Rodeo Clown Jake
@rodeoclownsec.bsky.social
Hi! I’m Rodeo Clown Jake! I help wrangle cyber security for industrial control systems! My job is to entertain and inform executives about OT Cyber Security issues.
My views do not reflect my employer, or any other hyper-scale datacenter operator.
My views do not reflect my employer, or any other hyper-scale datacenter operator.
Contract it: make vendors meet IEC 62443-2-4 (service providers) and design to 62443-3-3 (system reqs). Add audit rights, JIT/JEA remote access, incident-notice SLAs, and config escrow at off-ramp.
November 11, 2025 at 10:38 PM
Contract it: make vendors meet IEC 62443-2-4 (service providers) and design to 62443-3-3 (system reqs). Add audit rights, JIT/JEA remote access, incident-notice SLAs, and config escrow at off-ramp.
Fund the basics: unique named accounts, MFA + vaulting for admin creds, role cleanup, centralized logging/retention, network segmentation, and patching/EOL plans for cameras/servers. (No defaults. Ever.)
November 11, 2025 at 10:38 PM
Fund the basics: unique named accounts, MFA + vaulting for admin creds, role cleanup, centralized logging/retention, network segmentation, and patching/EOL plans for cameras/servers. (No defaults. Ever.)
Remember: PACS/CCTV are OT, not “just IT.” They govern doors, alarms, guards, and safety. NIST 800-82r3 even calls out PACS as OT explicitly. Treat them like control systems, not apps.
November 11, 2025 at 10:38 PM
Remember: PACS/CCTV are OT, not “just IT.” They govern doors, alarms, guards, and safety. NIST 800-82r3 even calls out PACS as OT explicitly. Treat them like control systems, not apps.