It is not uncommon for OT/ICS cybersecurity to fall under the authority of IT. This isn’t necessarily a bad thing, unless IT is taking responsibility/action and lacks OT-specific knowledge. While many concepts can be drawn from IT security to help secure OT, many of the processes do not translate well. The opposite also presents a challenge, as many OT operators and engineers may not have cybersecurity experience. This is why it is imperative for both OT and IT cybersecurity teams to work together; however, that isn’t always as easy as it sounds. Verve Industrial seems to agree and shares a recent post on 5 Questions a CISO Should Ask About OT Cybersecurity. The five questions include: who should be involved, where should you begin the journey, why do you need an OT security program, what security management actions should be included in the program, and how should an OT security program be managed. For the “why” each question should be asked, visit the post at Verve Industrial.