When it comes to OT cybersecurity, the fundamentals still matter - even in the age of AI.

In this episode of Protect It All, host Aaron Crow sits down with Caleb Davis for a practical discussion on securing industrial environments where uptime, safety, and resilience are non-negotiable.

From legacy control systems and tight budgets to AI-powered threats and open-source security tools, Aaron and Caleb explore the real challenges organizations face every day - and the strategies that deliver meaningful protection without requiring massive investments.

A major focus of the conversation is defense in depth: building multiple layers of protection, fostering trust between IT and OT teams, and strengthening foundational cybersecurity practices before chasing the latest technology.

You'll learn:

• Why defense in depth remains the cornerstone of OT cybersecurity
• How to improve security in legacy industrial environments
• Practical ways to strengthen OT security - even with limited budgets
• Why asset inventory, segmentation, and basic cyber hygiene still matter most
• How AI is changing both offensive and defensive cybersecurity
• The importance of trust and collaboration between IT, engineering, and operations

Whether you're responsible for manufacturing, utilities, water treatment, energy, or any critical infrastructure environment, this episode delivers practical strategies you can apply immediately.

Tune in to learn how layered defenses, strong relationships, and proven fundamentals create resilient OT security programs - only on Protect It All.

Key Moments:

05:41 PLCs and network security challenges

07:24 Challenges in Updating OT Systems

11:33 Impact of Downtime on Security

16:03 Using affordable cybersecurity tools

19:14 Building Trust in Business Deals

23:01 Security challenges in medical devices

25:49 Trust and IT implementation risks

28:35 Using AI for safer software updates

31:05 Cybersecurity best practices for plants

33:40 Balancing Security Costs and Business Needs

37:50 Nurturing OT like raising kids

41:20 AI and cybersecurity concerns

About the guest : Caleb Davis is a founding member of SolaSec, a cybersecurity consulting firm specializing in advanced penetration testing for embedded and connected systems. Based in Dallas/Fort Worth, he holds a degree in Electrical Engineering from the University of Texas at Tyler and is a patent-holding expert with vast experience in hardware and firmware security. Caleb leads deep technical assessments across a range of high-impact industries, including medical devices, automotive, industrial control systems, ATMs and financial terminals, aerospace components, and consumer electronics. His work focuses on secure design, trusted boot processes, cryptographic implementations, and threat modeling, helping organizations integrate security throughout the development lifecycle and align with industry and regulatory standards.

How to connect Celeb :

SolaSec: https://solasec.io

LinkedIn: https://www.linkedin.com/in/caleb-davis-400439100/

OTPCAP (OT PCAP analysis tool): https://github.com/SolaSec/otpcap

Learn more about PrOTect IT All:

• Email: info@protectitall.co
• Website: https://protectitallpod.com/ep112
• X:<...

Quantum computing isn't a future problem - it's a cybersecurity challenge organizations need to start preparing for today.

In this episode of Protect It All, host Aaron Crow welcomes Jim Sortino for a timely discussion on quantum readiness, cryptographic risk, and the future of cybersecurity.

As organizations continue accumulating technical debt and relying on aging cryptographic systems, the arrival of quantum computing threatens to disrupt the very foundations of digital trust. Jim explains why leaders need to think beyond today's threats and begin preparing for a future where current encryption standards may no longer provide adequate protection.

Together, Aaron and Jim explore the practical realities of quantum risk, how organizations can identify vulnerable systems, and why crypto agility is becoming one of the most important cybersecurity priorities of the next decade.

You'll learn:

• What quantum computing means for modern cybersecurity
• Why cryptographic technical debt creates long-term business risk
• How to assess your organization's quantum readiness
• The importance of crypto agility and encryption modernization
• Practical steps security leaders can take today
• Why IT and OT environments must prepare for the same emerging threats

Whether you're a cybersecurity professional, technology leader, board member, or simply curious about the future of digital security, this episode provides actionable insights to help you prepare before quantum disruption arrives.

Tune in to learn why the organizations that start preparing today will be the ones best positioned to protect tomorrow.

Key Moments:

06:02 Challenges with product maintenance and AI integration

08:42 Importance of Software in Everything

12:30 Addressing cybersecurity risks

16:00 Authentication and trust challenges

18:13 Preparing for technological changes

20:56 Planning and Implementing Projects

25:38 Budget planning for cybersecurity risks

28:54 Challenges for Small Financial Institutions

31:27 Importance of regulations in business

33:37 Legacy security systems and protocols

36:38 Quantum readiness and future risks

About the guest :

Jim Sortino is the Chief Revenue Officer and a Board Member at Isera Corporation, where he helps organizations address emerging cybersecurity challenges through innovative identity and cryptographic security solutions. With decades of experience working with global enterprises, Jim specializes in helping leaders navigate complex technology risks, from technical debt and encryption modernization to quantum readiness. He is a passionate advocate for proactive cybersecurity strategies that prepare organizations for the next generation of digital threats.

How to connect Jim Sortino : https://www.linkedin.com/in/jamessortino/

Learn more about PrOTect IT All:

• Email: info@protectitall.co
• Website: https://protectitallpod.com/ep111
• X: https://twitter.com/protectitall
• YouTube: https://www.youtube.com/@PrOTectITAll
• FaceBook: https://facebook.com/protectitallpodcast

To be a guest or suggest a guest/episode, please email us at...

Cybersecurity isn't the goal. Business resilience is.

In this episode of Protect It All, host Aaron Crow sits down with Lee Ward to explore why organizations need to move beyond compliance checklists and start focusing on what really matters: the ability to withstand, recover from, and adapt to disruption.

Drawing on more than two decades of experience spanning the UK civil service, logistics, supply chain operations, and governance, risk, and compliance (GRC), Lee shares practical insights on helping boards and executives understand cyber risk in business terms.

Together, Aaron and Lee discuss the realities of risk acceptance, operational technology challenges, patching constraints, and why resilience not perfection should be the ultimate objective of any cybersecurity program.

You'll learn:

• Why resilience is a better business objective than security alone
• How to communicate cyber risk to boards and executive leadership
• The difference between compliance and meaningful risk reduction
• Practical approaches to OT security, patching, and operational constraints
• Why risk acceptance is a critical leadership responsibility
• How logistics and supply chain organizations approach resilience planning

Whether you're a security leader, executive, risk manager, or OT practitioner, this episode provides practical guidance for building organizations that can continue operating when disruptions inevitably occur.

Tune in to learn why resilience not just security is becoming the defining metric of successful organizations.

Key Moments:

03:59 Understanding Cyber Risks for Leaders

07:16 Discussing non-cyber risks to services

11:12 Understanding business impact of cyber risk

15:45 Evaluating Cybersecurity Risks

19:37 Understanding installation complexities

21:15 Global risks affecting business resilience

24:27 Discussing regulation impacts on business

29:30 People's drive to make good choices

31:27 Industrial control systems demo at DEFCON

34:43 Limitations of technical security

38:06 The future of AI and education

About the guest : Lee Ward is a Governance, Risk Management, and Compliance (GRC) leader with more than 20 years of experience spanning the UK civil service, logistics, supply chain operations, and cybersecurity. Specializing in business resilience, risk governance, and operational technology security, Lee helps organizations translate complex cyber risks into meaningful business decisions. He is passionate about moving beyond compliance-driven security programs and helping leaders build resilient organizations that can adapt, recover, and thrive in an increasingly uncertain world.

How to connect Lee: https://www.linkedin.com/in/lee-ward-882a54244/

Learn more about PrOTect IT All:

• Email: info@protectitall.co
• Website: https://protectitallpod.com/ep110
• X: https://twitter.com/protectitall
• YouTube: https://www.youtube.com/@PrOTectITAll
• FaceBook: https://facebook.com/protectitallpodcast

To be a guest or suggest a guest/episode, please email us at info@protectitall.co

Please leave us a review on Apple/Spotify Podcasts:

Apple -