$400 Amazon Gift Card with OnDemand Training through March 10 - Learn More!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Threat Management Made Easy: How to Protect Your ICS Network with Less Effort

  • Thursday, June 07, 2018 at 1:00 PM EDT (2018-06-07 17:00:00 UTC)
  • Dennis Murphy, Dean Parsons


  • SecurityMatters

You can now attend the webcast using your mobile device!



How can you proactively improve your ability to better detect and respond to threats?

 Did you know:

  • Reliability and availability is the number one concern of ICS asset owners. (SANS Institute)
  • The cost to the global economy of cybercrime has been estimated at $445 billion a year.A growing trend is the use of cyberattacks to target critical infrastructure and strategic industrial sectors, raising fears that, in a worst-case scenario, attackers could trigger a breakdown in the systems that keep societies functioning. (Global Risks Report 2018, World Economic Forum)
  • The average cost per unplanned downtime hour is $260,000, with $140,000 for petrochemical and $1.3M for auto industry manufacturing. (Multiple sources: Contingency Planning Research & Schneider Electric, ATS Survey, Aberdeen Group)

During this talk Dean Parsons and Dennis Murphy, Director of US Operations, will discuss lessons learned from our 5+ years experience in managing large network security monitoring projects and how we have turned this experience into self-learning capabilities, smart automation and advanced threat libraries continuously updated by analyzing intelligence sources and real-world threats discovered through customer collaboration. Because of this, our solution effectively reduces analysts workload and streamlines traditionally expensive operations like:

  • Taking inventory of assets and vulnerabilities to help prioritize and mitigate threats
  • Maintaining compliance with company security policies to avoid changes and human error that can cause unplanned downtime
  • Better detecting known and unknown threats
  • Reacting immediately and recovering faster

Speaker Bios

Dennis Murphy

Dennis started his career designing, installing and maintaining process automation networks 25 years ago. Most of his experience with SCADA systems was in the integration of data between the IT and OT networks. In 2005, he realized how security was more of an afterthought and shifted his focus to securing ICS networks. Now he is a network security monitoring (NSM) professional and uses this technology to help control system engineers and IT security professionals understand the impacts they have on the security of control system networks. Dennis focuses on providing practical solutions to meet national critical infrastructure cyber security requirements. His main interest is in bridging the gap between the information technology (IT) requirements and operational technology (OT) requirements.

Dean Parsons

Dean Parsons is a SANS instructor for ICS515: ICS Active Defense and Incident Response, a member of the SANS/GIAC advisory board, an active member of the cybersecurity community, and OT Cyber Security Officer. With 20 years combined experience in IT, Industrial Control System cyber defense across the telecommunications to critical infrastructure sectors, Mr. Parsons lead's an active ICS Cybersecurity Program for an electric utility in Canada across facilities for generation (hydro, thermal, gas turbine), transmission and distribution.

As an ICS security practitioner and ambassador for safety and operational resilience, he frequently speaks at high-profile cybersecurity events across North America, and has a natural way of engaging his audience.

His enthusiasm in the field started at an early age writing ethical hacking tools on his custom compiled versions of Linux; password crackers, host-based intrusion detection systems, network sniffing tools, smart port scanners, kernel modules and exploits. Any given day Dean could be dissecting packets from plant operations, writing policies, or presenting to a board of directors.

Dean earned a bachelor’s degree in computer science from Memorial University of Newfoundland and holds the CISSP, GSLC, GCIA and GRID accreditations.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.