IoT devices are a fast growing attack surface within most organizations. A critical part of managing their cyber risk is having an effective governance policy that is supported by actionable controls that can be audited and extensible to devices/applications on IT networks managed by Operational Technology teams. This panel brings together expertise from a corporate enterprise, industry organization, and research firm to dig into what makes for effective governance that reduces the likelihood of cyber criminals being successful in their next attack.