OT/ICS security where safety leads. Regulator-ready evidence.

Threat landscape we see

Energy-sector adversaries include nation-state intrusion sets with explicit interest in pre-positioning on operational technology, ransomware operators who have learned the leverage of energy disruption, and supply-chain operations targeting equipment vendors. The 2021 Colonial Pipeline event reframed how regulators and operators talk about IT/OT separation. Continuous adversary pressure coexists with substantial regulatory pressure: NERC CIP, TSA pipeline directives, and state public-utility commissions.

How we help

• OT/ICS Security — passive-first asset discovery, Purdue-aligned segmentation, and OT-aware monitoring that respects safety-instrumented systems.
• Compliance Support — NERC CIP readiness and audit support; TSA pipeline-security directive documentation; evidence pipelines that survive regulatory scrutiny.
• Incident Response & Forensics — IR retainer with practitioners experienced in OT-context investigation and safety-aware containment.
• Network Detection & Response — IT-network detection complementing OT monitoring; IT/OT boundary visibility.

Compliance considerations

• NERC CIP-002 through CIP-014 for bulk electric system operators
• TSA Security Directives for pipeline operators (post-Colonial)
• IEC 62443 for industrial automation and control system security
• NIST 800-82 for ICS security guidance
• DOE Cybersecurity Capability Maturity Model (C2M2)
• State public-utility-commission cybersecurity reporting requirements
• API 1164 for pipeline SCADA security