2026-04-10 –, Rookie, Student and Careers Track
Operational Technology (OT) environments are people-first systems, where operators, engineers, vendors and security teams are making real-time decisions that directly impact safety, production and business continuity/uptime. For example, when incidents occur, technical controls alone are rarely the deciding factor, whereas communication is.
This talk aims to explore why "soft skills" such as risk translation, negotiation and de-escalation are actually safety-critical OT security controls. Drawing on experiences common to women in cyber and OT roles, the session will aim to highlight how skills often labelled as "non-technical" directly impacts safety, resilience and uptime (Why women often develop these skills early.). Rather than focusing solely on incidents, the talk aims to examine the everyday decisions and interactions that determine whether OT security controls are adopted, ignored or bypassed. The talk will also look at practical moments that define OT security success (i.e. managing vendor relationships where tone matters more than technical accuracy).
The aim is to have attendees leave with a reframed understanding of OT security maturity, where human communication, coordination and trust are recognised as essential components of effective risk management.
The skills we call "soft" are often the ones holding OT security together
This talks looks at OT environments as people-first systems and explores how communication, negotiation and trust directly affect risk assessments, supply chain security and day-to-day OT security decisions. It examines why authority in OT is built through credibility and relationships rather than job titles, and how security outcomes are shaped in meetings as much as technical controls.
Grounded in real OT security work and experiences common to women in OT and cyber roles, the session reframes so-called "soft-skills" as operational risk controls that materially impact safety and resilience.
Fiona Kastrati is a cyber security consultant specialising in OT security, risk assessments, supply chain management and incident response preparedness. With extensive experience in bridging the gap network security teams, engineers and operational staff, she helps translate technical risk into actionable strategies. She is an advocate for women in OT and cyber, championing the skills and perspectives they bring into shaping resilient, safe and efficient systems.