Operational technology: computers whose output is physics
What operational technology is, why OT and IT grew apart, and how data, remote access, and AI are forcing them back together. From four years on plant networks.
Topic
Industrial control systems (ICS) are the computers, controllers, and networks that operate physical processes — from refineries to utilities. This section covers ICS and SCADA architecture, OT/IT convergence, and the security engineering that keeps physical processes safe.
The pillar guides — orientation pages that map this territory and point to the deep-dive articles.
What operational technology is, why OT and IT grew apart, and how data, remote access, and AI are forcing them back together. From four years on plant networks.
SCADA security explained by an engineer who ran plant control networks: why OT differs from IT, the real threat model, and the control set that works.
Critical infrastructure protection explained by dependency: sector interdependencies, CISA and NERC CIP context, and the defenses that matter to operators.
Safe remote access to industrial control systems: jump architecture, session brokering, MFA, break-glass paths, and what should never be exposed.
OT/IT convergence beyond the buzzword: shared services that work, the patching reality, who owns the boundary firewall, and earning trust with operations.
A realistic ICS threat landscape for operators: ransomware spillover, exposed devices, vendor access — and what Stuxnet through PIPEDREAM really teach.
SCADA network design from the wire up: polling vs report-by-exception, Modbus and DNP3 security realities, redundancy, time sync, and remote site links.
An honest engineer's take on the Purdue model: the levels and OT DMZ explained, what cloud and IIoT actually broke, and how to apply it to real plants now.
What makes ICS security different from IT: availability-first priorities, decade-long asset lifecycles, physical consequences, and the control set that works.