Top Cybersecurity Training Protects Your Assets - Learn From the BEST and Apply New Knowledge Immediately!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Sorry, the slides for this webcast are not available for download.

SANS Oil & Gas Solutions Forum: Objective-based Security Drives Effective Solutions

  • Friday, July 10, 2020 at 9:30 AM EDT (2020-07-10 13:30:00 UTC)
  • Jason Dely


  • Cyberinc
  • Dispel
  • Siemplify
  • Swimlane
  • ThreatConnect
  • Tripwire, Inc.
  • Cisco Umbrella

You can now attend the webcast using your mobile device!



View full agenda here and join Slack Workspace here.

Over the last 15 or so years, Oil & Gas organizations, vendors and service providers have been steadily improving their awareness of the emerging cyber threats to their operations and the need to improve their security. As the realization of proven and potential impacts associated to these threats evolve, these organizations and the market that serves them continues to develop, integrate and refine roadmaps on their cybersecurity initiatives. These initiatives have not been easy the discovery of various obstacles along the way including legacy systems, architectural changes, vendor/partner relationships, personnel training and availability of supportive technologies. As a result, a prioritized approach to resourcing is necessary that not only combines an effective use of people, process and technology but also incorporates the uniqueness of how each organization is stood up across both their Information and Operations environments.

With this prioritization in mind, while also still meeting or exceeding regulatory obligations, a security initiative must be right-sized and coordinated across the 5 domains of Identify, Protect, Detect, Response and Recover. However, with limited availability of funding for security improvements, only through objective oriented security can an organization select the right solution to meet their needs. Security is truly not a one-size fits all. Luckily, more than every does the control systems security market have many available security improvement options in technologies and solutions. 

How will organizations establish these objectives? What is needed to meet these objectives? This briefing will explore these questions through invited speakers while showcasing current capabilities available today. Vendor presentations will focus on case-studies and specific capabilities that may service part of an organizations security initiatives.


9:30-10:10am: Welcome & Keynote, Jason Dely

10:10-10:45am: SecOps Made Easier with Automation

10:45-11:20am: Adjusting Processes to Meet Today's Evolving Environment

11:20-11:35am: Break

11:35-12:10pm: Shrink your (attack) surface, sharpen your (cyber) security

12:10-12:45pm: Evolving Security Operations in Oil and Gas for the Covid-19 Era and Beyond

12:45-12:55pm: Break

12:55-1:30pm: Design & Implementation of OEM ICS Cybersecurity Frameworks: The Good, The Bad, and The Ugly

1:30-2:05pm: Security, Speed, Scalability, Sustainability, and Survivability - AN OT Remote Access Story

2:05-2:10pm: Closing Statement, Jason Dely

Speaker Bio

Jason Dely

Jason Dely, SANS co-author of ICS612: ICS Cyber Security In Depth and instructor for ICS515: ICS Active Defense and Incident Response, has 20 years of operational, technical and security experience, spanning multiple industry verticals, such as power utility, water utility, oil and gas, manufacturing, mining and chemical. He contributes to developing and implementing technical components of the SANS ICS and SCADA product offerings. Jason is also the Principal Consultant and Founder at Northern Strong Security Inc., based in Ontario, Canada.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.