Kristin Demoranville

Like these are things that are like kind of crazy. We can 3D print a salmon. It'll be pro team, but we can do it. So for me, why aren't we attaching cybersecurity to technology more? And I don't want to get into the whole product security conversation because that's a whole different rabbit hole. And I blessings upon the people who do that work.

Like these are things that are like kind of crazy. We can 3D print a salmon. It'll be pro team, but we can do it. So for me, why aren't we attaching cybersecurity to technology more? And I don't want to get into the whole product security conversation because that's a whole different rabbit hole. And I blessings upon the people who do that work.

But why aren't we having more of that conversation inside of these environments? It's because cyber needs a rebrand for OT. We literally cannot explain what we do very well. And I think if we could, we'd probably win more hearts and minds for that people process us for sure.

But why aren't we having more of that conversation inside of these environments? It's because cyber needs a rebrand for OT. We literally cannot explain what we do very well. And I think if we could, we'd probably win more hearts and minds for that people process us for sure.

Yeah, no, exactly. And I think we have to think beyond it inside of the OT environment. So I'll give an example, right? You have an allergen issue inside of a factory. So you have a peanut area and a non-peanut area. You have a disgruntled employee that goes from the peanut area to the non-peanut area. Whose problem is that? Right. Sure. Food safety, food defense. Absolutely.

Yeah, no, exactly. And I think we have to think beyond it inside of the OT environment. So I'll give an example, right? You have an allergen issue inside of a factory. So you have a peanut area and a non-peanut area. You have a disgruntled employee that goes from the peanut area to the non-peanut area. Whose problem is that? Right. Sure. Food safety, food defense. Absolutely.

You get that problem. But it's also cybersecurity's problem because with the industry that we work in, food and ag, cyber physical is still cybersecurity to me. Physical security is still cybersecurity to me. That access control should have been managed better, whether it would have been biometrics, if you could do that without gloves or those kind of things, eye scans, badge readers, that's cyber.

You get that problem. But it's also cybersecurity's problem because with the industry that we work in, food and ag, cyber physical is still cybersecurity to me. Physical security is still cybersecurity to me. That access control should have been managed better, whether it would have been biometrics, if you could do that without gloves or those kind of things, eye scans, badge readers, that's cyber.

And IT, which also could be connected to OT depending on your access level control where you are. Cameras. There should have been cameras. There wasn't.

And IT, which also could be connected to OT depending on your access level control where you are. Cameras. There should have been cameras. There wasn't.

I mean, the only reason they found out is because they did some testing on the other end from quality and they realized, oh, whoops, we have, you know, peanuts in our cookie that we shouldn't have that go out to this major retailer, which they lost that retailer because of that incident. They lost it. They lost face. It was a mess. It was a total brand incident, total nightmare.

I mean, the only reason they found out is because they did some testing on the other end from quality and they realized, oh, whoops, we have, you know, peanuts in our cookie that we shouldn't have that go out to this major retailer, which they lost that retailer because of that incident. They lost it. They lost face. It was a mess. It was a total brand incident, total nightmare.

That to me is something that cybersecurity and OT should have been involved in. It shouldn't have happened in the first place because they should have set up parameters to get around that, you know, not to ever happen. And then on top of it, we should have had that conversation. We should have been part of that conversation.

That to me is something that cybersecurity and OT should have been involved in. It shouldn't have happened in the first place because they should have set up parameters to get around that, you know, not to ever happen. And then on top of it, we should have had that conversation. We should have been part of that conversation.

That bothers me a lot that we don't think that far because that's a resilience piece. Because people are like, oh, well, that's not an adversary. That's not a cyber attack. It's an insider threat. To me, describing this incident to a food defense professional, they literally said that's terrorism. They would class that as terrorism on their report.

That bothers me a lot that we don't think that far because that's a resilience piece. Because people are like, oh, well, that's not an adversary. That's not a cyber attack. It's an insider threat. To me, describing this incident to a food defense professional, they literally said that's terrorism. They would class that as terrorism on their report.

And I went, wow, so that's like domestic terrorism? They're like, yeah. And I'm like, whoa. So now we have a whole other level of things I didn't understand at that time. And now looking back on it and thinking about the system as a whole, yeah, we have a stake in this. We have responsibility. Access control is our problem.

And I went, wow, so that's like domestic terrorism? They're like, yeah. And I'm like, whoa. So now we have a whole other level of things I didn't understand at that time. And now looking back on it and thinking about the system as a whole, yeah, we have a stake in this. We have responsibility. Access control is our problem.

And I've had to define what a cyber physical system is multiple times recently. I thought it was self-explanatory. I'm not picking on people who don't know, but I literally have had four people in the last two weeks ask me exactly what that is. And I've been on air when it's happened. And I'm like, well, it's something that can get on the internet.

And I've had to define what a cyber physical system is multiple times recently. I thought it was self-explanatory. I'm not picking on people who don't know, but I literally have had four people in the last two weeks ask me exactly what that is. And I've been on air when it's happened. And I'm like, well, it's something that can get on the internet.