Publicaciones Publications
How to create an Industrial Cybersecurity Awareness Program
This document from the CCI Author Notebooks series -7 has the purpose of transmitting messages on how to create a program of awareness about industrial cybersecurity, sharing experience and opinion based on information and insights drawn from the CCI ecosystem, Lance Spitzner of the SANS Institute and his work on cybersecurity awareness, the work of cybersecurity professionals Martine van de Merwe and Lourens Dijkstra, our own analysis and research, and the perspectives of 25 people who work in industrial companies and in cybersecurity awareness in Latin America, Spain and the United States.
The document is available in Spanish and English languages.
Title
15/04/2026
This document analyzes OT cybersecurity risks in the railway sector, considered an essential infrastructure. Through expert assessment, it models two key attacks: traffic management intrusion and “trackside” system manipulation. The report details the phases of these incidents, from initial access to systemic impact on operations. Finally, it proposes strategic solutions under the IEC 62443 standard […]
24/11/2025
The new Industrial CRA Position Paper from the Industrial Cybersecurity Center highlights a critical need: adapting the European Cyber Resilience Regulation to the reality of OT environments. Critical infrastructures, legacy systems, decades-long life cycles, and the absolute priority of availability make it impossible to apply the CRA as currently designed. The document proposes a multisectoral […]
22/10/2025
This document, titled “Pocket Guide: Questions to Ask Your Industrial Technology and Service Providers About Their Cybersecurity Capabilities,” developed by the Industrial Cybersecurity Center (CCI), provides a structured set of questions designed to help organizations assess the level of maturity and commitment to cybersecurity among their industrial suppliers.
