Artificial Intelligence & Machine Learning , Events , Governance & Risk Management

SEC Regulations Demand Greater Transparency in OT Security

Capdevielle of Nozomi Networks on CISO-Board Dynamics and Cybersecurity Governance
Edgard Capdevielle, president and CEO, Nozomi Networks

Amid new SEC disclosure regulations, CISOs have transitioned to more active roles in engaging company boards, redefining the dynamics of cybersecurity governance. These regulations require organizations to report cybersecurity incidents and state their cybersecurity posture, said Edgard Capdevielle, president and CEO, Nozomi Networks.

See Also: Close the Gapz in Your Security Strategy

The SEC rules have catalyzed a shift in how industrial organizations manage cybersecurity, he said, compelling them to integrate operational technology strategies with overall security postures.

"From a legacy perspective, OT technology has lived in usually the business units. Whether it's production, refining a loyal generation of electricity, manufacturing widgets, OT technology came with the production equipment," Capdevielle said. "Initially, it was completely separated; the business units were responsible for it. As technology matured and became standardized, the interconnect became a TCP/IP network."

In this video interview with Information Security Media Group at RSA Conference 2024, Capdevielle also discussed:

  • The convergence of IT and OT environments;
  • The implications that organizations incorporating IoT technologies have for the attack surface;
  • The importance of collaboration with technology providers and vendors to enhance security capabilities.

Capdevielle has been a cybersecurity investor and adviser for more than two decades. His areas of expertise include corporate strategy development and execution, product management and marketing, business development, and private equity investments.

About the Author

Mathew J. Schwartz

Mathew J. Schwartz

Executive Editor, DataBreachToday & Europe, ISMG

Schwartz is an award-winning journalist with two decades of experience in magazines, newspapers and electronic media. He has covered the information security and privacy sector throughout his career. Before joining Information Security Media Group in 2014, where he now serves as the executive editor, DataBreachToday and for European news coverage, Schwartz was the information security beat reporter for InformationWeek and a frequent contributor to DarkReading, among other publications. He lives in Scotland.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.