10:55-11:20 AM - TRACK 4, ROOM 1700
MAKING THE TRANSITION FROM IT TO OT THREAT HUNTING
In this year's talk, Oleksiy will share his personal experience with making the transition from IT to OT threat hunting, and the unique challenges associated with expanding IT threat hunting programs into OT/ICS environments. Whether you're an analyst looking to make a career move, or a program manager looking to expand the threat hunting program, this talk should help you gain a better understanding of the unique complexities involved. The talk will cover a range of challenges, including limited environment visibility, the prevalence of proprietary protocols and legacy systems, focuses on safety and availability, and the intersection of IT threat models with the physical world. We'll wrap up with some example hunts and an overview of the training opportunities that can help you make the transition to OT threat hunting.
Oleksiy "OG" Gayda is a cybersecurity versatilist with a background in datacenter operations and over a decade of experience with digital forensics, incident response, and cyber threat hunting. A BSides Vancouver regular since 2015, Oleksiy has previously presented on the topics of attack technique stacking, and threat hunting OpSec.