• How do you prepare your OT security program to keep pace with the increasing automation of industrial systems?
• What steps can we take today to ensure our security strategies address the evolving threats of tomorrow?
• How can AI be leveraged by security teams, and used offensively? What are the current limitations to this and how can these be ultimately overcome?
• In the face of more advanced threats and a volatile geopolitical landscape, how should risk profiles and priorities shift?

– Moderator: Dr. Brandy Harris, Director, CyberEd.io
– Anup Singh, CISO, REV Group
– Al Imran Husain, CISO, MillerKnoll
– Curtis Simpson, CISO, Armis
– John Mastrangeli, Cybersecurity Evangelist, Atos
.

• How attacks exploit intermediary systems to move between IT and OT
• Practical application of the “Funnel of Opportunity” for threat detection
• The “Theory of 99”: where threat actors spend time and how to detect them
• Real insights from TRITON and Industroyer incident response

– Chris Sistrunk, Technical Leader, ICS/OT, Google Cloud Security
.

Join this session to uncover key challenges, solutions and lessons learned around:

• Identifying attack paths with the potential to materially impact critical business processes
• Surgically prioritizing efforts based on ability to disrupt attack paths without disrupting business operations
• Optimizing cross-functional relationships and communicating executive-level progress and priorities

– Curtis Simpson, CISO, Armis
.

This session takes a practical, first-hand look at how to build effective visibility and detection strategies across OT networks. We’ll explore what worked (and what didn’t) when implementing solutions like intrusion detection, asset inventory, and threat detection. You’ll leave with insights into:

• Bridging the world between traditional IT networking and OT networking
• How to approach real-time visibility in OT using principles that have worked in real-world deployments
• Actionable steps to improve your own journey toward OT network visibility and threat awareness

– Christian Harter, BISO OT & Director of OT Security and Engineering, UPS

In this session, we’ll explore how to build a modern, data-centric security framework tailored for critical manufacturing environments. We’ll highlight a real-world use case where a global manufacturer secured design files within Virtual Desktop Infrastructure (VDI). Learn how they enforced granular access policies, applied dynamic watermarks, and ensured full auditability – all without slowing down innovation. Key Takeaways:

• How to govern and protect high-quality data across its lifecycle in AI-driven environments
• Why data lineage and governance are central to future manufacturing security strategies
• How one manufacturer secured sensitive IP in VDI without disrupting employee productivity
• Practical steps CISOs can take to balance innovation, compliance, and IP protection

– Ron Arden, EVP, CTO & COO, Fasoo

As threats have evolved so too has Privileged Access Management (PAM). With Modern PAM considered an evolution into identity security. Identity and user management for all accounts within an organization must mature to meet the demands of the cloud, nonhuman identities, and modern attack vectors. Your PAM strategy must now manage and mitigate not only traditional privileged access (root and admin) but also attacks against identities with a path to privileged access. Join us to explore PAM evolution and to identify the key considerations you need to address in defense of your organization.
.
– Christopher Hills, Chief Security Strategist, BeyondTrust
.

In today’s manufacturing landscape, OT and IT convergence is critical for achieving operational resilience, predictive maintenance, and enhanced security. This session explores how manufacturers can gain real-time visibility across OT and IT environments, breaking down traditional silos and enabling data-driven decision-making.
We will also cover:

• Advanced analytics and security capabilities to help optimize manufacturing processes
• Real-world strategies for minimizing unplanned downtime
• Integrating AI and automation into industrial systems for smarter, faster decision-making
• Real-time monitoring to uncover process faults and supply chain challenges

– Keith McClellan, Field CTO, Splunk, a Cisco Company

• How are you strategically addressing the cross-disciplinary skills gap, and building teams that span networking, security, and ICS expertise?
• When should you build internal capabilities vs. partner with external providers?
• How can tools, automation, or services help accelerate capability building?
• How can leaders future-proof their teams through upskilling, tooling, and organizational alignment, while ensuring they retain the talent?

– Moderator: Robert Mitera, Associate Director, Global Cybersecurity Attack Surface Management, Baxter International Inc
– Anup Singh, CISO, REV Group
– Dr. Ed Harris, Global Director Information Security, Mauser Packaging Solutions
.

This session challenges the effectiveness of AI in OT security by focusing on its real-world impact on human decision-making. It introduces a framework for evaluating intelligence tools based on whether they deliver actionable, decision-ready outputs – not just data visibility. Using the “What → So What → What Now?” model, we’ll explore how to shift from reactive triage to strategic response, helping practitioners assess whether AI is truly making systems safer and people more effective.
.
– Jeff Macre, Principal Industrial Cybersecurity Solutions Architect, Darktrace
.

• Smart factories: how have you been balancing security with increased connectivity, stronger reliance on automation and even the adoption of AI-driven capabilities?
• What should a robust governance framework look like in the context of industrial cybersecurity, that allows organizations to implement new technologies securely on the shopfloor?
• Looking at the factory of the future, what key actions are you prioritizing in your OT security programs and recommend peers do as well?

– Moderator: Sankarasubramaniam Chockalingam, Principal Cybersecurity Architect, Cummins
– Prasanna Ramakrishnan, CISO, Clarios
– Randy Billingsley, Senior OT Controls Engineer, Ingredion
.

T1: Playbooks for Control Freaks: Your OT Security Roadmap
.
Every OT security program hits the same roadblocks: gaps in asset inventory, uncontrolled access, and flat networks. This discussion centers on the OT security journey from discovery to access control to microsegmentation with playbook strategies to cross each chasm. Together we can unlock the the secrets to securing our process control network.
.
– Anusha Iyer, Founder & CEO, Corsha
.
T2: Keeping the Line Alive: Cloud Security that Keeps Production Running
.
Cloud security was meant to bring speed and flexibility, but too often it comes at the expense of control. Through this discussion we explore why misconfigurations and human errors still dominate breach reports, why remediation lags behind, and how organizations can shift from reactive firefighting to true prevention – keeping production secure and running.
.
– Ariel Litmanovich, Co-Founder and CTO, Aryon Security
.
T3: How Can AI Be a Force Multiplier for Our Security Teams?
.
From your logistics portals to your “crown jewel” intellectual property, cybercriminals see manufacturers as their cash cow… And now that threat actors have AI tools on their side, the impact has become a lot more severe for many. How is it possible to keep up with threats that move at machine speed? Join us in a lively discussion about how agentic AI can build upon current SecOps structures to provide teams with 24/7 threat exposure oversight.
.
– Adam LeWinter, Head of Solutions, North America, Hadrian
.

T1: Patching PLCs: Why, When, and What’s at Stake
.
Patching in OT isn’t as simple as “just do it.” In this roundtable, we explore real-world scenarios where to patch or not to patch is the question. Join to learn how to evaluate when patching is necessary, how to plan for it without disrupting operations, and what alternatives exist when patching isn’t feasible.
.
– Darren Lensky, Director, Information Security – Digital GRC, Amgen
.
T2: Production vs Protection: Making Smart Choices in OT
.
OT teams are under constant pressure to keep production running – often at the cost of cybersecurity. This roundtable dives into the tension between uptime and security with the goal of devising a framework for making decisions that protect both. Join to hear how other organizations are managing this balance and where they draw the line.
– Moderator: Scott Clayton, Sr. Manager, Manufacturing OT Security, Information Security – Digital GRC, Lucid Motors
.
T3: Securing OT at Scale: Lessons from Architecture Assessments
.
Scaling OT cybersecurity requires architectural rigor and deep domain understanding. In this session, we’ll walk through methodologies for conducting OT architecture assessments. We’ll outline the key design principles for building resilient, segmented, and defensible OT environments – aligned with ICS-specific threat models. We’ll also examine how the “Now, Next, Never” patching framework can influence control zone design, asset prioritization, and risk tolerance. Expect real-world findings, common architectural anti-patterns, and actionable guidance for OT security architects and engineers.
.
– Moderator: Pawel Martynow, Cybersecurity Manager, CC Industries
.