))
8 - Qusai AlRabei: How to design and run an effective OT SOC & lessons from the field that can save millions
Manage episode 475556180 series 3644038
What does it really take to build and operate an OT Security Operations Center (SOC)? In this episode of 25Minutes, I sit down again with Qusai - an expert with hands-on experience setting up OT SOCs, including his first major project in the Middle East. We explore the key differences between OT and IT incident response, the unique challenges of industrial environments and why traditional approaches often fall short. Qusai shares common mistakes companies still make, how to develop tailored use cases and playbooks and which parameters matter most when deciding between an OT SOC, IT SOC, or a hybrid model. If you're in cybersecurity, industrial operations or simply want to understand the nuances of securing operational technology environments, this episode is packed with actionable insights and lessons learned from the field.
Important note: The views and opinions expressed in this episode are solely those of the individuals involved and do not necessarily reflect those of any organization, employer or affiliation.
Our Guest:
LinkedIn: https://ae.linkedin.com/in/qusai-alrabei-cybersecurity
https://www.weforum.org/stories/2023/12/why-securing-the-ot-environment-is-important/
25 Minutes Podcast
Hostey by: Eliel Mulumba
Audio editing & mastering: Michael Lauderez
Join conversation on LinkedIn: www.linkedin.com/in/eliel-mulumba-133919147
Chapters
1. 8 - Qusai AlRabei: How to design and run an effective OT SOC & lessons from the field that can save millions (00:00:00)
2. Thank you for listening! (00:00:01)
3. Challenges in OT security (00:02:27)
4. Evolution of OT SOCs (00:06:16)
5. Incident response in OT vs IT (00:06:53)
6. AI and machine learning in OT security (00:10:28)
7. Building an OT SOC (00:12:33)
8. Misconceptions in OT SOC setup (00:16:46)
9. Future of OT security (00:20:18)
11 episodes
Share
