Results of the SANS SCADA Security Survey
You may experience difficulty playing videos on devices running iOS 10. We are working to resolve the issue. We advise using iOS 9 or a non-iOS supported device to play videos.
- Wednesday, February 20th, 2013 at 1:00 PM (13:00:00 EDT/US Eastern)
- Matt Luallen, Markus Braendle, Walter Sikora, and Mark Seward
You can now attend the webcast using your mobile device!
Industrial automation and control systems have changed significantly in the recent past and continue to do so. They are being connected to internal and external networks or to remote management systems, even from hand held mobile devices. These systems are now widely exposed to cyber threats ranging from malware to hacktivists and government-sponsored war-like attack from automated code such as Duqu and Stuxnet.
Securing industrial automation and control systems is not an easy task. A big challenge, for instance, is dealing with legacy systems in the installed base that often do not have security mechanisms built in and run on old operating systems left unpatched due to the sensitivity of their operations. With no means to protect themselves from attack, and with the difficulties in monitoring these systems, how are control system operators managing risk and compliance?
In this webcast, SANS will release results of the first SANS survey into the security practices of SCADA system operators. Learn their level of awareness around cyber risk, their attempts to manage that risk, and how their efforts are working out so far. Also learn what standards, frameworks and protections are available, including from longtime SCADA security providers, Industrial Defender and ABB (a global leader in power and automation technologies).
Register for this webcast and be among the first to receive a complimentary copy of the associated whitepaper developed by SANS instructor, Matt Luallen.
Click here to view the associated whitepaper.
Matthew E. Luallen
Matthew E. Luallen, certified SANS instructor, is co-founder and President of CYBATI, a critical infrastructure and control system cybersecurity awareness and training company, and adjunct professor for DePaul University's capstone cybersecurity and control system courses. He has written, consulted and trained extensively on process control and SCADA security issues and continues to work with electric utilities throughout the United States and Canada with the NERC CIP reliability standards. He has presented on control system vulnerabilities to the FBI, FBI, ISA, NERC RROs, USSS, NNSA, DOE National Labs, US Army Central Command, FAA, European Union, and RCMP. Prior to incorporating CYBATI, Matthew was co-founder of Encari and still serves as the President of Sph3r3. He also served as an Information Security Network Engineer and Architect at Argonne National Laboratory. Matthew holds a Bachelors Degree in Industrial Engineering from the University of Illinois-Urbana, and a Masters Degree in Computer Science from National Technological University. He is an 11-year CCIE and certified instructor for Cisco Systems.
Mark Seward is currently Director of Security and Compliance Solutions marketing at Splunk and has over 10 years of experience in the IT security management profession as a security practitioner and product manager with experience in log management and vulnerability management. Mark has a Masters of Science in IT and a Federal CIO certification from the University of Maryland.
Walter Sikora, VP of Security Solutions at Industrial Defender, has more than 29 years of experience with Security for SCADA, DCS and ICS systems. In his current role, Walt is responsible for Industrial Defenders security and compliance solutions and is a member of DHS-ICSJWG, NERC CIPC, and many other security groups. Walt previously spent 21 years with Invensys, Inc. as Director of Service Engineering and Development, where he was responsible for developing services and security solutions for the Foxboro IA platform. He holds an Associate Degree in Engineering and, a B.S. degree in Electrical Engineering from Northeastern University, and is currently an MBA candidate at the Gordon Institute of Tufts University.
Markus is globally responsible for all aspects of cyber security for the ABB Group. He heads the ABB Group Cyber Security Council a cross-divisional and cross-functional effort to ensure that ABB offerings support customers' cyber security requirements. Prior he was the Head of Cyber Security for the Power Systems division and held a number of specialist and management roles within ABB Corporate Research. Markus is a member of several international cyber security standardization efforts and working groups and a recognized member in the industrial control system security community. Markus holds a MSc and a PhD in Computer Science from the Federal Institute of Technology (ETH) in Zurich, Switzerland.