Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

Critical Actions CIOs Must Take to Prepare for Cyber Crises

Commvault
02/28/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


My name is Jake Havacano. I'm the CIO of Constellation Energy. And here's five things I think you need to do to get ready for your bad day. There's no way you're going to be able to access or even engage your OT systems without your IT systems. So think about them as a single unit. Cyber threats do not know org charts. Identity, network, DNS. Without these things, you're never going to be able to access your applications. So make sure you get them first. You do not want to be doing this for the first time during a crisis. In the generation area, in the nuclear space, we always talk about being prepared. We talk about practicing. No different here. You cannot do this for the first time in a crisis. Data is passed between these systems. All systems are required to make your business run, whether it's in the cloud, whether it's SaaS, whether it's on-prem. Do not think about them in isolation. We have this in mass over in the generation and trading area. And with AI coming, this is only going to get more complex. Make sure you understand your data, you understand which pieces of data need to be recovered first and what pieces of data are actually outputs and then inputs for other things.

TL;DR

  • IT and OT systems must be treated as a single integrated unit because cyber threats do not respect organizational boundaries and OT systems cannot be accessed without underlying IT infrastructure.
  • Foundational services like identity management, network connectivity, and DNS must be prioritized first in any recovery scenario since applications remain inaccessible without these core capabilities.
  • Organizations must practice recovery procedures before a crisis occurs, drawing on lessons from nuclear generation environments where preparation and rehearsal are standard operational requirements for high-stakes scenarios.

Summary

Jay Cavalcanto, CIO of Constellation Energy, delivers a concise executive briefing on cyber crisis preparedness drawn from his experience in highly regulated critical infrastructure environments including nuclear generation. He outlines five essential actions for IT leadership: treating IT and operational technology as a unified system since cyber threats ignore organizational boundaries, prioritizing foundational infrastructure like identity management and network connectivity as prerequisites for application access, practicing recovery procedures before an actual crisis occurs, avoiding siloed thinking about cloud, SaaS, and on-premises systems, and deeply understanding data dependencies and recovery sequencing. Cavalcanto emphasizes that the increasing complexity introduced by AI and distributed architectures makes systematic preparation and data flow understanding non-negotiable for business continuity. His framework reflects lessons from environments where operational failure carries catastrophic consequences, positioning cyber resilience as a business survival imperative rather than a purely technical concern.

Chapters

0:00 - Introduction and Framework Overview
0:12 - IT and OT Convergence
0:27 - Foundational Infrastructure Priorities
0:38 - Practice and Preparation Requirements
0:58 - System Integration and Data Dependencies

Key Quotes

0:12 "There's no way you're going to be able to access or even engage your OT systems without your IT systems. So think about them as a single unit."
0:21 "Cyber threats do not know org charts."
0:38 "You do not want to be doing this for the first time during a crisis."
Categories:
  • » Webinar Library » Commvault
  • » Data Protection » Backup & Recovery
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Business Continuity
  • OT
  • IoT Security
  • Executive Briefing
  • Best Practices
  • Data Protection
  • Cyber Crisis Preparedness
  • IT and OT Convergence
  • Business Continuity Planning
  • Identity and Access Management
  • Data Dependency Mapping
  • Critical Infrastructure Security
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: Critical Actions CIOs Must Take to Prepare for Cyber Crises

              Upcoming Webinar Calendar

              • 06/17/2026
                12:00 PM
                06/17/2026
                Action1: The Remediation Gap: Vulnerability Management in the Age of AI
                https://www.truthinit.com/index.php/channel/2010/action1-the-remediation-gap-vulnerability-management-in-the-age-of-ai/
              • 06/23/2026
                01:00 PM
                06/23/2026
                The AI-Powered VMware Alternative
                https://www.truthinit.com/index.php/channel/2009/the-ai-powered-vmware-alternative/
              • 06/24/2026
                11:00 AM
                06/24/2026
                LATAM: Accelerating Insights on AI Through an Engaging Webinar Series
                https://www.truthinit.com/index.php/channel/2012/accelerating-insights-on-ai-through-an-engaging-webinar-series/
              • 06/25/2026
                01:00 PM
                06/25/2026
                Generative AI Security: Preventing AI from Becoming a Data Breach Multiplier
                https://www.truthinit.com/index.php/channel/1998/generative-ai-security-preventing-ai-from-becoming-a-data-breach-multiplier/
              • 07/01/2026
                04:00 AM
                07/01/2026
                Schutz von KI in Anwendungen, Agenten und APIs.
                https://www.truthinit.com/index.php/channel/2008/schutz-von-ki-in-anwendungen-agenten-und-apis/
              • 07/02/2026
                10:00 AM
                07/02/2026
                Resilience Insights from Hybrid Threats When the Cloud Faces Challenges
                https://www.truthinit.com/index.php/channel/2011/resilience-insights-from-hybrid-threats-when-the-cloud-faces-challenges/

              Upcoming Events

              • Jun
                17

                Action1: The Remediation Gap: Vulnerability Management in the Age of AI

                06/17/202612:00 PM ET
                • Jun
                  23

                  The AI-Powered VMware Alternative

                  06/23/202601:00 PM ET
                  • Jun
                    24

                    LATAM: Accelerating Insights on AI Through an Engaging Webinar Series

                    06/24/202611:00 AM ET
                    • Jun
                      25

                      Generative AI Security: Preventing AI from Becoming a Data Breach Multiplier

                      06/25/202601:00 PM ET
                      • Jul
                        01

                        Schutz von KI in Anwendungen, Agenten und APIs.

                        07/01/202604:00 AM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version