In the latest cybersecurity podcast, Sid Snitkin, leader of the cybersecurity practice at ARC, interviews Radiflow Chief Information Security Officer Rani Kehat and ServiceNow head of product James Destro. This was a wide-ranging discussion covering the convergence of IT and OT cybersecurity, the skills gap, incident response, and more. It's also a good introduction to Radiflow and ServiceNow.
Radiflow was one of the pioneers to develop OT-specific security solutions, and today they have greatly expanded their role to be a proactive cybersecurity provider focused on managing risk and getting the right threat intelligence to measure cybersecurity posture. You can also hear about ServiceNow's expanding role in OT cybersecurity and its partnership with Radiflow. According to James Destro, "ServiceNow has now extended into workflows for the operational technology space, specifically around Incident management, vulnerability response, security, incident response, just to name a few. "
Rani Kehat's thoughts on the Convergence of IT and OT Cybersecurity are also worth noting:
“The term IT and OT I think is slowly dissolving. Basically, we're talking about processes, we're talking about production. They span across multiple silos of technology. Some of them could be in the cloud, some could be something physical, and they are all joined to the same production process. So, these boundaries are currently dissolving and not really describing correctly the threat landscape or the client's system. Today, when we look at any production environment, it will start from anywhere from the enterprise, for example, SAP, and it will go down into the production flow commands, sent via data channels. Controllers today are working on TCP IP networks, some of the production environments, are even service-oriented. So, the convergence is here. The thing that hasn't converged are people, we haven't converged our mentality between engineers and cyber people. “