Oslo, Norway - 25 June, 2025 - Omny recently welcomed operational technology (OT) security expert and podcast host Andrew Ginter to our offices at Aker Tech House in Lysaker, Norway. While here, Andrew sat down with Kenneth Titlestad, Omny’s Chief Commercial Officer, to record a face-to-face episode of “The Industrial Security Podcast.”
The episode, now live, explores how industrial companies can approach security through the lens of credibility, not just likelihood.
“The conversation gets to be much more fruitful if we can get rid of that challenge of trying to figure out the number on the probability or the likelihood,” said Kenneth in the episode. “Credibility gives us tools in our language to actually be able to talk about the left part of the equation.”
Kenneth Titlestad pictured alongside Andrew Ginter at Omny's HQ
Why credibility matters more than probability
Throughout the discussion, Kenneth and Andrew challenged the conventional risk equation: likelihood x consequence, and made the case for moving away from trying to quantify likelihood in favor of assessing what is reasonable to believe.
Drawing on 15 years working in OT security, including his experience with offshore platforms, Kenneth explains how assessing credible worst-case scenarios gives organizations a clearer, more actionable starting point. This approach is gaining traction, especially as standards like IEC 62443-3-2 begin to support consequence-only risk assessments.
Real-World context: from Triton to AI-driven threats
The podcast also explores real incidents, from Triton and Stuxnet, to SolarWinds, as examples of how once unthinkable attacks have become cautionary benchmarks for modern OT security. Kenneth also highlights how near misses and evolving technologies, like AI-enabled attack tools, further expand what we must consider credible.
Reasonable defenses for credible threats
But the episode isn’t only about credible attacks – it’s also about the need to build reasonable defenses in response. That’s where Omny’s platform comes in. Omny’s approach combines a security knowledge graph with built-in AI to provide organizations with a digital representation of their assets, threats, vulnerabilities, and safeguards. This model enables organizations to respond to the kinds of risks that matter most, not every hypothetical, but those with real-world consequences.
“We get a very strong assistant on security where it matters most,” Kenneth said. “We need to use all the tools at our disposal for a reasonable defense.”
Listen to the full episode:
Credibility, not Likelihood [The Industrial Security Podcast]
Contact:
Anne Simpson
Marketing and Communications Director, Omny
anne.simpson@omnysecurity.com
