OT Risk Assessment framework
A structured methodology for risk assessment in OT/ICS environments, aligned to IEC 62443 and NIST approaches. Practical and field-tested.
In developmentReusable assets
Resources
Practical frameworks, assessment guides, checklists and templates for OT/ICS security practitioners. Built from real programme delivery experience.
Planned resources
What is being built
Resources are published when ready — not before. Each one grounded in actual delivery experience.
OT Security policy pack
Core policy documents and governance templates for OT cybersecurity programmes — adaptable for industrial operators across sectors.
PlannedOT security programme checklist
A practical checklist covering the key elements of an OT cybersecurity programme — from asset inventory to incident response readiness.
PlannedOT incident response playbook
Structured guidance for responding to cybersecurity incidents in industrial environments, accounting for operational continuity constraints.
PlannedAI security governance guide
Practical guidance for organisations integrating AI into operational environments — covering risk, governance and ISO 42001 alignment.
PlannedOT cybersecurity maturity model
A practical maturity assessment framework for industrial cybersecurity programmes — useful for benchmarking and improvement planning.
PlannedUseful frameworks are built from real delivery experience, not from reading other frameworks.
On resource qualityPhilosophy
Practitioner-built, not template-adapted.
Every resource published here will come from real programme delivery — actual risk assessments, real policy development, genuine incident response. Not adapted from publicly available templates and repackaged.
That takes longer to build. It also produces something more useful.
Get in touch