The Institute for Homeland Security at Sam Houston State University just published my paper – “Who’s in charge of OT security.”. CISOs have traditionally been responsible for cyber security of enterprise IT networks excluding the control system (operational) assets which were under the purview of the engineering organizations. After the 2006 Gartner Research paper that coined the term “operational technology (OT)”, the CISOs have been given the additional responsibility for cyber securing OT assets without a firm understanding of the technical constraints of OT systems.