OT and ICS Security Guides

Practical field guides covering the full OT security program lifecycle — from platform evaluation and procurement through compliance, architecture, and operations.

• Evaluation

  OT Security Platform Evaluation Guide

  How to evaluate and select an OT security platform. Covers passive deployment verification, protocol coverage testing, PoC design, and procurement decision criteria.
  ›
• Compliance

  NIS2 and NERC CIP Audit-Readiness Guide

  Evidence collection requirements, incident reporting timelines, asset categorization, and common audit failures — for both frameworks in parallel, with a filter to highlight your framework.
  ›
• Architecture

  OEM Remote Access Field Guide

  Shadow access discovery, jump host and JIT access architecture, break-glass protocols, and vendor contract language for governing third-party access to OT networks.
  ›
• Vulnerability management

  Patching vs. Compensating Controls

  A decision framework for making the patch-versus-compensating-control call deliberately, documenting it defensibly, and building the review process that keeps open findings from accumulating.
  ›
• Architecture

  Firewalls vs. Data Diodes

  Placement logic across the Purdue model, vendor landscape, TCO comparison, and how to make the internal business case for hardware isolation at high-consequence asset boundaries.
  ›
• Operations

  IT/OT SOC Integration Playbook

  Building the translation and filtering layer between OT monitoring and an enterprise SIEM. Covers triage architecture, SOC model selection, and an eight-step implementation sequence.
  ›
• Architecture

  OT Zero Trust Blueprint

  Translates CISA and NIST CSF 2.0 zero trust requirements into controls that work on legacy PLCs, RTUs, and HMIs. Covers compensating controls, machine actor identity, and a three-year implementation sequence.
  ›