OnDemand Includes 4 Months Access to Course Content - Special Offers Available Now!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Prioritizing the CIS Critical Controls for ICS: Learning from recent incidents

  • Monday, October 24, 2016 at 1:00 PM EDT (2016-10-24 17:00:00 UTC)
  • Walt Sikora, Mike Assante, Tim Conway


  • Leidos

You can now attend the webcast using your mobile device!



The Center for Internet Securitys Critical Controls have helped organizations secure their IT systems; how do we apply them to protect ICS and where do we start? The controls arose from careful analysis of how attackers were able to compromise systems as a way to inform and prioritize the best defense effort. Defending ICS adds several wrinkles, some having to do with causing no harm to the industrial process, others have more to do with the security objectives and particular architectures. This talk will use examples and help you think about the best controls to consider based on recent ICS incidents.

This webcast will provide participants with:

  • An introduction to the CIS Critical Controls
  • Learning what experts observe about controls adoption experiences and how they map to reducing risks from known incidents
  • Presented with working examples of controls applied to ICS environments

Speaker Bios

Tim Conway

Technical Director - ICS and SCADA programs at SANS. Responsible for developing, reviewing, and implementing technical components of the SANS ICS and SCADA product offerings. Formerly, the Director of CIP Compliance and Operations Technology at Northern Indiana Public Service Company (NIPSCO). Responsible for Operations Technology, NERC CIP Compliance, and the NERC training environments for the operations departments within NIPSCO Electric. Previously, an EMS Computer Systems Engineer at NIPSCO for eight years, with responsibility over the control system servers and the supporting network infrastructure. Former Chair of the RFC CIPC, current Chair of the NERC CIP Interpretation Drafting Team, member of the NESCO advisory board, current Chair of the NERC CIPC GridEx Working Group, and Chair of the NBISE Smart Grid Cyber Security panel.

Mike Assante

Michael Assante is currently the SANS lead for Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) security and Co-founder of NexDefense an Atlanta-based ICS security company. He served as Vice President and Chief Security Officer of the North American Electric Reliability (NERC) Corporation, where he oversaw industry-wide implementation of cyber security standards across the continent. Prior to joining NERC, Mr. Assante held a number of high-level positions at Idaho National Labs and served and as Vice President and Chief Security Officer for American Electric Power. Mr. Assante's work in ICS security has been widely recognized and was selected by his peers as the winner of Information Security Magazine's security leadership award for his efforts as a strategic thinker. The RSA 2005 Conference awarded him its outstanding achievement award in the practice of security within an organization.

He has testified before the US Senate and House and was an initial member of the member of the Commission on Cyber Security for the 44th Presidency. Before his career in security served in various naval intelligence and information warfare roles, he developed and gave presentations on the latest technology and security threats to the Chairman of the Joint Chiefs of Staff, Director of the National Security Agency, and other leading government officials. In 1997, he was honored as a Naval Intelligence Officer of the Year.

Walt Sikora

Walt Sikora has more than 29 years of experience with Security for SCADA, DCS and ICS systems. In his current role, Walt is responsible for Leidos security and compliance solutions and is a member of DHS-ICSJWG, NERC CIPC, and many other security groups. Walt previously spent 21 years with Invensys, Inc. as Director of Service Engineering and Development, where he was responsible for developing services and security solutions for the Foxboro IA platform. He holds an Associate Degree in Engineering and, a B.S. degree in Electrical Engineering from Northeastern University, and is currently an MBA candidate at the Gordon Institute of Tufts University.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.