AVAILABLE Q3/Q4 2026
v2026.05 DE/EN
Engineering — In-house OT Security Appliance Insights — Observations from Practice
Request a call
OT · SECURITY · CONSULTING
EST. 2026
Independent OT Security Consulting · Process Industry

Make production OT
visible.
Operate it securely.

I help mid-sized companies in the process industry make their production OT visible, assessable and secure — pragmatically, without disrupting ongoing operations and without the overhead of large consultancies. My focus: passive OT visibility as the foundation for NIS2 readiness.

Focus OT/CPS Security & Visibility
NIS2 Readiness · IEC 62443

Industries Pharma · Chemical · Life Sciences
Process & Manufacturing
01 Services

Three building blocks, one foundation: visibility.

CORE / VISIBILITY

OT Visibility & Asset Discovery

No risk management without a complete picture of your production OT. I establish that foundation — passively, non-intrusively and without interfering with ongoing operations.

  • Passive network capture (non-intrusive)
  • Asset inventory & network topology
  • Communication relationships & protocols
  • Vulnerability & CVE matching
  • Basis for segmentation & zoning
COMPLIANCE / NIS2

NIS2 Readiness & IEC 62443

Since the NIS2 implementation act came into force, risk management and demonstrable OT security have become mandatory for many companies. I get you to an audit-ready state — pragmatically.

  • Gap analysis against the NIS2 target state
  • Risk management for production OT
  • Controls per IEC 62443
  • Building evidence & documentation
  • Prioritized, actionable roadmap
OPERATIONS / SECURITY

OT Security & Monitoring

Visibility becomes security: segmentation, anomaly detection and OT monitoring that fits the reality of your plant — assessed vendor-neutrally.

  • Network segmentation & zoning
  • Anomaly & threat detection in OT
  • Platform evaluation & vendor selection
  • Integration with existing SOC/SIEM
  • Incident readiness for OT environments
02 Approach

Pragmatic. Deep. Vendor-neutral.

I don't work from off-the-shelf slide templates. Every engagement starts with your concrete context — plant, architecture, threat landscape, existing tooling — and ends with a decision you can actually implement, without the overhead of large consultancies.

  1. → 01
    Diagnosis
    Taking stock of assets, tools, processes and organization — no assumptions, only evidence.
  2. → 02
    Assessment
    Structured comparison of options against your risk, architecture and operational criteria.
  3. → 03
    Decision basis
    A clear recommendation with costs, effort, risks and trade-offs — ready to present to the board and steering committee.
  4. → 04
    Implementation
    Support from PoC to roll-out — operational depth instead of PowerPoint consulting.
03 Expertise

Depth over breadth — OT security as a craft.

My background is in industrial OT cyber security — at the intersection of strategic planning, technical implementation and vendor-neutral assessment. That depth is the basis for neutral advice.

OT / CPS Platforms

  • Leading OT security platforms compared
  • Vendor-neutral assessment
  • Architecture & fit analysis
  • Selection & rollout support

Visibility & Detection

  • Passive network capture
  • Asset & topology discovery
  • Anomaly & threat detection
  • Integration with SIEM & SOC

Standards & Frameworks

  • IEC 62443 core
  • NIS2 core
  • ISO 27001 / 27019
  • BSI IT-Grundschutz · NIST CSF

Engineering

  • Self-developed OT audit appliance
  • Passive capture & analysis
  • On-premise, no cloud lock-in
  • Automated reporting
04 Competence

What you can rely on.

01
Domain OT Visibility

Principle Passive &
non-intrusive

Complete visibility, without touching the plant.

In production environments, every active scan is a risk. My approach builds the asset inventory and network topology exclusively from passively captured traffic — no intervention, no disruption to ongoing operations. Exactly the foundation that NIS2 risk management requires.

You receive A reliable asset inventory, communication matrix and vulnerability overview as the basis for every further measure.
02
Domain Platform Selection

Principle Vendor-
neutral

The right platform — for your plant, not my margin.

I've compared the leading OT/CPS security platforms in detail — from Claroty and Nozomi to Dragos, Armis and Forescout. No commissions, no vendor bias. The recommendation follows your architecture, your risk and your budget, not a partner program.

You receive A structured comparison against your criteria, a clear shortlist and a transparent decision basis.
03
Domain NIS2 & IEC 62443

Principle Audit-ready &
pragmatic

From gap analysis to an actionable roadmap.

NIS2 and IEC 62443 needn't be a paperwork battle when approached the right way. I translate the requirements into concrete, prioritized measures for your production OT — with an eye for what is actually achievable in mid-sized companies and what comes first.

You receive A gap analysis against the target state, a prioritized roadmap of measures and the evidence an audit demands.
04
Domain In-house Development

Principle From practice,
for practice

An OT audit appliance I built myself.

As an engineer, I built my own tool from the real needs of industry: a portable, purely passive appliance that listens to a plant network, automatically builds a complete asset inventory, reports anomalies in plain language and delivers the finished audit evidence — entirely on-premise, no cloud. It embodies exactly the approach that defines my consulting.

See the appliance in detail →
Key features Passive & non-intrusive · On-premise · framework-spanning (IEC 62443, NIS2, TISAX) · automated reporting.

/* Independent · vendor-neutral · no commissions. Initial consultation with no obligation. */

05 Insights

Observations from practice.

OT Visibility 10 min · 2026

Why passive visibility is the only acceptable approach in OT.

Active scans that are routine in IT can cause damage in a production plant. Why non-intrusive methods in OT are not a convenience but a necessity — and how far they take you.

Read
NIS2 8 min · 2026

NIS2 for mid-sized companies: visibility first, then compliance.

Many companies start NIS2 with documentation and processes. Why that's the wrong order — and why, without a reliable picture of production OT, any risk management is built on sand.

Read
Platforms 9 min · 2026

Choosing an OT platform without vendor bias — what matters.

Claroty, Nozomi, Dragos, Armis, Forescout — on paper the platforms look alike. Which criteria make the difference in practice and how to reach a decision that fits your own plant.

Read
View all articles →
06 About
Hamid Reza Shahsavarkhani — OT Security Consultant

Consulting that comes from practice.

Cyber security in industrial environments lives on attention to detail — and on recommendations that hold up when they meet the reality of a running plant.

I'm an engineer and built my cyber security experience over years at international DAX-listed corporations — at the intersection of strategic planning, technical implementation and vendor-neutral platform assessment. From this work I know the leading OT security tools not from data sheets but from real comparison — and I know how wide the gap between glossy promises and plant reality can be.

This combination of engineering mindset and hands-on corporate experience shapes my consulting. Today I independently help process-industry companies make their production OT visible, assessable and NIS2-compliant — pragmatically, without disrupting operations and without vendor bias. With one clear focus: passive OT visibility as the foundation everything else builds on.

Security doesn't come from the right platform, but from the right decisions about the right platform.
07 Contact

Let's talk about your OT security.

An initial conversation is straightforward and free of charge. Tell me where your production OT stands today — I'll get back to you within 24 hours.

Email khani.cybersecurity@gmail.com
LinkedIn Hamid Reza Shahsavarkhani
Signal / Secure On request
In-house Development The OT Audit Appliance Articles Insights & Field Knowledge