I have spent more than 45 years working in industrial automation and industrial control systems, including field service, system programming, process engineering, control strategy implementation, and cybersecurity. Most of my career was with one of the leading global suppliers of industrial control system solutions, which gave me the opportunity to work with many different asset owners, projects, industries, and automation environments.
Working in a global environment, with exposure to thousands of industrial control systems and many different process automation challenges, has been an important part of my professional development. It gave me insights that are not easily gained from a single project, a single plant, or a single organizational perspective. I am grateful to the many colleagues, customers, process engineers, operations specialists, process safety experts, and security professionals who shared their knowledge and challenged my thinking over the years.
Today I am retired, but I remain actively interested in process automation security and cyber-physical risk. This website is my way of sharing experience, developing ideas, and contributing to discussions on how security, automation, process safety, and risk management come together in industrial environments.
An important principle for this website is vendor neutrality. Although my experience was shaped by many years in the automation supplier environment, the articles on this site are not intended to promote any vendor, product, method, or commercial interest. I also try to avoid vendor-specific terminology where it is not relevant, and I sometimes use more generic terms to make the discussion applicable across different automation platforms and industrial environments.
I hold, or have held, professional certifications including CISM, CRISC, CISSP, and CISSP-ISSAP, and I have completed various network and security courses from organizations such as SANS, Cisco, and Microsoft.
I am also a named inventor on three United States patents in the area of cyber physical risk
The opinions expressed on this website are my own. They do not represent the views, policies, products, services, or commercial interests of any employer, former employer, client, vendor, or professional organization.
