critical Infrastructure: OT Security and Operational Disruption
37 min
OT Patching vs IT Patching: What's Commonly Misunderstood
28 min
Ferrari ohne Führerschein? Die richtige Reihenfolge zur OT-Sicherheit für CEOs | OT Security Made Simple
25 min
Digital Twins in ICS/OT (Arabic)
1 tim 10 min
OT Risk Management That Works: Asset Visibility, Risk Quantification & CISO-Level Strategy
1 tim 1 min
HaHacking Health: Unveiling vulnerabilities in Wearable Medical Devices
59 min
PLC Scanning: Safe Practice or Security Risk?
1 tim 12 min
Disaster Recovery in OT with Saltanat Mashirova
55 min

@BEERISAC: OT/ICS Security Podcast Playlist med Anton Shipulin / Listen Notes finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.