Prioritizing the CIS Critical Controls for ICS: Learning from recent incidents
- Monday, October 24th, 2016 at 1:00 PM EDT (17:00:00 UTC)
- Mike Assante, Tim Conway, and Walt Sikora
You can now attend the webcast using your mobile device!
The Center for Internet Securitys Critical Controls have helped organizations secure their IT systems; how do we apply them to protect ICS and where do we start? The controls arose from careful analysis of how attackers were able to compromise systems as a way to inform and prioritize the best defense effort. Defending ICS adds several wrinkles, some having to do with causing no harm to the industrial process, others have more to do with the security objectives and particular architectures. This talk will use examples and help you think about the best controls to consider based on recent ICS incidents.
This webcast will provide participants with:
- An introduction to the CIS Critical Controls
- Learning what experts observe about controls adoption experiences and how they map to reducing risks from known incidents
- Presented with working examples of controls applied to ICS environments
Technical Director - ICS and SCADA programs at SANS. Responsible for developing, reviewing, and implementing technical components of the SANS ICS and SCADA product offerings. Formerly, the Director of CIP Compliance and Operations Technology at Northern Indiana Public Service Company (NIPSCO). Responsible for Operations Technology, NERC CIP Compliance, and the NERC training environments for the operations departments within NIPSCO Electric. Previously, an EMS Computer Systems Engineer at NIPSCO for eight years, with responsibility over the control system servers and the supporting network infrastructure. Former Chair of the RFC CIPC, current Chair of the NERC CIP Interpretation Drafting Team, member of the NESCO advisory board, current Chair of the NERC CIPC GridEx Working Group, and Chair of the NBISE Smart Grid Cyber Security panel.
Michael Assante is currently the SANS lead for Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) security and Co-founder of NexDefense an Atlanta-based ICS security company. He served as Vice President and Chief Security Officer of the North American Electric Reliability (NERC) Corporation, where he oversaw industry-wide implementation of cyber security standards across the continent. Prior to joining NERC, Mr. Assante held a number of high-level positions at Idaho National Labs and served and as Vice President and Chief Security Officer for American Electric Power. Mr. Assante's work in ICS security has been widely recognized and was selected by his peers as the winner of Information Security Magazine's security leadership award for his efforts as a strategic thinker. The RSA 2005 Conference awarded him its outstanding achievement award in the practice of security within an organization.
He has testified before the US Senate and House and was an initial member of the member of the Commission on Cyber Security for the 44th Presidency. Before his career in security served in various naval intelligence and information warfare roles, he developed and gave presentations on the latest technology and security threats to the Chairman of the Joint Chiefs of Staff, Director of the National Security Agency, and other leading government officials. In 1997, he was honored as a Naval Intelligence Officer of the Year.
Walt Sikora has more than 29 years of experience with Security for SCADA, DCS and ICS systems. In his current role, Walt is responsible for Leidos security and compliance solutions and is a member of DHS-ICSJWG, NERC CIPC, and many other security groups. Walt previously spent 21 years with Invensys, Inc. as Director of Service Engineering and Development, where he was responsible for developing services and security solutions for the Foxboro IA platform. He holds an Associate Degree in Engineering and, a B.S. degree in Electrical Engineering from Northeastern University, and is currently an MBA candidate at the Gordon Institute of Tufts University.