Conference Description
Key Takeaways
- Government-led forum addressing operational technology cybersecurity across critical infrastructure sectors
- Organised by the Cyber Security Agency of Singapore (CSA) for OT and cybersecurity professionals
- Focus areas include industrial control systems security, threat intelligence and IT-OT convergence challenges
- Targets energy, water, transport and manufacturing sectors
- In-person format featuring expert panels, technical discussions and professional networking
Introduction
The Operational Technology Cybersecurity Expert Panel (OTCEP) Forum is a government-organised event that convenes cybersecurity specialists, critical infrastructure operators and policy makers to address the growing security challenges facing industrial systems. Hosted by the Cyber Security Agency of Singapore, the forum provides a structured platform for knowledge exchange on protecting the operational technology environments that underpin essential services. As cyber threats targeting industrial control systems continue to escalate globally, the event addresses an increasingly urgent priority for organisations responsible for energy grids, water treatment facilities, transportation networks and manufacturing operations.
About the OTCEP Forum
The OTCEP Forum functions as Singapore’s dedicated gathering point for operational technology cybersecurity discourse. Unlike broader cybersecurity conferences that primarily address enterprise IT environments, this event maintains a specific focus on the unique characteristics and vulnerabilities of OT systems. These systems—which include supervisory control and data acquisition (SCADA) networks, distributed control systems and programmable logic controllers—operate under fundamentally different constraints than conventional IT infrastructure.
The forum brings together government agencies, industry practitioners and technical experts to examine current threat landscapes, share defensive strategies and establish collaborative relationships. This multi-stakeholder approach reflects the interconnected nature of critical infrastructure protection, where vulnerabilities in one sector can cascade into disruptions affecting others.
Core Discussion Areas
Central to the forum’s agenda is the protection of critical infrastructure from cyber threats. Industrial systems that were historically isolated from external networks have become increasingly connected as organisations pursue operational efficiencies through digitalisation. This connectivity introduces attack surfaces that adversaries actively exploit, making the security of these environments a matter of national and economic importance.
The convergence of information technology and operational technology presents particular challenges that the forum addresses directly. IT and OT environments have traditionally operated under different philosophies—IT prioritises confidentiality and data integrity, while OT emphasises availability and safety. Bridging these perspectives requires professionals who understand both domains and can implement security measures that protect systems without disrupting the continuous operations that industrial processes demand.
Threat intelligence specific to OT environments forms another significant discussion thread. The tactics, techniques and procedures employed against industrial systems differ from those targeting conventional enterprise networks. Understanding these distinctions enables defenders to implement appropriate detection and response capabilities tailored to the operational constraints of industrial environments.
The Evolving OT Threat Landscape
Operational technology environments face a threat landscape that has matured considerably over the past decade. Nation-state actors have demonstrated sophisticated capabilities to compromise industrial control systems, while ransomware operators increasingly target organisations where operational disruption creates maximum pressure to pay. The consequences of successful attacks extend beyond financial losses to potential safety incidents and service disruptions affecting public welfare.
Legacy systems present persistent challenges in this context. Many industrial installations operate equipment with lifecycles measured in decades, running software that predates modern security practices and cannot easily receive patches or updates. Securing these environments requires compensating controls and architectural approaches that differ substantially from contemporary IT security models.
The increasing adoption of industrial internet of things devices adds further complexity. These connected sensors and actuators expand monitoring and automation capabilities but simultaneously increase the number of potential entry points that security teams must defend. Balancing operational benefits against security risks requires careful evaluation and ongoing vigilance.
Singapore’s Role in OT Cybersecurity
Singapore has established itself as a regional leader in cybersecurity governance, and the OTCEP Forum reflects the government’s recognition that operational technology requires dedicated attention. The Cyber Security Agency of Singapore coordinates national efforts to protect critical information infrastructure, with OT security forming an essential component of this mandate.
The city-state’s position as a major shipping hub, financial centre and advanced manufacturing location means that disruptions to critical infrastructure would carry significant economic consequences. This reality drives sustained investment in capabilities and expertise to defend essential systems against cyber threats.
Who Should Attend
The forum serves professionals with direct responsibility for securing or operating industrial systems. Chief information security officers seeking to extend their programmes into OT environments will find relevant strategic perspectives, while OT security leads and engineers can engage with technical content addressing implementation challenges.
Plant managers and operations directors benefit from understanding the cybersecurity risks affecting their facilities and the measures available to address them. Government regulators and policy makers gain insight into industry practices and emerging challenges that may inform future regulatory frameworks.
Cybersecurity analysts focused on threat intelligence and incident response can develop their understanding of OT-specific attack patterns and defensive techniques. The forum’s emphasis on knowledge sharing creates opportunities for professionals at various career stages to learn from experienced practitioners and established experts.
Bridging the IT-OT Divide
One of the persistent challenges in operational technology cybersecurity is the cultural and technical gap between IT and OT teams. These groups often report through different organisational structures, use different tools and speak different professional languages. Effective OT security requires collaboration across this divide, and forums that bring both communities together help build the relationships and mutual understanding necessary for success.
The OTCEP Forum provides a venue where these conversations can occur in a structured setting, with expert guidance to help translate concepts between domains. This dialogue supports the development of integrated security strategies that address the full spectrum of risks facing modern industrial organisations.
Conclusion
As critical infrastructure becomes increasingly connected and cyber threats grow more sophisticated, dedicated forums for operational technology cybersecurity serve an important function in building collective defence capabilities. The OTCEP Forum offers professionals responsible for protecting industrial systems an opportunity to engage with peers, learn from experts and contribute to the broader effort of securing the essential services that modern society depends upon.

