Have Any Questions?
Call Now 613-518-1002
Get In Touch

Cyber Damage Control Podcast

Cyber Damanage Control: From Prevention to Survivability – SSEng Group Podcast

Cyber Damanage Control

From Prevention to Survivability

A Professional AI Podcast Presentation by SSEng Group

9 Minutes 3 Speakers Cybersecurity

About This Podcast

This podcast features an AI generated conversation between three virtual speakers designed to make complex cybersecurity doctrine accessible and engaging. The speakers are:

  • Alex Chen (Virtual Host) Professional interviewer and facilitator
  • Dr. Sarah Mitchell (Virtual Expert) Cyber damage control subject matter expert
  • James Rodriguez (Virtual Skeptic) Experienced operational commander with practical concerns

Note: These are AI generated personas created for educational purposes. They are not real individuals employed by SSEng Group.

Content Authors

Drew Smeaton, CD

SSEng Group Inc.

Expert in Systems Security Engineering and Cyber Mission Assurance

Perry Dombowsky, MEng. CD

SSEng Group Inc.

Specialist in Operational Technology and Platform Cybersecurity

The technical content, doctrine, and engineering frameworks presented in this podcast are based on original research and professional work by Drew Smeaton and Perry Dombowsky.

Full Podcast Video

Watch the complete 9 minute presentation with synchronized presentation slides covering doctrine, strategy, and engineering frameworks for operational cyber survivability.

Audio Only Version

Perfect for listening on the go. Download for offline access or stream directly.

Download Audio

Episode Information

9:00
Duration
3
Speakers
25
Slides

Key Topics Covered

Four Pillars Framework IT/OT/PT Integration Mission Protection Needs Architectural Resilience Cyber Armory Strategy Kill Cards & IADs Battle Damage Repair Multi Domain Applications

Content Structure

Opening (2 min): Paradigm shift introduction and “Float, Move, Fight” imperative
Segment 1 (7 min): Core framework, Four Pillars, system taxonomy, and protection needs categorization
Segment 2 (6 min): Architectural resilience, segmentation, diversity, redundancy, and Cyber Armory
Segment 3 (7 min): Operational doctrine, CERT organization and Kill Chain of Survival
Segment 4 (4 min): Procurement & implementation, lifecycle integration and practical guidance
Closing (2 min): Motivational call to action for operational resilience

Virtual Speaker Profiles

These AI generated personas facilitate engaging discussion of complex technical content:

HOST

Alex Chen

Professional interviewer and facilitator who guides the conversation and asks clarifying questions to make technical concepts accessible.

EXPERT

Dr. Sarah Mitchell

Subject matter expert with deep technical knowledge of Cyber DC doctrine, providing detailed explanations and domain specific examples.

SKEPTIC

James Rodriguez

Experienced operational commander who challenges concepts with practical concerns across naval, industrial, and enterprise domains.

Full Transcript

Complete transcript with timestamps for easy reference:

Click to expand full transcript
0:00 – 0:08
Alex Chen: Hello and welcome to Digital Frontlines, the podcast where we explore the intersection of technology and mission readiness.
0:08 – 0:19
Alex Chen: Today, we’re tackling a critical paradigm shift, moving beyond traditional cybersecurity to a new doctrine of, well, operational survivability.
0:19 – 0:36
Alex Chen: We’re joined by two outstanding guests, Dr. Sarah Mitchell from SESN Group, a leading expert on a concept called Cyber Damage Control, and James Rodriguez, a seasoned operational commander and program manager who has faced these challenges in the field.
0:36 – 0:41
Alex Chen: Dr. Mitchell, let’s set the stage. What is Cyber Damage Control?
0:41 – 0:48
Dr. Sarah Mitchell: Thanks, Alex. At its heart, it’s a simple, powerful idea. Prevention will eventually fail.
0:48 – 1:01
Dr. Sarah Mitchell: On a warship, our doctrine is float, move, and fight. If you take a kinetic hit, you don’t stop to collect evidence. You fight the fire, you patch the hole, and you keep the ship in the fight.
1:01 – 1:12
Dr. Sarah Mitchell: We need that same immediate, action oriented mindset when a cyber attack hits our critical physical systems. It’s about fighting through the hurt.
1:12 – 1:30
James Rodriguez: I’m with you on the mindset, Sarah, but I’ve seen countless frameworks come and go. This already sounds expensive, complex, and like another binder on the shelf for my teams to ignore. Is this really necessary, or is it just another perfect theory that’s impossible in practice?
1:30 – 1:38
Dr. Sarah Mitchell: It is absolutely necessary, James, and it is intensely practical. The entire framework is built on four pillars from NIST.
1:38 – 1:51
Dr. Sarah Mitchell: Anticipate threats by knowing your systems, withstand the attack through resilient architecture, recover critical functions in minutes, not days, and adapt your defenses based on what you’ve learned.
1:51 – 2:00
Alex Chen: You mentioned resilient architecture. The materials distinguished between IT, OT, and platform technology. Could you break that down for us?
2:00 – 2:13
Dr. Sarah Mitchell: Certainly. IT is your enterprise network—email, business systems. OT, or operational technology, directly controls physical processes, like in a factory. And PT, platform technology, is what makes a complex platform function—the propulsion on a ship, flight controls on an aircraft.
2:13 – 2:34
Dr. Sarah Mitchell: We categorize every single system based on its mission protection needs: is it vital, essential, or non essential? And that’s my core problem. How do you decide what’s ‘vital’ on a chaotic manufacturing floor versus a warship in a combat zone? It sounds subjective, and in a crisis, subjectivity gets people hurt.
2:34 – 2:58
Dr. Sarah Mitchell: It’s an excellent and fair challenge. But the key is that it’s not subjective at all. It’s based purely on the consequence of failure. For a naval destroyer, vital is the AEGIS combat system, the propulsion controllers, the steering gear. Loss of any of these is a mission kill.
2:58 – 3:24
Dr. Sarah Mitchell: For an armored vehicle, it’s the drive by wire and fire control systems. In a chemical plant, it’s the SCADA system managing reactor temperature. Failure isn’t an inconvenience; it’s a potential disaster. So once you’ve identified what’s vital, how do you protect it?
3:24 – 3:46
Dr. Sarah Mitchell: You build to withstand. That means aggressive network segmentation, technological diversity, robust redundancy. And critically, it includes a ‘cyber armory’—a physically secure location holding a ‘gold copy’ of all vital software.
3:46 – 3:51
Alex Chen: How is that gold copy different from, say, the backups my IT department already makes?
3:51 – 4:15
Dr. Sarah Mitchell: Well, your IT backups live on the network. Which means if an attacker has persistence, they can encrypt or destroy your backups too. A gold copy is stored on write protected media, physically secured. It’s immune. It’s a trusted, pristine source you can use to restore a system in minutes using pre planned, practiced procedures.
4:15 – 4:50
James Rodriguez: A rapid restore sounds great in a lab. But in a tank that’s actively taking fire, or on a factory floor with a 24 7 quota, you can’t just stop for a reboot. How do you implement these manual overrides without bringing everything to a screeching halt?
4:50 – 5:25
Dr. Sarah Mitchell: We engineer them for exactly those high stress scenarios. On a naval vessel, it’s a local operating panel. An operator physically walks to the equipment, turns a key, and flips a switch from ‘remote’ to ‘local’. For that tank, it might be an emergency mechanical linkage or a hardwired analog circuit that completely bypasses the digital system. The principle is always the same: you give the human operator a direct, physical, non networked way to maintain control.
5:25 – 5:43
Alex Chen: This sounds like it requires a different kind of response team. The Cyber Emergency Response Team, or CERT, isn’t an IT help desk. It’s a maneuver element—a damage control party for cyber. They are trained to go to the physical location and execute these procedures.
5:43 – 5:49
Alex Chen: The materials also mention a ‘Kill Chain of Survival’ and ‘Cyber Kill Cards’. How do those fit in?
5:49 – 6:19
Dr. Sarah Mitchell: The Kill Chain of Survival is our five phase response model that prioritizes speed. The Kill Cards are the tools to achieve that speed. They’re simple, laminated, pre approved immediate action drills. For a propulsion controller compromise, the Kill Card gives the 20 year old watchstander the authority and the exact three steps to switch to local control immediately. Without waiting for permission from the captain.
6:19 – 6:55
James Rodriguez: My operations teams barely have time for their existing tactical training. Now you want them to become cyber experts and memorize new drills? And we haven’t even talked about the cost of all this specialized training. We don’t add, we integrate. On a warship, these become part of standard battle damage control drills. For ground vehicle crews, it’s folded into their crew gunnery training.
6:55 – 7:18
Dr. Sarah Mitchell: And as for the ROI, it’s the most straightforward calculation we have: the cost of not having it is a catastrophic loss, a failed mission, or loss of life. For an organization listening right now, how do they actually get started?
7:18 – 7:42
Dr. Sarah Mitchell: You embed this in your procurement and lifecycle management process, the CSRM key. You write it into your statements of work. We have a clear roadmap: near term is assessment and planning, mid term is deployment and training, long term is sustainment and adaptation.
7:42 – 8:10
James Rodriguez: What’s a realistic timeline and budget for a medium sized organization to even dip a toe in these waters? You don’t have to boil the ocean. You start with a pilot program on one or two of your most vital systems. You leverage your existing engineering, maintenance, and safety teams. A focused phased rollout over 18 to 24 months is very achievable.
8:10 – 8:33
Dr. Sarah Mitchell: And the initial investment is often far less than leaders fear, especially when measured against the risks. We’ve covered a tremendous amount of ground. Dr. Mitchell, as we close, what’s your final message for our listeners?
8:33 – 9:00
Dr. Sarah Mitchell: We are at an inflection point. The digitalization of everything has created extraordinary capability, but also profound vulnerability. The adversary is not waiting. They are exploiting the convergence of IT and OT right now. Cyber Damage Control is not just another framework—it’s a survival imperative. It’s about ensuring your people come home safe and your mission succeeds. Start with one system. Categorize it. Build a kill card. Train your team. Validate it. Then scale. The question isn’t ‘Can we afford to do this?’ The question is ‘Can we afford NOT to?’ The future belongs to those who can fight through the hurt. Let’s make sure that’s us.

Downloadable Resources

Access the complete documentation and supporting materials:

Full Presentation Slides
Complete 25 slide deck with visual frameworks and diagrams
Full Presentation Speaker notes
Detailed presentation notes for each slide with speaker guidance
Cyber Damange Control Guidance for RCN Warships
Comprehensive doctrine and engineering framework documentation
Exercise Cyber Shield – Training Documentation
Complete exercise plan and scenario for hands on training

Application Domains

Cyber Damage Control principles apply across multiple critical sectors:

Naval Platforms

Destroyers, submarines, frigates with “Float, Move, Fight” capability and IPMS integration

Ground Combat Vehicles

Tanks, IFVs, mobile artillery with drive by wire and fire control systems

Industrial & Manufacturing

Process control, SCADA, robotics, SIS and ESD systems requiring 24 7 availability

Enterprise Systems

Airports, rail signaling, smart grid, hospital infrastructure with converged IT and OT

Contact SSENG Group

Ready to implement Cyber Damage Control in your organization? SSEng Group offers comprehensive consulting services to help you achieve operational cyber survivability.

Our Services included

  • • Mission Protection Needs Assessment
  • • System Architecture Design & Review
  • • Cyber Kill Card Development
  • • CERT Training & Capability Building
  • • Lifecycle Integration Planning

Why Choose SSENG Group

  • • Canada’s premiere Systems Security Engineering expertise
  • • 40 plus years strengthening cyber defenses
  • • 100% Veteran owned business
  • • Standards based methodology
  • • Deep critical infrastructure experience
Get in touch
We are using cookies to give you the best experience. You can find out more about which cookies we are using or switch them off in privacy settings.
AcceptPrivacy Settings

  • Your Privacy
  • Strictly Necessary Cookies
  • Performance Cookies
  • Functional Cookies
  • Targeting Cookies

Your Privacy

When you visit any web site, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience.

Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms.

You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.

Functional Cookies

These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages.

If you do not allow these cookies then some or all of these services may not function properly.

Targeting Cookies

These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites.

They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.