Ampyx Cyber Blog

The Intersection of Regulation & Resilience

Protocol Converters: The 2023 SAR Just Got Validated (Again)
Policy Pulse Patrick Miller Policy Pulse Patrick Miller

Protocol Converters: The 2023 SAR Just Got Validated (Again)

The 2023 NERC SAR asked whether protocol converters belong inside CIP-002. A new disclosure of 22 CVEs in serial-to-Ethernet hardware, set against a decade of advisories across the category, settles the question. The categorization debate now has its empirical record, and asset owners have CIP-007 R2 and CIP-013 work to do that does not wait for the standard.

Read More
Is Something Weird Happening on Your System?
Deep Dive Patrick Miller Deep Dive Patrick Miller

Is Something Weird Happening on Your System?

Learn how critical infrastructure operators can spot the early signs of cyber intrusions directly from the control room. Drawing on the latest NERC and CISA guidance, this updated guide details specific physical hardware, workstation, and SCADA anomalies to watch for. Empower your frontline staff with a proactive "See Something, Say Something" cyber defense strategy tailored for OT environments.

Read More
Proactive Cyber Defense: Recognizing Cyber Intrusions for Critical Infrastructure System Operators
Skill Set Patrick Miller Skill Set Patrick Miller

Proactive Cyber Defense: Recognizing Cyber Intrusions for Critical Infrastructure System Operators

Leveraging Guidance from the Electric & Water Sectors and Broadening for all Critical Infrastructure. In an era marked by rapid digital transformation and increasing cyber threats, whether electric, water and wastewater systems, chemical, or any other of the critical infrastructure sectors, it is imperative for control system operators to be well-versed in recognizing and responding to cyber intrusions.

Read More