My name is Patrice Bock.
I previously worked for nine years as a production engineer and technical account manager at Hewlett-Packard, where I integrated production testing and measurement systems.
I went on to spend five years as a management consultant at a specialized firm before resuming my studies. After completing my master’s degree in IT security, I returned to the technical field. For the past 10 years, I have worked on industrial/urban information systems (IS) while offering guidance to my clients and assisting them with industrial cybersecurity issues.
The industrial sector has its own specific characteristics and requirements, particularly as far as cybersecurity is concerned. Certain things that apply in other areas do not apply in the industrial sector. In other words, cyberattacks in the industrial sector are not inevitable. Since I began working in the cybersecurity field in 2011, I have developed a number of proven and effective methods and approaches aimed at securing your industrial IS. Nowadays, I apply those methods and approaches within my company Bock Conseil, which I founded in 2018.
My industrial cybersecurity approach
Listening to clients
When I started out in 2011, I immediately began to develop an authentic industrial IS security process by drawing on my listening skills. As I put this process together, I relied on my on-the-ground experience dealing with issues and ways of working that are quite specific to the industrial sector. Based on my findings, I began to create my own tools (risk analysis, audit methods, etc.). Today, listening remains an integral part of my work, along with another parallel activity: ensuring quality of service (QoS) in all my client dealings.
Pragmatic
Because the industrial sector is unique, the methods used to strengthen IS security must be adapted. Drawing on my in-depth industrial knowledge, I devise the most effective solutions while meeting your needs and addressing your issues. At the same time, I am mindful of your production imperatives and constraints. I know from lengthy experience that securing an industrial IS is a lengthy process: you have to prioritize certain problems, tackle the essential issues and make progress slowly but surely.
Providing guidance on industrial IS security projects
In my current work at Bock Conseil, I offer guidance to numerous stakeholders operating in a variety of industrial sectors (energy, transportation, chemicals, water/gas distribution, continuous/discrete process plants, etc.). Industrial IS also include centralized technical management (CTM), building management systems (BMS), access controls, video surveillance, fire detection/extinguisher systems, urban traffic systems, etc.
I work with my trusted partners on issues that are further removed from my core areas of expertise (e.g. General Data Protection Regulation (GDPR), intrusion testing and web security). I am also committed to sharing my industrial cybersecurity knowledge: I regularly take part in seminars and conferences on the topic, in addition to contributing to a blog focusing on IS security.