The Industrial Security Podcast Credibility, not Likelihood [The Industrial Security Podcast]
Jun 17, 2025
Kenneth Titlestad, Chief Commercial Officer at Omni and chair of the Norwegian International Electrotechnical Committee subgroup, dives into the intersection of safety and cybersecurity. He discusses the evolution of cyber threats, particularly after incidents like Stuxnet, and the importance of credible threat assessment. Titlestad emphasizes minimizing false positives in detection while advocating for proactive measures. He also explores the role of AI in security and the need for a shift in focus from likelihood to credibility in managing risks, especially for critical infrastructure.
AI Snips
Chapters
Transcript
Episode notes
Childhood Roots of Risk Awareness
- Kenneth grew up hearing risk stories from his dad who worked offshore in oil and gas during the 1977 Bravo blowout.
- He only fully grasped the severity of industrial risk when he visited an offshore platform himself.
Troubleshooting a Noisy Firewall
- Kenneth was sent offshore to fix a noisy firewall causing many false alerts, which turned out to be a misconfiguration.
- This incident sparked his curiosity about cyber attacks and emergency responses in OT environments.
Use Islanding to Mitigate OT Risk
- Automatic 'islanding' can enhance security by severing IT-OT connections during suspicious activity.
- This limits attacker control with minimal operational impact if carefully implemented and triggered.