Posts

Closing the Energy Cyber Talent Gap: Professor Kai London on the Rise of the Fractional CISO

Image
  By the Alaska News Technology Desk Professor Kai London — CISO, cybersecurity & AI expert. Credit: professorkailondon.com The energy sector faces a hard truth: it needs senior cyber leadership that understands both industrial systems and the boardroom, and there is nowhere near enough of it to go round. “The talent that can bridge OT engineering and board governance is genuinely scarce,” says Professor Kai London , a senior CISO who takes on exactly these mandates. “That scarcity is why the interim and fractional CISO model has moved from novelty to necessity in this sector.” “Many operators do not need a permanent thirty-person security team. They need the right senior hands for a defined mandate — to set the strategy, fix the worst gaps, and leave behind something the board can run.” Same risk, smaller teams London observes that many energy operators — utilities, smaller producers, midstream firms — carry critical-infrastructure obligations without the resources of a superm...

The Globalisation of Energy Cyber Rules: Professor Kai London on NIS2, DORA and What Comes Next

Image
  By the Alaska News Technology Desk Professor Kai London — Founder & CEO, Quantum AI Systems Security. Credit: professorkailondon.com A wave of cyber regulation is sweeping the world's critical sectors, and energy sits squarely in its path. From European directives to national resilience laws, the direction is unmistakable, says Professor Kai London , a senior CISO and board advisor. “Cyber regulation for critical infrastructure is globalising and converging,” he says. “Operators who treat it as a local box-ticking exercise will be caught out. Those who build to the highest common standard will be ready everywhere.” “The rules increasingly ask the same three things: keep essential services running, report incidents fast, and prove you manage third-party risk — with the board accountable.” A converging rulebook London notes that resilience regimes across jurisdictions — whatever their names — rhyme in substance. They demand risk management proportionate to the threat, prompt in...

Intelligence Under Control: Professor Kai London on Governing AI in Heavy Industry

Image
  By the Alaska News Technology Desk Professor Kai London — board advisor & interim CISO/CIO/CTO. Credit: professorkailondon.com Artificial intelligence is moving into heavy industry — optimising production, predicting equipment failures, and increasingly influencing operational decisions. That promise, argues Professor Kai London , a senior technology executive, comes with a warning particular to energy and industrial settings. “In heavy industry, an ungoverned AI decision does not just misfire in a spreadsheet,” he says. “It can move machinery. Control has to come before autonomy.” “Capability is loud; control is quiet. In industrial AI, the gap between what a model can do and what you can govern is measured in physical risk.” The high stakes of industrial AI London distinguishes AI that advises from AI that acts. “A model recommending a maintenance schedule is one thing,” he says. “A model or agent that adjusts a process is another. The closer AI gets to the physical layer, ...

The Invisible Airborne Perimeter: Professor Kai London on Wireless Threats to Remote Energy Sites

Image
  By the Alaska News Technology Desk Professor Kai London — CISO, cybersecurity & AI expert. Credit: professorkailondon.com Remote energy sites rely on wireless links because running cable across wilderness is impractical. That reliance, warns Professor Kai London , a senior CISO, creates a perimeter most operators never defend because they cannot see it. “There is an airborne perimeter around every site — the radio space an attacker can reach without ever touching a wire,” he says. “For distributed energy operations, it may be the most overlooked risk on the map.” “No malware, no perimeter breach, no trace — just a laptop and a wireless adapter impersonating a network your systems trust. The compromise happens in the air.” The evil-twin problem London describes how an attacker can stand up a rogue access point mimicking a legitimate network; devices configured to connect automatically latch on, and credentials and traffic are harvested. “Nothing in your security stack necessar...

Cyber Resilience Is Operational Safety: Professor Kai London on Security in the Energy Sector

Image
  By the Alaska News Technology Desk Professor Kai London — Founder & CEO, Quantum AI Systems Security. Credit: professorkailondon.com In most industries, a cyber incident costs money and reputation. In energy, Professor Kai London argues, it can cost far more. “In this sector, cyber resilience and physical safety are the same conversation,” says the senior CISO. “A compromised control system can endanger people and the environment, not just data. That reframes security from an IT concern into a safety discipline.” “Cyber resilience in energy is the new patient-safety metric of the industrial world. When the systems that keep operations safe run on software, securing that software is protecting lives.” Where security meets safety London points to the convergence of two once-separate disciplines. Safety engineering kept industrial processes from harming people; cyber security kept data safe. “Now that safety systems are digital and networked, the two have merged,” he says. “An ...

Post-Quantum Energy: Professor Kai London on Protecting Long-Life Infrastructure From the Quantum Threat

Image
  By the Alaska News Technology Desk Professor Kai London — board advisor & interim CISO/CIO/CTO. Credit: professorkailondon.com Energy infrastructure is built to last decades. That longevity, argues Professor Kai London , a senior CISO, makes the sector unusually exposed to a threat still over the horizon: quantum computers capable of breaking today's cryptography. “When your assets and your data have a 20- or 30-year life, the quantum transition is not a distant concern,” he says. “It is a design constraint you must plan for now.” “Post-quantum migration is the rare cyber risk where doing nothing today guarantees you fail later. Data and systems that must stay secure for decades are already exposed.” Harvest now, decrypt later The immediate danger, London explains, is not a future machine but present-day interception. Adversaries can capture encrypted data now and store it until quantum computers can unlock it. “For operators of long-life infrastructure, sensitive design, con...

The Last Login on the Rig: Professor Kai London on Identity Security in Operational Technology

Image
  By the Alaska News Technology Desk Professor Kai London — CISO, cybersecurity & AI expert. Credit: professorkailondon.com In the energy sector's operational systems, the decisive security failure is rarely dramatic. “It is an identity — a human account, a shared login, a service credential, increasingly an AI agent — that authenticated when it should have been challenged, and could then reach far more than it should,” says Professor Kai London , a senior CISO. In control environments, he warns, identity has been an afterthought for too long. “Every breach begins with a login that should have been stopped. In OT, those logins reach machinery — which makes getting identity right a matter of safety, not just security.” The shared-credential problem Industrial environments are notorious for shared accounts, default passwords and credentials that never change because changing them risks disrupting a process. “A shared operator login that a dozen people know and that has not change...