Get the Skills you need from Home with SANS Online Training - Special Offers Available Now

ICS Security Summit & Training 2018

Orlando, FL | Sun, Mar 18 - Mon, Mar 26, 2018
This event is over,
but there are more training opportunities.

2018 Advisory Committee

Glenn Aydell, CISSP, GSEC, GCIH, GCFE, GCIA, GISCP, Senior Expert, Cyber and Automation Security, BASF Corporation
Glenn attended Louisiana Tech University where he studied Management Information Systems and graduating in 1991. He has been with BASF since 1996 where he held various networking and IT security positions before accepting a position in the engineering organization. In his current position as Senior Expert, Cyber and Automation Security in the engineering Technical Expertise Organization he is responsible for Automation (ICS) Security and Industrial Communications for the North American region. In this role he is heavily involved in bridging the gap between IT and OT security solutions. He is active in multiple global security teams and initiatives for both IT and OT security. Outside BASF, Glenn is involved with the ACC ChemITC, ISA, InfraGuard and LA-SAFE.

Andy Bochman, Senior Cyber and Energy Security Strategist, INL
Andy provides strategic guidance to senior USG and industry leaders on topics at the intersection of grid modernization and security. Previously he was the Global Energy & Utilities Security Lead at IBM and Senior Advisor at the Chertoff Group in Washington, DC. A frequent speaker, writer and standards developer, Andy has provided analysis on energy sector security actions, standards and gaps to DOE, DOD, FERC, NERC, NIST, NARUC, the Electricity Subsector Coordinating Council (ESCC), and state utility commissions, most recently testifying before the Senate Energy and Natural Resources Committee on energy infrastructure cybersecurity issues. His two most recent papers, both published by the Center for Strategic and International Studies (CSIS), are “the National Security Case for Simplicity in Energy Infrastructure” (2015) and “IoT, Automation, Autonomy and Megacities in 2025: A Dark Preview” (2017).

David Foose, Principal Consultant, Mandiant
David Foose is a Principal Industrial Control Security Consultant for FireEye’s Mandiant security services group. Prior to Mandiant, David worked for Emerson Automation Solutions Power and Water business as the Manager of Ovation Security Technologies. Prior to working at Emerson he spent time in IT systems operations at a large industrial roofing company.

Rob Hoffman, National Security Advisor, Idaho National Laboratory
Mr. Hoffman is the founder of the Idaho National Laboratory’s cyber security research capability and the initial manager of the U.S. Department of Homeland Security (DHS) Industrial Control Systems Cyber Emergency Response Team, (ICS-CERT). He has lead diverse teams of security personnel in the assessment of high-profile critical infrastructure facilities and participated in international nuclear security missions for both the International Atomic Energy Association (IAEA) and the U.S. National Nuclear Security Administration (NNSA). Rob is a frequent presenter and contributing author to international cyber policy and advisory efforts pertaining to Nuclear Cyber Security. Rob is employed at the INL as a National Security Advisor, in this role he contributes to the advancement of nuclear cyber concepts in the protection of nuclear facilities and materials from consequences related to cyber attack and is an ongoing supporter of Nuclear Threat Initiative (NTI) collaborations and NNSA’s Defense Nuclear Nonproliferation’s (DNN), strategic cyber initiatives.

Eric D. Knapp, Chief Engineer – Cybersecurity Solutions and Technology, Honeywell
A leading authority in critical infrastructure cyber security, and author of the industry-influencing books Industrial Network Security and Applied Cyber Security and the Smart Grid. Expert in SCADA, ICS, machine-to-machine communication, embedded device security and the “Internet of Things” within industries such as energy, oil & gas, chemical, pharmaceuticals, critical manufacturing, smart grid, mobile and cloud computing.
Creative and energetic, with technical expertise in network and information cyber security (IDS/IPS, application layer DPI, access control, security information and flow analysis, cloud security, “big data” information management, etc.). Proficient in industrial automation and control operations, applications and protocols. Involved in some of the largest cyber security initiatives globally including industrial control sector embedded security initiatives, Middle Eastern digital oilfield initiatives, and nuclear cyber security initiatives.

Robert M. Lee, CEO, Dragos, Inc.\Robert M. Lee is the CEO and Founder of the industrial (ICS/IIoT) cyber security company Dragos, Inc. He is also a non-resident National Cybersecurity Fellow at New America focusing on policy issues relating to the cyber security of critical infrastructure. For his research and focus areas, Robert was named one of Passcode’s Influencers, awarded EnergySec’s Cyber Security Professional of the Year (2015), and inducted into Forbes’ 30 under 30 for Enterprise Technology (2016).
A passionate educator, Robert is the course author of SANS ICS515 – “ICS Active Defense and Incident Response” with its accompanying GIAC certification GRID and the lead-author of SANS FOR578 – “Cyber Threat Intelligence” with its accompanying GIAC GCTI certification.|
Robert obtained his start in cyber security in the U.S. Air Force where he served as a Cyber Warfare Operations Officer. He has performed defense, intelligence, and attack missions in various government organizations including the establishment of a first-of-its-kind ICS/SCADA cyber threat intelligence and intrusion analysis mission. Robert routinely writes for publications on the topics of industrial security, threat intelligence, and cyber security. He is a frequent speaker at conferences around the world and is currently pursuing his PhD at Kings College London with research into the cyber security of control systems. Lastly, Robert, along with Jeff Haas, creates a weekly technology and security web comic titled Little Bobby.

James McGlone, GICSP, CMO, Kenexis
Jim is the Chief Marketing Officer at Kenexis and is a certified Global Industrial Cyber Security Professional. Jim has over thirty years of control system experience including nuclear power plant control systems. Jim has served as the ISA Safety & Security Division Director and currently serves as the president of central Ohio’s Control System Cyber Security Association. Jim's education includes degrees in physics, computer technology, and an MBA in International Business.
Prior to joining Kenexis, Jim spent fifteen years developing industrial software business globally for Rockwell Automation and five years as the vice president of Tridium, a Honeywell technology business. In addition to many years of design and programming experience, Jim also served the US Navy on two submarines as a nuclear reactor operator and electronic technician.

Jeffrey A. Shearer, CISSP, PMP, Sr. Security Architect, Commercial Engineering, Rockwell Automation
Mr. Shearer is a Sr. Security Architect for Rockwell Automation’s Commercial Engineering group focusing on network and security designs for Industrial Automation Control System (IACS) and Industrial Demilitarized Zones (IDMZ). Jeff joined Rockwell Automation in 1994 and has compiled over 30 years’ experience in areas related to Network and Security systems, Automation Control, Software and Embedded Firmware development.
Prior to joining the Commercial Engineering team, Jeff was a Principal Security Consultant for Rockwell Automation’s Network & Security Services where his consultancy targeted Automation, Industrial Control System (ICS), Distributed Control System (DCS) and SCADA asset owners. Jeff has also held the position of Product Manager, Controller Platform Security where he was responsible for security products provided by Rockwell Automation’s ControlLogix business.
In addition to controller focused security initiatives, Jeff also represented Rockwell Automation to security bodies such as the Idaho National Labs (INL) Control Systems Cyber Security Vendor Forum, ISA-SP99, Manufacturing and Control Systems Security and Department of Homeland Security (DHS) Control System Security Program. He also acted in a Subject Matter Expert (SME) role for the Global Industrial Cyber Security Professional (GICSP) security certification program.