Category: Uncategorized

RED Group Names Ryan Primeaux Senior Vice President of Operations

We are pleased to announce that Ryan Primeaux has been promoted to SVP, Operations.  “Ryan’s leadership has further primed RED Group for the additional growth forecasted for 2023 and beyond. We are currently the largest and strongest RED Group to date, and while credit goes to many, Ryan certainly deserves recognition for his contributions since joining one year ago. In addition to launching our Lafayette, LA location, which has grown into a solid team of incredible people, Ryan’s influence as a trusted partner across the entirety of RED Group, as well as with our customers, has proven vital,” said Carl Fangue, CEO. “It has been a pleasure to work with Ryan over the past year. With integrity and dedication, he has consistently gained the trust of those that work with him, and his leadership has been integral to ensuring we continue to deliver effective and quality solutions to our customers as we grow,” added Kyle Remont, President.

 “I am excited and appreciative for the opportunity to work with the incredible RED Group team in this new role to continue building the operational capacity and capabilities that continue to drive us toward success in achieving our goals. Through the dedicated hard work of the entire team, we’ve created lots of positive momentum over the past year. It’s an exciting time to be part of RED Group,” said Ryan Primeaux. 

This is well-earned and a testament to Ryan’s leadership and dedication to excellence, growth, and the RED Group core values.  Congratulations, Ryan! 

RED Group is a leading Industrial Control Systems (ICS) Technology & Integration firm, specializing in Automation, Operational Technology (OT) Consulting, and Cybersecurity solutions. We engineer and integrate our clients’ OT systems with four outcomes in mind:  Control, Safety, Insights, and Security.  Our expertise in operational technology, systems engineering, and systems integration enables us to thoughtfully guide organizations through their journey towards optimization, stability, and resiliency.  We also have an inhouse UL 508A/UL698A Panel Shop where we fabricate custom industrial control panels. We are headquartered in New Orleans, LA with additional offices in Lafayette, LA and Houston, TX and serve a client base of North America, presently.

RED Group Names Victor Vich Vice President of Project Management Office

We are excited to announce that Victor Vich has been promoted to Vice President of Project Management Office here at RED Group. Previously, Victor was in the role of Director of Operations in Houston, having kicked off the RED Group Houston office in September of 2021.

“Victor is a proven leader, passionate about building high-performing teams and delivering quality OT/ICS solutions,” said Carl Fangue, CEO. “As RED Group continues along its growth trajectory, Victor’s dedication to quality and innovation will ensure our project delivery organization scales and evolves optimally, furthering our mission to enable our customers and team members to Take Control.”

“Being part of Red Group for the past 15 months has been an honor. Working alongside so much talent and great vision from our leadership team is both humbling and challenging, which I believe creates an environment for exciting things to come. I am thankful for the opportunity and ready to take our team to the next level, while we also give all our current and new customers reasons to choose us,” added Victor.

 

RED Group is a leading Industrial Control Systems (ICS) Technology & Integration firm, specializing in Automation, Operational Technology (OT) Consulting, and Cybersecurity solutions. We engineer and integrate our clients’ OT systems with four outcomes in mind:  Control, Safety, Insights, and Security.  Our expertise in operational technology, systems engineering, and systems integration enables us to thoughtfully guide organizations through their journey towards optimization, stability, and resiliency.  We also have an inhouse UL 508A/UL698A Panel Shop where we fabricate custom industrial control panels. We are headquartered in New Orleans, LA with additional offices in Lafayette, LA and Houston, TX and serve a client base of North America, presently.

RED Group Announces More Organizational Changes!

RED Group Announces More Organizational Changes

RED Group is pleased to reveal several organizational changes!

Dave Bacque will assume the role of Vice President of Strategic Development.  Carl Fangue, CEO, said, “Under Dave’s leadership we look forward to enhancing the quality delivery, capability, and scale of RED Group via creative and deliberate strategies.” Presently, Dave also holds the role of Director – OT Security, leading our cybersecurity practice. “I’m excited about the growth we have had at RED Group, and I am looking forward to leading our future of bringing meaningful and interesting offerings and capabilities to new and existing markets,” said Dave.

Ryan Primeaux has been promoted to Vice President of Operations.  Previously, Ryan was in the role of Director of Operations – Lafayette, having kicked off the RED Group Lafayette office in January of 2022. “Ryan brings many years of executive level experience in the ICS and Operational Technology spaces, and we look forward to leveraging his skills and leadership as we further build the RED Group team,” said Carl. Ryan added, “I’m excited to step into this role and for the opportunity to work within our operations team to continue growing our capacity to deliver world-class solutions to our clients.”

Congratulations to all as we continue to build a stronger, more impactful RED Group.

 

RED Group is a leading Industrial Control Systems (ICS) Technology & Integration firm, specializing in Automation, Operational Technology (OT) Consulting, and Cybersecurity solutions. We engineer and integrate our clients’ OT systems with four outcomes in mind:  Control, Safety, Insights, and Security.  Our expertise in operational technology, systems engineering, and systems integration enables us to thoughtfully guide organizations through their journey towards optimization, stability, and resiliency.  We also have an inhouse UL 508A/UL698A Panel Shop where we fabricate custom industrial control panels. We are headquartered in New Orleans, LA with additional offices in Lafayette, LA and Houston, TX and serve a client base of North America, presently.

RED Group Names Jake Mattix Director of Business Development

RED Group Names Jake Mattix Director of Business Development

RED Group is pleased to reveal several organizational changes!  Congratulations to all as we continue to build a stronger and more impactful RED Group.

We’re elated to announce that Jake Mattix has been promoted to Director of Business Development.  Jake has been with RED Group in a business development capacity for over 10 years.  “Jake’s dedication, passion, and solid teamwork have played a sizable role in the growth of RED Group over the years.  We look forward to teaming with Jake for the next decade and beyond!”, said Kyle Remont, Founder and President.

“When thinking back to 2011 when I started this journey at RED Group, I see that things are much different here now, and in a very positive way,” Jake said. “We’ve scaled up and implemented some big changes in the way we do things, and I’m proud of that.  With that said, the one constant during this journey has been people helping people, and I personally would not have been successful without the help from my teammates.  So, thank you all for your continued support, dedication, and hard work.  Together, we’ve built this business into a cohesive, fun, and exciting place, and we will continue to mature the RED Group brand while executing great work for our clients.  I look forward to the next phase and our continued success here at RED Group, and I am honored to accept the new role.”

 

RED Group is a leading Industrial Control Systems (ICS) Technology & Integration firm, specializing in Automation, Operational Technology (OT) Consulting, and Cybersecurity solutions. We engineer and integrate our clients’ OT systems with four outcomes in mind:  Control, Safety, Insights, and Security.  Our expertise in operational technology, systems engineering, and systems integration enables us to thoughtfully guide organizations through their journey towards optimization, stability, and resiliency.  We also have an inhouse UL 508A/UL698A Panel Shop where we fabricate custom industrial control panels. We are headquartered in New Orleans, LA with additional offices in Lafayette, LA and Houston, TX and serve a client base of North America, presently.

RED Group Names Carl Fangue CEO

RED Group Names Carl Fangue CEO

We are pleased to announce that Carl Fangue has been promoted to the position of Chief Executive Officer at RED Group.  As CEO, Carl will lead the forward-looking aspects of the firm, iterating and executing RED Group’s strategic vision.  Kyle Remont, Founder and President, will focus on our continuous improvement process, in addition to strategy, to ensure each day brings a stronger RED Group with regards to delivery, culture, and infrastructure.  Together – and with leadership from our entire team – growth, operational excellence, and a positive and purposeful culture will continue to be ‘True North’ for RED Group.

“Since Carl joined RED Group 3 years ago, we have worked very well together and he has made a hugely positive impact,” said Kyle Remont.  “Carl’s determination and attitude inspire everyone around him to become a better version of themselves, and his ability to break complex strategies into tactical actions is second to none.  Carl is a great leader, and I am very excited about working with him and the rest of our team to build a bigger, better RED Group.”

“It’s been an absolute pleasure working with Kyle and the RED Group team planning and building the future of the organization,” Carl said.  “We’ve made substantial progress, through some universally challenging times, and it feels pretty amazing.  I’m thrilled to continue to partner with Kyle and the entire team as we write the next chapter of the RED Group story, while preserving the culture and ethos the company launched with 16 years ago.”

We have more exciting news coming; stay tuned!

 

RED Group is a leading Industrial Control Systems (ICS) Technology & Integration firm, specializing in Automation, Operational Technology (OT) Consulting, and Cybersecurity solutions. We engineer and integrate our clients’ OT systems with four outcomes in mind:  Control, Safety, Insights, and Security.  Our expertise in operational technology, systems engineering, and systems integration enables us to thoughtfully guide organizations through their journey towards optimization, stability, and resiliency.  We also have an inhouse UL 508A/UL698A Panel Shop where we fabricate custom industrial control panels. We are headquartered in New Orleans, LA with additional offices in Lafayette, LA and Houston, TX and serve a client base of North America, presently.

Managing Your Maritime Project with RED Group

Managing your Maritime Project with RED Group

Shipbuilding, along with the manufacturing of other maritime vessels, is a complex industry with many moving parts. There are so many systems to be considered – navigation, propulsion, and ballast systems – just to start! Additional complications surface when searching for the right partners with the right experience to put all these moving parts together to create a quality vessel in a timely and efficient manner.

It’s not always easy knowing where to turn. How do we ensure these companies will work well together? Will they be able to communicate their needs to one another properly? Do their systems integrate as conceptualized and proposed? Are they working on similar timelines? Can their work be done simultaneously? It’s all enough to make your head spin! An important first step in ensuring a successful project is finding an integration partner with skills in engineering, cybersecurity, and OT systems, who also has the leadership capabilities to inject value into the planning, design, and production phases while providing project assurance services throughout.

The Challenge

As shipbuilders, it’s a challenge to keep manufacturing running smoothly. But when time down means money lost and/or significantly impacts the end user, it’s imperative to make sure design and production stay on track and on time. So, what can be done when there are hiccups in the workflow? Partnering with a maritime-experienced firm can be an incredible risk prevention tool.

When the schedule dictates that manufacturing begins before the design process is complete, shipbuilders may run into simultaneous operations challenges and resource availability issues. There are often delays on documentation followed by an influx of documentation, which leads to significant downtime followed by extreme uptime, causing peaks in resource loading. RED Group can relieve this situation by providing proper planning, assurance, and personnel to execute the work in a timely and efficient manner, saving shipbuilders from costly onboarding and turnover as well as expensive rework due to incomplete engineering.

Cybersecurity is an important, yet relatively new aspect in the maritime environment. Many shipbuilders are inexperienced in cybersecurity, just like many cybersecurity experts are inexperienced in the maritime industry. RED Group not only has experience in both maritime and cybersecurity, but in cybersecurity in the maritime industry!

Building a vessel is a large project – automation, engineering, cybersecurity, and systems integration are imperative, and it isn’t always easy to find a partner you can trust to tie everything together. RED Group has the experience required to ensure compliance and integration of all vessel systems, with cybersecurity designed into the project.

The Solution

It is important to not only partner with teams who have experience in each individual aspect of shipbuilding, but to find a partner who employs a holistic approach to the technology piece of shipbuilding. Hiring a cybersecurity expert lacking knowledge of industrial control systems, for instance, can lead to complications via risk management gaps, communication barriers,  and more. RED Group has the expertise needed to provide top quality project management and assurance services. We keep the project running smoothly and on time, and pride ourselves on the ability to overcome any obstacle thrown our way.

Here at RED Group, we excel at managing deliverables, timelines, and suppliers. We’re pros at ensuring your suppliers are providing technology packages as specified and expected for proper integration.  We’re passionate about making sure your vessel is delivered with the intended level of technology integration and adherence to the cybersecurity requirements. Our multi-industry integration experience makes us the perfect partner to guarantee each process on your ship operates smoothly and resiliently.

Take Away

Having worked across the Energy, Public and Manufacturing industries, in addition to our Maritime efforts – such as naval vessels, dredges, and cranes – RED Group has the experience needed to tackle any challenge that comes our way. Partnering with RED Group means we take care of the stress points so that you can focus on what’s important: building a top-notch vessel on time and within budget. When you partner with RED Group, you can rest assured that you will have help every step of the way, from beginning to end of your project. Contact us today to see the difference partnering with RED Group can make for your project.

RED Group Expands to Lafayette

new-location-lafayette

We are thrilled to announce that RED Group is officially expanding to Lafayette, Louisiana! Our newest team member, Ryan Primeaux, will be supporting clients and helping us grow in the Lafayette area. We’re looking forward to the opportunity to support our Lafayette clients locally as well as expand our clientele to provide expert engineering, automation and cybersecurity solutions all across the Gulf Coast.

Ryan, the Director of Operations over our Lafayette office, is an Energy Industry veteran that brings many years of Control System Engineering and Integration experience as well as executive level experience growing and leading high performing teams in the OT/ICS space. Ryan looks forward to contributing to the RED Group Vision across all geographies and offerings, as well as kicking off our presence in Lafayette, LA. We’re thrilled to have him on board and excited at the opportunity to grow the team and gain access to the talent Lafayette has to offer.

RED Group Expands to Texas

RED Group Expands to Texas

We are thrilled to announce that RED Group is officially expanding to Texas! Our newest team member, Victor Vich, will be helping us expand and grow in Houston, TX. We’re looking forward to the opportunity to support our Texas clients locally as well as expand our clientele to provide expert engineering, automation and cybersecurity solutions all across the Gulf Coast.

Victor, the Director of Operations over our Houston office, has over 20 years of experience working and managing various projects including engineering, control systems, SCADA, IOT and cybersecurity. Victor is excited to join RED Group and deliver innovative solutions to our customers in the Houston Market and around the US. We’re thrilled to have him on board and excited at the opportunity to grow the team and gain access to the talent Texas has to offer.

Creating Zero-Trust Security Architecture

Create Zero-Trust Security Architecture
Written by Garrett Williams, Senior OT Security Consultant

 

What is Zero-Trust Security?

Zero-trust is the practice of shrinking the cybersecurity perimeter and eliminating inherent trust in your environment. The focus is on using technology and up-to-date methodologies as tools to get security as close as possible to each individual asset or components within a control system.

For example, instead of a security zone being the entire manufacturing plant, specific HMIs and historians are grouped together to minimize the attack surface that a security team needs to manage. Between each grouping may be virtual networking divisions, physical devices or other mechanisms that allow for alerting and monitoring centrally.

Security solutions must be dynamic to keep up with modern threats – that is the only way to ensure your overall architecture has strong foundations to handle the security required for ongoing operations. With Industrial Control Systems (ICS), that means preventing unauthorized and unwanted access to operational technology (OT) that could have caused a disruption in the availability of services. The Zero-Trust model utilizes strong cybersecurity tools and methodologies to create an environment that is inherently secure as opposed to being inherently available.

So, where do you start? Every cybersecurity-related vendor now utilizes the buzzwords ‘zero- trust security’ and ‘false claims’ to sell the full package solution, but most products only add and strengthen the bricks within one or more pillars that complete your cybersecurity architecture. To create a truly secure environment, you’ll need a partner who can help develop the bigger picture.

Developing the “Bigger Picture”

To build a strong cybersecurity program, there are a number of cornerstone methodologies – or “pillars” – that can be implemented. Below are the most fundamental of these pillars:

Strong Asset Management:

Having an asset inventory is critical for security; it is the basis for most methodologies. Security requires a few different components to allow it to function at its best. When deciding what these pieces are, you should ask yourself questions such as:  What are we protecting? How much is it worth? Where is it? These questions must be addressed on a continuous basis in order to have strong asset management within an organization.

Some examples of assets are computerized equipment, generated data, software and/or applications, and even services. Assets should be ranked or prioritized. A common practice for control systems is doing a crown jewel analysis, which are devices and processes most critical for operation.

Least Privilege

Least privilege is giving the absolute minimal amount of access to resources necessary to do one’s job. An organization needs to define roles and the specific responsibilities that fall under each role. Only then can you create strong policies that restrict the appropriate access to resources during the appropriate time.

Dynamic IAM MFA

Multi-factor authentication (MFA) successfully defeats most password guessing and credential hijacking attacks. However, MFA by itself is not insurmountable. We are constantly creating and strategizing new ways to authenticate rightful users to the resources they need to do their jobs. Flexibility is required with security tool and technique selection.

The strongest and most effective way of authenticating users and devices is by combining multiple methods to create one strong policy. Identity Management can be very arduous and granular – it is paramount to understand how your organization defines and validates identities, as well as represents those identities digitally within your environment. Remember, the goal is strong discriminative authentication policies that do not inconvenience operations.

Build defensible networks with segmentation plus monitoring

Group and separate your network based on asset attributions, how they transact with each other, and their value to the business. The point in which one security zone interacts with any other should be digitally monitored. Monitoring is set up and networks are separated using virtual networking solutions or hardware solutions such as firewalls and unidirectional gateways.

In a zero-trust architecture, a defensible network serves dual purposes. These checkpoints can serve as booby traps and alert your team of adversaries in your environment. Network segmentation in addition to monitoring also gives you the option to defend yourself against an attack. For example, if you experience a ransomware attack, a segmented network can help prevent the spread of malware from one security zone or group of assets to another.

Your Partner in Cybersecurity

A zero-trust architecture establishes network security from the inside out, starting with the asset(s) or security zone. Sometimes, with a little bit of help, you can implement zero-trust architecture with little to no cost. There are many security-enabled features inside the networking, OS-based HMIs, and workstation systems currently used within most OT environments.

To help you transform your environment into a zero-trust security model, you need a partner that not only helps you invest, but also consults you on how to address cyber threats with existing capabilities. It is essential to have security-aware people, secure processes, and secure technologies.

RED Group is your partner in implementing zero-trust security architecture throughout your industrial environment. We can get started by evaluating your current cybersecurity program maturity and assessing how and where you can implement better cybersecurity tools and improve your cyber security posture. Contact us today to begin working on a roadmap to secure your environment.

Garrett Williams is an OT cybersecurity professional with an extensive history of building and leading high performing teams.

Cybersecurity – and Resilience – in Shipbuilding

Cybersecurity - and Resilience - in Shipbuilding
Written by David Bacque, VP of Operations and Director of OT Security

 

“Cybersecurity” is a broad term, and the implications are more far-reaching than we typically consider – it isn’t just important for keeping our onshore systems safe. While cybersecurity and cyber resilience are certainly important to the health of all land-based IT/OT infrastructure, they are imperative for keeping ships and vessels secure, as well. Maritime cybersecurity is unique in the fact that the vessel itself is isolated from onshore systems but needs to integrate internally as well as be able to back up to prevent data loss while at sea.

The Challenge

Shipbuilders build ships – they have expertise around the process of engineering and constructing a ship – but often lack expertise in securing and integrating the modern electronic systems being delivered with various equipment packages. Vessels are comprised of many subsystems containing various degrees of complexity, automation, and integration which are required to work together for the safe and efficient operation of the vessels. While the package suppliers have expertise in building the subsystems, no one vendor, nor the shipbuilder, has the expertise to deliver a cohesive system and meet the cybersecurity expectations of modern ship owners. To equip a vessel with the tools and processes needed to secure its systems, an external cybersecurity specialist is often commissioned to evaluate and prescribe the measures necessary to meet the asset owner’s expectations.

The Solution

A clearly defined cybersecurity program needs to be created to communicate the asset owner’s security expectations while collaborating with suppliers to deliver secure systems. The cybersecurity program should align with the project phases and be tracked along with other project deliverables. Using our project security assurance process, RED Group has aligned cybersecurity into all aspects of the shipbuilding lifecycle:

  • Standards and requirements definition – align customer requirements with industry standards to create project-specific cybersecurity specifications.
  • Purchasing Specifications – build cybersecurity into the procurement process and include cybersecurity expectations into supplier contracts.
  • System Assessments – review and assess supplier and engineering documentation to validate alignment with standards and requirements.
  • Remediation Tracking – Identify gaps and coordinate with vendors to remediate
  • Acceptance Testing – witness and verify compliance with specifications during factory or site acceptance testing.

RED Group can Help

When your business is building ships, cybersecurity is not always at the forefront of considerations. Floating, propulsion, steering and navigation – these are the things that make a ship a ship. Not always considered, but no less important, is securing the systems onboard. RED Group has the expertise needed to ensure your vessel meets your client’s needs and expectations regarding the protection and recovery of the systems onboard. Contact us to find out how partnering with RED Group can help you deliver a ship that exceeds your clients’ expectations.

David Bacque, an experienced cybersecurity and operational technology (OT) professional, has led, advised on and delivered OT projects and ICS security initiatives with industrial clients around the world.