Join us for welcome drinks at the Courtyard by Marriott Houston Heights/I-10. 

This session provides a grounded view of the current OT cyber threat landscape, combining regional adversary activity with the regulatory and compliance pressure shaping industrial security programs. Attendees will learn how threat groups are targeting critical OT infrastructure, how those risks manifest across industries, and how governments are responding through evolving policies, standards, and enforcement. The session connects threat activity to regulatory expectations, helping attendees understand not just what they are up against, but how requirements are shifting in response.

With a clear picture of the threat landscape in place, this session turns to the question of program readiness. Attendees work through a structured self-assessment of their OT cybersecurity program against the SANS ICS 5 Critical Controls. Starting with a practical overview of the Five Critical Controls and the OT Maturity framework, participants will benchmark where their program stands today. The goal is give you an honest picture of where progress is being made, where gaps exist, and what to prioritize next — and a foundation for the sessions that follow, where those insights will be put to work.

In this facilitated roundtable, participants self-select into peer groups based on their organization's OT security maturity level for candid, structured discussion around what's working, what isn't, and where to focus next. Using the SANS 5 Critical Controls as a shared framework, groups will benchmark capabilities, share hard-won lessons, and identify practical strategies for advancing their programs — grounded in real experience and designed to generate takeaways you can act on immediately.

Whether you are building the foundations of your OT security program or looking to accelerate an established one, this session takes participants inside the Dragos Platform to explore its purpose-built capabilities for OT environments. Attendees will see how the platform turns raw industrial data into actionable intelligence, powered by the Dragos Intelligence Fabric and how new AI capabilities help security teams investigate threats faster and prioritize with confidence. The session closes with a forward look at the product roadmap and where the platform is headed to meet the evolving requirements of securing OT infrastructure.

In this session, technical account managers and security practitioners share candid field stories — messy deployments, resource constraints, organizational friction, and hard-won wins. Through real-world case studies, participants will hear how peer organizations have built and matured their OT security programs, what tripped them up, and what ultimately moved the needle, offering the kind of practical insight you can't get from a whitepaper.

OT security doesn't operate in isolation — and neither should your tools. This session explores how the Dragos Platform integrates with the security platforms your team already relies on, bringing OT context into existing workflows across SIEM, EDR, firewall, IT service management and your trusted enterprise AI applications. Attendees will see how these integrations extend visibility across converged IT and OT environments, connect OT threat detections to the broader security operations workflow, and help teams move faster from detection to response without building a separate program for OT.

OT security programs succeed when their core functions work together — but understanding how asset visibility, vulnerability context, and threat detection connect in day-to-day operations is easier said than done. This workshop gives participants a practical walk through of real workflows analysts use to keep industrial environments secure and operational. Attendees will leave with a clearer picture of how these capabilities fit together and how to put them to work in their own programs.

This interactive workshop translates threat activity into realistic threat scenarios. Using scenario-based cards based on real-world attacks, participants will work through how adversaries operate in industrial environments and evaluate how their own organizations would detect and respond. By stepping through these scenarios, participants will uncover gaps in visibility, detection, and response, and gain a clearer understanding of how real-world threats could impact their operations.

This session brings together insights from across the forum to help participants define a clear path forward for their OT security programs. Rather than revisiting concepts, the focus is on prioritization and action - identifying the most critical gaps, aligning the to practical initiatives, and outlining the next steps to improve security outcomes. Participants will leave with a focused, actionable plan designed to deliver measurable progress in the near term.