AMPYX CYBER (formerly Ampere Industrial Security)
@ampyxcyber.com
The premier global industrial security consulting firm. Securing the critical things in your world. We keep you ahead of your adversaries - and your auditors.
Also found at ampyxcyber@mastodon.social
Also found at ampyxcyber@mastodon.social
CISA’s Cybersecurity Performance Goals 2.0 mark a major shift toward outcome driven security for critical infrastructure. Read about what changed, why governance now leads the model, and how OT operators can use CPG 2.0 to strengthen resilience at
Cybersecurity Performance Goals 2.0: Governance First, Outcomes Always — AMPYX CYBER
CISA’s Cybersecurity Performance Goals 2.0 reshape baseline expectations
for critical infrastructure. The update elevates governance, strengthens
OT-specific requirements, and shifts from checklist controls to
outcome-driven resilience. This Policy Pulse post breaks down what changed,
why it matters, and how operators should prepare.
ampyxcyber.com
December 19, 2025 at 8:46 PM
CISA’s Cybersecurity Performance Goals 2.0 mark a major shift toward outcome driven security for critical infrastructure. Read about what changed, why governance now leads the model, and how OT operators can use CPG 2.0 to strengthen resilience at
The U.S.-China Commission’s 2025 report is out, and we’re proud to have contributed. The section on PRC-linked energy equipment highlights urgent cybersecurity priorities, many of which are actionable. Our summary and takeaways here:
Reinforcing the U.S. Grid: The 2025 USCC Report on Chinese Energy Influence — AMPYX CYBER
The 2025 USCC Annual Report outlines national security risks from
PRC-linked technologies in the U.S. energy sector. It offers clear,
field-informed recommendations, including testimony from Ampyx Cyber’s CEO,
on supply chain threats, OT device transparency, and cyber response. Read
the full analysis and policy roadmap.
ampyxcyber.com
December 19, 2025 at 6:38 PM
The U.S.-China Commission’s 2025 report is out, and we’re proud to have contributed. The section on PRC-linked energy equipment highlights urgent cybersecurity priorities, many of which are actionable. Our summary and takeaways here:
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
December 17, 2025 at 7:24 PM
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
UEFI Secure Boot is often assumed to be enabled and enforcing. NSA’s latest guidance shows how boot time trust can silently fail and why misconfiguration creates real supply chain risk before the OS ever loads. Full analysis at ampyxcyber.com/blog/...
December 15, 2025 at 10:48 PM
UEFI Secure Boot is often assumed to be enabled and enforcing. NSA’s latest guidance shows how boot time trust can silently fail and why misconfiguration creates real supply chain risk before the OS ever loads. Full analysis at ampyxcyber.com/blog/...
The U.S.-China Commission’s 2025 report is out, and we’re proud to have contributed. The section on PRC-linked energy equipment highlights urgent cybersecurity priorities, many of which are actionable. Our summary and takeaways here:
Reinforcing the U.S. Grid: The 2025 USCC Report on Chinese Energy Influence — AMPYX CYBER
The 2025 USCC Annual Report outlines national security risks from
PRC-linked technologies in the U.S. energy sector. It offers clear,
field-informed recommendations, including testimony from Ampyx Cyber’s CEO,
on supply chain threats, OT device transparency, and cyber response. Read
the full analysis and policy roadmap.
ampyxcyber.com
December 12, 2025 at 10:50 PM
The U.S.-China Commission’s 2025 report is out, and we’re proud to have contributed. The section on PRC-linked energy equipment highlights urgent cybersecurity priorities, many of which are actionable. Our summary and takeaways here:
CISA’s Cybersecurity Performance Goals 2.0 mark a major shift toward outcome driven security for critical infrastructure. Read about what changed, why governance now leads the model, and how OT operators can use CPG 2.0 to strengthen resilience at
Cybersecurity Performance Goals 2.0: Governance First, Outcomes Always — AMPYX CYBER
CISA’s Cybersecurity Performance Goals 2.0 reshape baseline expectations
for critical infrastructure. The update elevates governance, strengthens
OT-specific requirements, and shifts from checklist controls to
outcome-driven resilience. This Policy Pulse post breaks down what changed,
why it matters, and how operators should prepare.
ampyxcyber.com
December 12, 2025 at 3:01 PM
CISA’s Cybersecurity Performance Goals 2.0 mark a major shift toward outcome driven security for critical infrastructure. Read about what changed, why governance now leads the model, and how OT operators can use CPG 2.0 to strengthen resilience at
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
December 10, 2025 at 4:26 PM
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
The 2025 National Security Strategy positions cybersecurity as a core element of national resilience, economic strength, & secure supply chains. Our latest blog highlights key cyber themes & what they mean for critical infrastructure & technology sectors.
Cybersecurity Signals in the 2025 National Security Strategy — AMPYX CYBER
The 2025 National Security Strategy weaves cybersecurity into every major
national priority, from resilient infrastructure and protected supply
chains to technology leadership and secure global partnerships. This
overview highlights the core cyber related themes and what they signal for
critical infrastructure and industry.
ampyxcyber.com
December 6, 2025 at 2:02 AM
The 2025 National Security Strategy positions cybersecurity as a core element of national resilience, economic strength, & secure supply chains. Our latest blog highlights key cyber themes & what they mean for critical infrastructure & technology sectors.
Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure.
Apply: www.linkedin.com/job...
Apply: www.linkedin.com/job...
December 6, 2025 at 1:39 AM
Now hiring: Business Development Administrator (remote, contract 1099). Track RFx, support proposals, keep the pipeline organized, and coordinate docs and timelines. Join a mission-driven team protecting critical infrastructure.
Apply: www.linkedin.com/job...
Apply: www.linkedin.com/job...
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
December 4, 2025 at 2:26 AM
The next NERC CIP Bootcamp is live!
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
Join us for 3.5 days of practical, hands-on training covering all CIP standards, packed with the latest updates from NERC, Regional Entities & drafting teams shaping current compliance & audit guidance.
Details at ampyxcyber.com/nerc-...
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
November 26, 2025 at 4:05 PM
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
November 19, 2025 at 4:04 PM
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
NERC retires Incident Response and adds Grid Transformation, signaling a new era of risk-based oversight. IBRs, large loads, hybrid control, & INSM readiness now define audit focus.
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
November 17, 2025 at 8:59 PM
NERC retires Incident Response and adds Grid Transformation, signaling a new era of risk-based oversight. IBRs, large loads, hybrid control, & INSM readiness now define audit focus.
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
November 12, 2025 at 4:04 PM
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Our CEO, Patrick C. Miller, joins RaptorComply Nov 18 to discuss how utilities can elevate their NERC CIP programs from reactive compliance to strategic resilience.
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
November 10, 2025 at 11:01 PM
Our CEO, Patrick C. Miller, joins RaptorComply Nov 18 to discuss how utilities can elevate their NERC CIP programs from reactive compliance to strategic resilience.
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
NERC calls grid reliability a “five-alarm fire”
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
The Intersection of ICS/OT Resilience and Regulation — AMPYX CYBER
Explore insights on cybersecurity for operational technology, industrial
systems, and critical infrastructure. The Ampyx Cyber blog highlights
resilience strategies, leadership perspectives, and real-world guidance to
help organizations navigate threats and build stronger, more secure
operations.
ampyxcyber.com
November 10, 2025 at 10:10 PM
NERC calls grid reliability a “five-alarm fire”
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
NERC retires Incident Response and adds Grid Transformation, signaling a new era of risk-based oversight. IBRs, large loads, hybrid control, & INSM readiness now define audit focus.
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
November 10, 2025 at 7:03 PM
NERC retires Incident Response and adds Grid Transformation, signaling a new era of risk-based oversight. IBRs, large loads, hybrid control, & INSM readiness now define audit focus.
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
Read more at ampyxcyber.com/blog/...
#NERC #CMEP #CIP #Cybersecurity
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
November 5, 2025 at 4:03 PM
The next NERC CIP Bootcamp is live!
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Join our hands-on, up-to-date deep dive into the latest from NERC, Regional Entities, and drafting teams shaping today’s compliance + audit expectations.
- Real-world exercises
- Current guidance
- CIP-015 deep dive
www.amperesec.com/ne...
Our CEO, Patrick C. Miller, joins RaptorComply Nov 18 to discuss how utilities can elevate their NERC CIP programs from reactive compliance to strategic resilience.
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
November 4, 2025 at 12:07 AM
Our CEO, Patrick C. Miller, joins RaptorComply Nov 18 to discuss how utilities can elevate their NERC CIP programs from reactive compliance to strategic resilience.
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
Don’t miss it:
www.raptorcomply.com...
#NERC #CIP #CriticalInfrastructure #OTCybersecurity #AmpyxCyber
NERC calls grid reliability a “five-alarm fire”
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
The Intersection of ICS/OT Resilience and Regulation — AMPYX CYBER
Explore insights on cybersecurity for operational technology, industrial
systems, and critical infrastructure. The Ampyx Cyber blog highlights
resilience strategies, leadership perspectives, and real-world guidance to
help organizations navigate threats and build stronger, more secure
operations.
ampyxcyber.com
November 3, 2025 at 7:51 PM
NERC calls grid reliability a “five-alarm fire”
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
Load growth, AI, & data centers are pushing systems to the edge. CIP programs must evolve from firefighting to foresight.
Read how to build resilient compliance for the future grid: ampyxcyber.com/blog
#NERC #GridResilience
FERC’s new 2025 CIP audit findings are out. Key risks called out:
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
October 28, 2025 at 6:23 PM
FERC’s new 2025 CIP audit findings are out. Key risks called out:
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
FERC’s new 2025 CIP audit findings are out. Key risks called out:
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
October 21, 2025 at 6:23 PM
FERC’s new 2025 CIP audit findings are out. Key risks called out:
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
- DERs (aggregators) now impact GOP Control Center ratings
- Third-party oversight gaps = audit findings
- Cloud use for EACMS/PACS still not defensible without evidence
Details at ampyxcyber.com/blog/...
We’re hiring!
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
October 3, 2025 at 2:13 PM
We’re hiring!
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
We’re hiring!
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
September 30, 2025 at 2:13 PM
We’re hiring!
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
- Associate NERC CIP Consultant
- Business Development Administrator
- Operations Administrator
All positions remote, 1099 contract.
Help keep critical infrastructure resilient & audit-ready.
Apply at ampyxcyber.com/curre...
FERC Order 912 strengthens supply chain protections: tighter risk reassessments, required response tracking, and expanded coverage to Protected Cyber Assets. Vendor validation stays voluntary. 18 months for new standards.
Full breakdown at ampyxcyber.com/blog/...
Full breakdown at ampyxcyber.com/blog/...
September 29, 2025 at 3:03 PM
FERC Order 912 strengthens supply chain protections: tighter risk reassessments, required response tracking, and expanded coverage to Protected Cyber Assets. Vendor validation stays voluntary. 18 months for new standards.
Full breakdown at ampyxcyber.com/blog/...
Full breakdown at ampyxcyber.com/blog/...