Stop chasing checklists.

Our 3.5-day NERC CIP Bootcamp moves past the theory into the technical reality of the grid. From CIP-002 to the new CIP-015, Low Impact to Virtualization, learn to stay ahead of your adversaries and your auditors.

Register here: ampyxcyber.com/training

Claude Mythos and the OT Threat Horizon: What Utility Operators Need to Know Now ampyxcyber.com/blog/...

Stop chasing checklists.

Our 3.5-day NERC CIP Bootcamp moves past the theory into the technical reality of the grid. From CIP-002 to the new CIP-015, Low Impact to Virtualization, learn to stay ahead of your adversaries and your auditors.

Register here: ampyxcyber.com/training

The E-ISAC is doing serious work inside a structure that limits how far that work can go. Both things are true. Our analysis of the 2025 End-of-Year Report: ampyxcyber.com/blog/...

NERC Industry Survey: Physical Supply Chain Risk Management
www.surveymonkey.com...

Supply Chain Subcommittee (SCS) is seeking industry feedback on physical supply risks to inform the physical supply risk report.

FERC approved Orders 918 & 919 today. CIP virtualization standards, new low-impact controls, and an updated Control Center definition. All registered entities affected. 24 and 36 month implementation windows. Start your assessments now.

Full breakdown: ampyxcyber.com/blog/...

The E-ISAC is doing serious work inside a structure that limits how far that work can go. Both things are true. Our analysis of the 2025 End-of-Year Report: ampyxcyber.com/blog/...

The new National Cyber Strategy calls compliance checklists a problem. We've been saying that for years. But deregulation and security aren't the same thing either. What replaces a requirement matters more than removing it. Full analysis at ampyxcyber.com/blog/...

The new National Cyber Strategy calls compliance checklists a problem. We've been saying that for years. But deregulation and security aren't the same thing either. What replaces a requirement matters more than removing it. Full analysis at ampyxcyber.com/blog/...

Poland's Energy Sector Attack: When Cyber Sabotage Targets OT — AMPYX CYBER On December 29, 2025, Poland experienced coordinated destructive cyberattacks across 30+ wind/solar farms, a CHP plant, and manufacturing. Attackers exploited FortiGate devices without MFA, used default credentials on OT equipment, and deployed custom wiper malware designed to damage industrial controls. Every failure was preventable.

Coordinated destructive cyberattacks across 30+ renewable farms, a CHP plant, and manufacturing in Poland. Not ransomware. Sabotage. Custom wiper malware designed to damage RTUs, PLCs, relays, and serial device servers.

Poland's Energy Sector Attack: When Cyber Sabotage Targets OT — AMPYX CYBER On December 29, 2025, Poland experienced coordinated destructive cyberattacks across 30+ wind/solar farms, a CHP plant, and manufacturing. Attackers exploited FortiGate devices without MFA, used default credentials on OT equipment, and deployed custom wiper malware designed to damage industrial controls. Every failure was preventable.

Coordinated destructive cyberattacks across 30+ renewable farms, a CHP plant, and manufacturing in Poland. Not ransomware. Sabotage. Custom wiper malware designed to damage RTUs, PLCs, relays, and serial device servers.

Policy Pulse: Regulatory Roundtable - NERC CIP, Cybersecurity Strategy, AI & Electric Sector — AMPYX CYBER Policy Pulse: Regulatory Roundable is a new monthly feature of the Critical Assets Podcast. Join Patrick Miller, Joy Ditto, and Earl Shockley as they break down the latest policy, regulatory, and legislative changes impacting critical infrastructure, OT, and cybersecurity. If it affects your assets, audits, or authority, we’re covering it, straight from the policy frontlines.

Just dropped: Our first Policy Pulse - Regulatory Roundtable panel podcast episode With JoyDitto & Earl Shockley.

We tackle:
- NERC low-impact crackdown
- Audit competency & CMEP reform
- AI in OT & the looming cyber strategy
- Talent gaps in the sector

Poland's Energy Sector Attack: When Cyber Sabotage Targets OT — AMPYX CYBER On December 29, 2025, Poland experienced coordinated destructive cyberattacks across 30+ wind/solar farms, a CHP plant, and manufacturing. Attackers exploited FortiGate devices without MFA, used default credentials on OT equipment, and deployed custom wiper malware designed to damage industrial controls. Every failure was preventable.

Coordinated destructive cyberattacks across 30+ renewable farms, a CHP plant, and manufacturing in Poland. Not ransomware. Sabotage. CERT Polska just published the most detailed OT attack post-mortem we've seen.

Humans, Engineering Shifts, Required Investment, & Commitment for Operational Security — AMPYX CYBER New secure connectivity guidance describes a greenfield target architecture, but most OT environments are brownfield reality. True resilience isn't achieved through technology alone. Human expertise, manual operating capability, physical engineering controls, and sustained investment are equally critical. Without these foundations, digital security layers risk becoming expensive new failure modes.

Secure connectivity guidance often assumes greenfield architectures. Most OT environments are brownfield reality. Real resilience is not just network controls. It is people, manual capability, physical engineering, training, and sustained investment.

Policy Pulse: Regulatory Roundtable - NERC CIP, Cybersecurity Strategy, AI & Electric Sector — AMPYX CYBER Policy Pulse: Regulatory Roundable is a new monthly feature of the Critical Assets Podcast. Join Patrick Miller, Joy Ditto, and Earl Shockley as they break down the latest policy, regulatory, and legislative changes impacting critical infrastructure, OT, and cybersecurity. If it affects your assets, audits, or authority, we’re covering it, straight from the policy frontlines.

Just dropped: Our first Policy Pulse - Regulatory Roundtable panel podcast episode With JoyDitto & Earl Shockley.

We tackle:
- NERC low-impact crackdown
- Audit competency & CMEP reform
- AI in OT & the looming cyber strategy
- Talent gaps in the sector

NERC’s CMEP Version 8 does not change the Reliability Standards. It stabilizes how compliance monitoring and enforcement operate across the ERO Enterprise. What this means for audits, risk-based scope, technical competence, & ERO-wide consistency at ampyxcyber.com/blog/...

Humans, Engineering Shifts, Required Investment, & Commitment for Operational Security — AMPYX CYBER New secure connectivity guidance describes a greenfield target architecture, but most OT environments are brownfield reality. True resilience isn't achieved through technology alone. Human expertise, manual operating capability, physical engineering controls, and sustained investment are equally critical. Without these foundations, digital security layers risk becoming expensive new failure modes.

Secure connectivity guidance often assumes greenfield architectures. Most OT environments are brownfield reality. Real resilience is not just network controls. It is people, manual capability, physical engineering, training, and sustained investment.

NERC’s December 2025 Internal Controls Guide quietly reshapes CMEP. ICE is gone. Continuous, risk based control oversight now drives COPs, audit depth, and regulatory trust. Internal controls are no longer periodic. They are always on. Full analysis: ampyxcyber.com/blog/...

NERC’s CMEP Version 8 does not change the Reliability Standards. It stabilizes how compliance monitoring and enforcement operate across the ERO Enterprise. What this means for audits, risk-based scope, technical competence, & ERO-wide consistency at ampyxcyber.com/blog/...

A new joint US/UK/EU agency coalition just released a new OT secure connectivity doctrine. We break down what it really means for utilities and industrial operators, what breaks in legacy environments, and the safety/engineering realities behind it ampyxcyber.com/blog/...

NERC’s new CIP Roadmap marks a major shift in how cyber risk will be regulated across the power grid. MFA for low impact systems, protection of telecom dependent control traffic, cloud security, and new focus on IBRs, DERs, EVSE, and large loads.

ampyxcyber.com/blog/...

NERC’s December 2025 Internal Controls Guide quietly reshapes CMEP. ICE is gone. Continuous, risk based control oversight now drives COPs, audit depth, and regulatory trust. Internal controls are no longer periodic. They are always on. Full analysis: ampyxcyber.com/blog/...

A new joint US/UK/EU agency coalition just released a new OT secure connectivity doctrine. We break down what it really means for utilities and industrial operators, what breaks in legacy environments, and the safety/engineering realities behind it ampyxcyber.com/blog/...

NERC’s new CIP Roadmap marks a major shift in how cyber risk will be regulated across the power grid. MFA for low impact systems, protection of telecom dependent control traffic, cloud security, and new focus on IBRs, DERs, EVSE, and large loads.

ampyxcyber.com/blog/...

Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure. Apply: www.linkedin.com/job...

Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure. Apply: www.linkedin.com/job...

Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure. Apply: www.linkedin.com/job...

Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure. Apply: www.linkedin.com/job...