OT Cybersecurity Summit

Incident Command System for Industrial Control Systems Workshop

Onsite/In-person delivery (Separate Registration Fees Apply)

Incident Command System for Industrial Control Systems (ICS4ICS) is designed to improve cybersecurity incident response efforts that impact the industry by combining three capabilities that already exist in most companies:

1. Incident Command System is a proven process for managing various types of incidents
2. Cybersecurity teams leverage Computer Incident Response processes to investigate cyber
3. Industrial Control System/Operational Technology experts manage the technical aspects of many types of incidents

This session will help participants learn how ICS4ICS is the emergency cyber response for workforce development.

Volunteer Workshop

Onsite/In-person delivery 

This custom-designed workshop crafts plans for mission-focused, vibrant and successful sections and divisions. Current and aspiring volunteers will leave this workshop with a plan, with energy, with knowledge and with an expanded network of other volunteers who believe in and want to shape ISA’s future.

Separate registration is required. Click here to register.

Young Professionals Reception

Morning Tea

Keynote: Security by Design - A Communication Problem?

For a long time, cybersecurity regulation has mainly addressed critical infrastructure operators. This year, the focus has shifted to product manufacturers with regulations like EU’s Cyber Resilience Act (CRA) the UK Product Security and Telecommunications Infrastructure Act (PSTI) or UNECE R155/156 for cars. In addition, national security authorities from dozens of countries, led by US CISA, are pushing security by design globally through joint recommendations, and many countries are introducing cybersecurity labels for IoT products.

If everybody wants Security by Design – then why is it still not done? Maybe it’s not the technology. Maybe not even the money. Maybe the problem we need to solve is a communication problem between product manufacturers and operators / users. Sarah substantiates this point by summarizing what the above regulations require from manufacturers and shows new approaches for communicating cybersecurity – during design as well as after design, between engineers as well as towards management and an interested public.

Sarah Fluchs
CTO, admeritia GmbH

×

Sarah Fluchs

Sarah Fluchs is the CTO of admeritia, which specialises in security consulting for the process industry, manufacturing, and critical infrastructures. Prior to her current role, Sarah has developed cybersecurity guidance for the water sector at the German Federal Office for Information Security (BSI).

A process and automation engineer herself; Sarah works on creating security engineering methods that help engineers make informed, conscious security decisions they can truly stand behind – and communicate convincingly.

Sarah has created the Top 20 Secure PLC Coding practices with Dale Peterson, Jake Brodsky and Vivek Ponnada, led a government-funded research project on security by design for ICS, and is the ISA Co-Convenor for revising the ISA/IEC 62443-3-2 standard. As of 2024, she succeeds Joe Weiss as a Co-Managing Director for ISA99.

Intelligence Evolution Track: Intro to Intelligence Evolution

In this introduction to intelligence evolution, our expert presenter will provide an overview of the latest advancements in artificial intelligence, machine learning and data analytics while exploring how these technologies are transforming the way we understand and interact with the world around us.

Megan Samford
VP, Chief Product Security Officer - Energy Management, Schneider Electric

×

Megan Samford

IoT Cybersecurity Track: Intro to Cybersecurity

In this introductory session, Brian Holliday will talk about his experience with Made Smarter UK and provide a comprehensive overview of the fundamentals of cybersecurity. Attendees will gain a solid understanding of the key concepts, strategies and best practices for protecting digital assets and mitigating risk in today's interconnected world. Don't miss this opportunity to lay the foundation for a stronger, more secure digital future!

Brian Holliday
Managing Director, Siemens, Co-Chair Made Smarter Commission, Made Smarter UK

×

Brian Holliday

Brian Holliday is a member of the Executive Management Board of Siemens plc and Managing Director for Siemens Digital Industries, which serves the manufacturing and infrastructure sectors. He is also Chairman of Siemens Industry Software UK.

He is a supervisory board member for the High Value Manufacturing Catapult in addition to being a main board member for Make UK, the Manufacturers’ Organisation and in 2022 was appointed co-chair of Made Smarter, the national digitalisation movement to drive productivity, growth and sustainability in manufacturing.

A Chartered Engineer and Fellow of the Institution of Engineering and Technology, Brian started his career with Texas Instruments and went on to read Computer Systems at Cardiff University before joining Siemens, the global leader in electrification, automation and digitalisation in 1993.

He attained his Executive MBA at Manchester Business School in 2000 and in 2014 became a graduate of the CBI’s Executive Leadership Programme.

Brian was made a Fellow of The Royal Academy of Engineering in September 2022.

Cyber Pavilion Tech Demo Break: Sponsored by UL Solutions

Join us for a presentation by UL Solutions.

Presenter
UL Solutions

×

Presenter

UL Solutions | https://www.ul.com/

For 129 years, we have helped enable the possibilities of today while looking ahead to safeguard the unknowns of tomorrow. By empowering trust and smarter decisions, we help build a better world by advancing innovation safety, sustainability and connected security. Always upholding and pushing the rigorous scientific standards that have brought us here today, we continue to positively impact people and society by working for a safer, more secure and sustainable world.

Cyber Escape Room

Onsite/In-person delivery (Separate Registration Fees Apply)

Join us in our immersive OT cyber escape room. Using the latest shared immersive technology, we have created a realistic OT environment in a virtual space.

Imagine you are on an offshore oil and gas floating production unit. In the control room, a ransomware message pops up on a control system console. Now your marine team has no visibility or control over the mooring and buoyancy systems. Your team has 15 minutes to solve the challenges our AI engine presents before the facility experiences a loss of stability and capsizes. Can you succeed before the clock runs out? Who will complete the challenge, and who will be the fastest to reach the goal?

Intelligence Evolution Track: Leveraging an outcomes-based Approach with International Standards to Mitigate Cyber Risks

Operators of essential services, regulators, government, vendors and consultancies have been navigating their way through compliance. Although the spirit of NIS regulations is to uplift the overall level of cyber resilience for critical national infrastructure, the journey has been complex and often misunderstood by many. This presentation helps all those concerned to focus on this spirit and develop a staged approach to both satisfy compliance requirements and be resilient against the ever-evolving threats.

Mohammed Zumla
Managing Consultant, Cyber ICS

×

Mohammed Zumla

Mohammed established Cyber ICS in UK in 2018 in response to the new NIS regulations that were introduced across EU.  He headed up a new cyber regulatory function for UK’s Office for gas and electricity markets (OFGEM), and brokered relationships across lead government departments, Health and Safety Executive, UK’s National Cyber Security Centre, and the Centre for Protection of National Infrastructure.  He influenced government policy and direction for the sector and in doing so wrote the NIS guidance and NIS inspection framework in a collaborative fashion with operators. Further Mohammed wrote the RIIO2 cyber resilience methodology, which is the main instrument to providing funding for the sector by working with senior leadership, boards, and challenge groups.

Mohammed comes from a big 4 background, having built the SCADA consultancy practice whilst at Deloitte UK in 2009. He worked for Qatar Petroleum as head of Security Strategy and became the acting CSO from the onset of the Shamoon attack which affected one of the major subsidiaries. He was deputised as Sector Authority for all industry operators, established a Cyber Security Partnership Forum, performed industry risks and compliance assessments, maturity and capability assessments, and made recommendations to boards to improve the security posture and also enable digital transformation.

Mohammed led the ICS security consultancy at GE, based in Dubai, which was previously an independent boutique known as Wulrdtech. During his tenure, he helped develop regulatory instruments and then led teams to perform assessments against Critical National Infrastructure Operators. He conducted several holistic risk and compliance assessments, writing treatment options, ICS improvement tactical roadmaps and multi-year strategies with maturity capabilities.

With Mohammed’s background from big 4 consultancy, a major oil and gas operator, a major OT vendor and having worked with the EU commission and heading up a cyber regulatory function in UK, he not only provides the compliance view, but also the organisational and national risk and opportunities view, to formulate well balanced recommendations, from a technical, management and organisational perspective from an operational, tactical, and strategic viewpoint.

Mohammed has a master’s degree in information security from the prestigious Royal Holloway University, holds ICS security certifications SANS GICSP and SANS GRID, ISO 27001 lead auditor, ISO 27001 lead implementer, SABSA, TOGAF, CISSP, CISM, Certified ethical hacker, amongst various others.

Mohammed is a member of the World Economic Forum and has contributed towards working groups such as Quantum Cryptography, Cyber Resilience in Oil and Gas, and Cyber Resilience in Electricity. He is a member of CIGRE working group, regularly presents and co-chairs events at the IET in the UK. He previously advised NARUC on their regulatory approach for Cyber, and provided feedback and commentary for the EU commission, ACER, and ENTSO-E in the development of the network code for cyber security.

IoT Cybersecurity Track: Secure by Design

In this informative session, Rob Barnes will delve into the core principles of Secure by Design, a critical approach to developing secure software and systems from the ground up. Attendees will learn about best practices for incorporating security into the entire development lifecycle, from design and coding to deployment and maintenance. This talk is designed for anyone looking to enhance their understanding of how to build security into the foundation of digital products and services.

Rob Barnes
Cyber Security Technical Expert, Rolls-Royce Civil Nuclear UK

×

Rob Barnes

Rob Barnes has been providing specialist cyber security expertise to Rolls-Royce Civil Nuclear UK, its clients, and the Rolls-Royce Small Modular Reactor (SMR) programme since 2017. Prior to that, Barnes worked within the defence area of the business as an Information Assurance (IA) technical lead. Before joining Rolls-Royce, he spent eight years working for Dstl, a part of the UK Ministry of Defence.

Lunch Break I

IoT Cybersecurity Track: ENISA Horizontal Policy

Join us for an engaging discussion about the important role of ENISA Horizontal Policy in shaping the cybersecurity landscape in the European Union. Attendees will gain valuable insights into ENISA's work in strengthening cybersecurity across the EU. Don't miss this opportunity to learn more about this essential policy.

IoT Cybersecurity Track: Impact of New Tech in Standards

Join us as we discuss the complex interplay between new technology standards in the rapidly evolving world of cybersecurity. Attendees will learn how emerging technologies, such as AI, IoT and cloud computing, are shaping the development and enforcement of security standards. The talk will explore the challenges and opportunities presented by this intersection, as well as the implications for the future of cybersecurity. This session is designed for anyone seeking to enhance their understanding of how new technologies are transforming the standards landscape and how to effectively navigate these changes to maintain a strong security posture.

Cindy Segond von Banchet
OT Cybersecurity Lead, Yokogawa Europe

×

Cindy Segond von Banchet

Intelligence Evolution Track: Fireside Chat: Understanding the Hardware Side of Supply Chain Risk and Protecting It

During this fireside chat, our speakers will explore the dynamic relationship between the hardware side of supply chain risk and how to protect it. Our panel of industry experts will discuss the unique challenges and opportunities, offering valuable insights on how to leverage intelligence to identify and mitigate risks in the hardware supply chain industry. Attendees will learn about the latest trends and best practices for securing their hardware infrastructure and gain practical advice on how to stay ahead of emerging threats.

Cassie Crossley
Vice President, Supply Chain Security, Schneider Electric

×

Cassie Crossley

Cassie Crossley, Vice President, Supply Chain Security in the global Cybersecurity & Product Security Office at Schneider Electric, is an experienced cybersecurity technology executive in Information Technology and Product Development and author of Software Supply Chain Security: Securing the End‐to‐End Supply Chain for Software, Firmware, and Hardware. She has many years of business and technical leadership experience in supply chain security, cybersecurity, product/application security, software/firmware development, program management, and data privacy.

JC Herz
Senior Vice President, Cyber Supply Chain, Exiger

×

JC Herz

JC Herz is Exiger’s SVP of Cyber Supply Chain, which delivers product-level risk and assurance of software and cyber-physical devices, including Software Bill of Materials (SBOM) analysis and generation of SBOMs from firmware binaries. She was the co-founder and CEO of Ion Channel, a software supply chain analytics platform Exiger acquired in 2023, and is a fellow at George Mason University’s National Security Institute.

Lunch Break II

Intelligence Evolution Track: Supply Chain Intelligence Sharing

The CISA SBOM sharing working group recently published a document defining three key roles in SBOM sharing: author, distributor and consumer. In this session, the group's co-chair will discuss the current and future state of supply chain intelligence networks, and provide actionable steps for attendees in any of these roles.

Chris Blask
Vice President of Strategy, Cybeats

×

Chris Blask

Panel Discussion: Linking Hardware and Software

In this informative panel discussion, we will explore the critical link between hardware and software in securing our digital world. Listen as our panelists talk about the intersection of these two crucial components of cybersecurity, discussing the latest trends, challenges and opportunities in securing both hardware and software systems. Learn about the importance of implementing a holistic approach to cybersecurity, as well as practical strategies for enhancing the security of both hardware and software infrastructure.

Rob Barnes
Cyber Security Technical Expert, Rolls-Royce Civil Nuclear UK

×

Rob Barnes

Rob Barnes has been providing specialist cyber security expertise to Rolls-Royce Civil Nuclear UK, its clients, and the Rolls-Royce Small Modular Reactor (SMR) programme since 2017. Prior to that, Barnes worked within the defence area of the business as an Information Assurance (IA) technical lead. Before joining Rolls-Royce, he spent eight years working for Dstl, a part of the UK Ministry of Defence.

Megan Samford
VP, Chief Product Security Officer - Energy Management, Schneider Electric

×

Megan Samford

Paul Hingley
Business Manager, Industrial Security and Safety Services, Siemens

×

Paul Hingley

Intelligence Evolution Track: Securing Your Networks with the Addition of 5G Technology

As technology continues to evolve, so do the threats to our network. The addition of 5G technology brings new challenges and opportunities for securing our networks. During this session, we will explore the latest developments in 5G technology and its impact on network security. Our expert speaker will discuss the intelligence evolution and how it affects the security of our networks. Attendees will gain insights into the best practices for securing 5G networks and learn about the emerging threats and mitigation strategies.

Greig Paul
Research Engineer, Electronic and Electrical Engineering, University of Strathclyde

×

Greig Paul

IoT Cybersecurity Track: Ensuring IIoT Device Security Through Certification and the ISA Secure Standard

As the Industrial Internet of Things (IIoT) continues to expand, ensuring the security of connected devices has become a critical concern for organizations. This technical presentation will delve into the importance of IIoT device certification and the role of the ISA Secure standard in addressing these challenges.

Patrick O'Brien
Cybersecurity Team Leader, exida

×

Patrick O'Brien

Afternoon Tea Break

Cyber Pavilion Tech Demo Break: Sponsored by Armis

Join us for a presentation by Armis.

Presenter
Armis

×

Presenter

Armis | https://www.armis.com/

Armis, the asset intelligence cybersecurity company, protects the entire attack surface and manages the organization’s cyber risk exposure in real time. In a rapidly evolving, perimeter-less world, Armis ensures that organizations continuously see, protect and manage all critical assets. Armis secures Fortune 100, 200 and 500 companies as well as national governments, state and local entities to help keep critical infrastructure, economies and society stay safe and secure 24/7. Armis is a privately held company headquartered in California.

Intelligence Evolution Track: Post Quantum Computing

Is quantum computing the new Y2K?  Our presenter will talk about Crypto BoMs, the importance of a quantum plan, challenges and opportunities and the new face quantum computing leaves us with. 

Andersen Cheng
Founder, Post-Quantum

×

Andersen Cheng

IoT Cybersecurity Track: Cybersecurity in Action: Real-World Applications of ISA/IEC 62443 in Energy Storage Systems

This presentation explores the integration of cybersecurity measures in energy storage systems (ESS), a vital aspect in the increasingly interconnected and digitalized energy sector. It focuses on the practical application of the ISA/IEC 62443 standard, an essential framework for industrial cybersecurity, especially within the context of ESS. The session highlights common challenges faced by organizations in the energy sector during the implementation of these standards and pinpoints crucial areas requiring attention for a robust cybersecurity posture.

SZ Lin
Embedded Linux Developer, Debian

×

SZ Lin

ISAGCA/ISA Secure Welcome Reception

Morning Tea

Keynote: The Intersection of Sustainability and Cybersecurity

As the world becomes increasingly digitized, the importance of cybersecurity is greater than ever. At the same time, the growing awareness of the environmental impact of technology has made sustainability a crucial consideration. In this keynote, we will explore the intersection of these two critical issues and discuss how organizations can balance security and sustainability in their digital strategies.

Attendees will gain a deeper understanding of the relationship between cybersecurity and sustainability and learn practical strategies for building a secure and environmentally responsible digital future.

Simon Hodgkinson
Former CISO, BP

×

Simon Hodgkinson

Simon has 38+ years of experience in information technology and cyber security across the software, financial services, and energy sectors. He spent 18 years working for bp in a variety of global roles, including the Group Chief Information Security Officer and VP of Global Infrastructure.

Simon now combines advisory and executive roles for several organisations, including Semperis, Onyxia, Performanta and E&Y.

He has been recognised for his advocacy of diversity and inclusion with several nominations for a top Corporate Ally.

Simon has served as an advisor to NHS Digital and Natural History Museum on cyber security. 

Cyber Escape Room

Onsite/In-person delivery (Separate Registration Fees Apply)

Join us in our immersive OT cyber escape room. Using the latest shared immersive technology, we have created a realistic OT environment in a virtual space.

Imagine you are on an offshore oil and gas floating production unit. In the control room, a ransomware message pops up on a control system console. Now your marine team has no visibility or control over the mooring and buoyancy systems. Your team has 15 minutes to solve the challenges our AI engine presents before the facility experiences a loss of stability and capsizes. Can you succeed before the clock runs out? Who will complete the challenge, and who will be the fastest to reach the goal?

Intelligence Evolution Track: Combatting Cybersecurity with Sustainability

In intelligence evolution, it is important to know where you are in the world. What laws, standards, regulations and technologies are impacting you? In this session, we will discuss new laws, regulations and standards in the EU, UK and US. We will dive into how those new laws and challenges impact us for a new greener and safer network.

Prabhu Soundarrajan
President, ISA

×

Prabhu Soundarrajan

IoT Cybersecurity Track: Clean Energy Cybersecurity

As the world transitions to clean energy sources, the cybersecurity of these systems becomes increasingly critical. This session will explore the unique challenges and opportunities of securing clean energy infrastructure, from solar panels to electric vehicle charging stations.

Attendees will learn about the latest cybersecurity threats and trends in the clean energy sector, as well as strategies for protecting against them.

Emma Stewart
Chief Power Grid Scientist & Research Strategist, Idaho National Laboratory

×

Emma Stewart

Cyber Pavilion Tech Demo Break: Sponsored by Dragos

Join us for a presentation by Dragos.

Presenter
Dragos

×

Presenter

Dragos | https://www.dragos.com/

In a world of rising cybersecurity threats, Dragos protects the most critical infrastructure – those that provide us with the tenets of modern civilization – from increasingly capable adversaries who wish to do it harm. Devoted to codifying and sharing our in-depth industry knowledge of ICS/OT systems, Dragos arms industrial defenders around the world with the knowledge and tools to protect their systems as effectively and efficiently as possible.

Intelligence Evolution Track: Critical Infrastructure: Introduction to RUSI

Critical infrastructure, such as energy, transportation, and communications systems, are essential for the functioning of our society. However, these systems are also vulnerable to cyber-attacks, which can have severe consequences. In this session, we will discuss the importance of threat intelligence in protecting critical infrastructure and share strategies for identifying and mitigating emerging threats.

Carolyn Swinney
Head of Defensive Cyber Operations, Royal United Services Institute

×

Carolyn Swinney

591 Signals Unit, Royal Air Force

Carolyn J. Swinney received the B.Eng. and M.Sc. degrees (Hons.) in electronics engineering from the University of Essex, Colchester, U.K., in 2007 and 2013, respectively, where she is currently pursuing the Ph.D. degree in electronic systems engineering. She graduated as a Communications and Electronics Engineering Officer at the Royal Air Force in 2014. Her main research interests are signal processing, unmanned aerial vehicles, neural networks, machine learning, and cyber security.

IoT Cybersecurity Track: Navigating the Complexities of Maritime Cybersecurity: Challenges, Controls and Collaboration

The maritime industry is rapidly digitizing, making cybersecurity a critical concern. Join us as we explore the unique challenges of cybersecurity in maritime environments, including the need to balance safety and security and the challenges of applying traditional Industrial Control Systems (ICS) security measures. Learn about the key cybersecurity controls for the maritime industry — such as asset management, multi-factor authentication and risk assessment – and come to understand the importance of collaboration between maritime stakeholders, including shipowners, equipment manufacturers and cybersecurity experts, to develop effective cybersecurity strategies and mitigate risks. Drawing on real-world examples from companies like Royal Caribbean, Christopher Stein will provide insights into how the maritime industry can navigate the complexities of cybersecurity and ensure the safety and security of its operations.

Christopher Stein
Lead Engineer, Maritime Cybersecurity, Royal Caribbean Group

×

Christopher Stein

Lunch Break I

IoT Cybersecurity Track: Exploring the Security Impacts of GenAI in IT and OT

Generative AI (GenAI) has emerged as a transformative technology with numerous applications across industries. While GenAI presents exciting opportunities for innovation, it also introduces new security challenges in both Information Technology (IT) and Operational Technology (OT) environments.

This technical presentation will explore the security impacts of Generative AI in IT and OT.

Dr. Andrew Rogoyski
Director of Innovation, Surrey Institute for People-Centered AI

×

Dr. Andrew Rogoyski

IoT Cybersecurity Track: Workforce Development

Many countries face a national security imperative to develop a workforce capable of securely designing, building, operating, maintaining and defending critical infrastructure industrial automation and control systems. This presentation presents the results of a years-long collaborative research project among the International Society of Automation (ISA), Idaho National Laboratory (INL) and Idaho State University (ISU) to create a curricular guidance document that describes what an industrial cybersecurity professional needs to know that is different from a traditional IT cybersecurity professional. The resulting Curricular Guidance: Industrial Cybersecurity Knowledge document is a foundational element to educating and training the interdisciplinary cybersecurity workforce of the future.

Sean McBride
Director, Informatics Research Institute, Idaho State University

×

Sean McBride

Sean McBride is the Director of the Informatics Research Institute at Idaho State University, where, since 2017 he has developed the nation’s only hands-on Industrial Cybersecurity degree program.

Sean joined ISU from FireEye/Mandiant, where he oversaw the firm’s Industrial Control Systems (ICS) security business strategy. Sean’s previous professional accomplishments include pioneering work in threat and vulnerability intelligence, which evolved into the DHS ICS-CERT, and co-founding Critical Intelligence to focus on the unique intelligence needs of industrial entities.

Sean holds a PhD from LaTrobe University (Australia), a Masters of Global Management from Thunderbird/Arizona State University, and a Masters of Business Administration from Idaho State University.

Intelligence Evolution Track: Military Offensive Operations on Critical Infrastructure

The companies responsible for the critical goods and services that we rely on every day are finding themselves on the front line of a live, multinational cyber conflict....with no strategy, no means of coordination, no leader, unevenly distributed and inadequate defenses, no timely intelligence, and no training in military cyber combat. Worst of all, many of the boards & C-suites execs of these companies don’t understand and dismiss the gravity and larger geopolitical national security implications of state-sponsored aggression on their company.

This is the reality of cyber conflict today and a formula for defeat.

This talk is a wake up call with solutions. We'll examine the current capability gaps and requirements required for investor owned companies to be able to reliably defend against and deter persistent focused aggression from the major threat actors.

Lunch Break II

Intelligence Evolution Track: Defining an Incidence Response Plan on a National Level

As cyber threats continue to evolve and become more sophisticated, having a robust incident response plan is essential for minimizing damage and ensuring a quick recovery. This session will explore the challenges and best practices for defining and implementing an incident response plan on a national level in Spain, with a focus on coordination between government agencies, critical infrastructure operators, and other stakeholders.

Ivan Monforte Fugarolas
Head of Communication, Ecosystem and Cybersecurity Culture, Cybersecurity Agency of Catalonia

×

Ivan Monforte Fugarolas

Ivan oversees the Communication direction and the strategy to promote the cybersecurity ecosystem at the Cybersecurity Agency of Catalonia. In the last 8 years he has been dedicated professionally to the public administration sphere, initially in the field of communication and in recent times as responsible for planning, supervising and directing the teams of a political Cabinet as well as the coordination and collaboration with the technical teams that carry out the specific policies, both in the field of innovation, Technology and cybersecurity as areas of competence as well as the more specific areas of ordinary management (budgets, hiring, personnel management, planning, launching projects, etc.).

In the field of specific sectorial management, these last 8 years he has been focused on the management and supervision of the main digital transformation and digital innovation projects such as cybersecurity initiatives promoted from the public sphere in collaboration with private entities and companies, technology centers and the digital ecosystem from Catalonia, Spain but also European and international ones

Panel Discussion: Threat Intelligence

This panel discussion will bring together experts in the field of threat intelligence to share their experiences, strategies, and best practices. Our panelists will discuss the current state of threat intelligence, including the latest trends, challenges, and opportunities. Attendees will also learn about strategies and best practices for building and maintaining a threat intelligence program that can help your organization stay ahead of emerging threats.

Jack Duffield
Royal United Services Institute

×

Jack Duffield

Jack Duffield commissioned into the Royal Air Force in 2018. He has experience in cyber security and cyber threat intelligence, at the intersection between military aviation and defensive cyber operations.

Presenter
Schneider Electric

×

Presenter

Presenter
Cybersecurity Agency of Catalonia

×

Presenter

Cyber Pavilion Tech Demo Break: Sponsored by Cyolo

Join us for a presentation by Cyolo.

Presenter
Cyolo

×

Presenter

Cyolo | https://cyolo.io/

Through trustless, agnostic software, Cyolo gives security leaders the controls to safely provide asset access — not broad network access — to on-premises, remote, and third-party users.

Afternoon Tea Break

Standards Workshop: Empowering Global Automation with ISA's International Standards Program

International standards play a vital role in promoting safety, reliability, and interoperability across industries. This workshop aims to provide attendees with an in-depth understanding of the International Society of Automation (ISA)'s standards program and its collaboration with the International Electrotechnical Commission (IEC).

Charley Robinson
Director, Standards Administration, ISA

×

Charley Robinson

ISA Training: Using the ISA/IEC 62443 Standards to Secure Your Control Systems (IC32)

Onsite/In-person delivery (Separate Registration Fees Apply)

• Course days: 20-21 June 2024
• Course Hours: 8:00 a.m. - 4:00 p.m.
• CEU Credits: 1.4
• Certification of Completion: A certificate of completion indicating the total number of CEUs earned will be provided upon successful completion of the entire two-day course.

Description:

The move to using Ethernet, TCP/IP, and web technologies in supervisory control and data acquisition (SCADA) and process control networks has exposed these systems to the same cyberattacks that have wreaked havoc on corporate information systems. This course provides a detailed look at how the ISA/IEC 62443 standards framework can be used to protect critical control systems. It also explores the procedural and technical differences between the security for traditional IT environments and those solutions appropriate for SCADA or plant floor environments.

You will be able to:

• Discuss the principles behind creating an effective long term program security
• Interpret the ISA/IEC 62443 industrial security framework and apply them to your operation
• Define the basics of risk and vulnerability analysis methodologies
• Describe the principles of security policy development
• Explain the concepts of defense in depth and zone/conduit models of security
• Analyze the current trends in industrial security incidents and methods hackers use to attack a system
• Define the principles behind the key risk mitigation techniques, including anti-virus and patch management, firewalls, and virtual private networks

You will cover:

• Understanding the Current Industrial Security Environment: What is Electronic Security for Industrial Automation and Control Systems? | How IT and the Plant Floor are Different and How They are the Same
• How Cyberattacks Happen: Understanding the Threat Sources | The Steps to Successful Cyberattacks
• Creating A Security Program:  Critical Factors for Success/Understanding the ANSI/ISA-62443-2-1 (ANSI/ISA-99.02.01-2009)- Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program
• Risk Analysis:  Business Rationale | Risk Identification, Classification, and Assessment 
• Addressing Risk with Security Policy, Organization, and Awareness: Cyber Security Management System Scope | Organizational Security | Staff Training and Security Awareness
• Addressing Risk with Selected Security Counter Measures: Personnel Security | Physical and Environmental Security | Network Segmentation | Access Control
• Addressing Risk with Implementation Measures: Risk Management and Implementation | System Development and Maintenance | Information and Document Management
• Monitoring and Improving the CSMS: Compliance and Review | Improve and Maintain the CSMS
• Validating or Verifying the Security of Systems: What is being done? | Developing Secure Products and Systems

Classroom/Laboratory Demo:

• PCAP Live Capture Analysis

Includes ISA Standards:

• ANSI/ISA-62443-1-1 (ANSI/ISA-99.00.01-2007), Security for Industrial Automation and Control Systems Part 1: Terminology, Concepts & Models
• ANSI/ISA-62443-2-1 (ANSI/ISA-99.02.01-2009), Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program
• ANSI/ISA-62443-3-3, Security for industrial automation and control systems: System security requirements and security levels

Instructor: Carlos Montes Portela
ISA/IEC 62443 Trainer, Senior OT/ICS Cybersecurity Manager

×

Instructor: Carlos Montes Portela

Carlos Montes Portela received a B.Sc. degree in Software Engineering and a M.Sc. degree in Business Process Management and IT (cum laude). His master thesis focused on the design space of the ICT architecture of the Smart Grid taking into account security and privacy issues.

Carlos has over 25 years of experience in different roles: software engineer, technical and functional designer, IT architect, EAI/SOA architect, team leader, senior smart grid innovator and senior OT security officer.

Currently, Carlos is an independent business owner. Form his company Dicarma he offers coaching, training and consulting services on cybersecurity related topics. As a TOGAF, CISSP and CISM certified OT Security Manager, Carlos is currently contracted by a Dutch DSO where he is responsible for OT ISO-27001 and ISA/IEC-62443 based ISMS. Carlos also researches the applicability of the ISA/IEC 62443 standards for charging infrastructures for electric vehicles for an association related to EV charging. Furthermore, Carlos is an active member of the Dutch standardization committee NEC65 and WG10 of TC65 at the IEC where the IEC-62443 standards are developed. Carlos is also an informative member of the ISA-99 committee. He conducts training courses for ISA-Europe in the Dutch, English and Spanish languages. Carlos is a Certified Trainer and Subject Matter Expert for the ISA/IEC62443 training program.

ISA Training: Assessing the Cybersecurity of New Existing IACS Systems (IC33)

Instructor: Prashanth AC
Cybersecurity Strategy and Program, IEC 62443 Expert, Implementer and Trainer

×

Instructor: Prashanth AC

A leader and critical thinker in the field of OT cybersecurity with 16 years of experience. He acquired Bachelor of Engineering in 2005. He managed military IT/ OT infrastructure at Indian Navy for the first 10 years of career. He leads the Global Cyber Security Pentest Lab, Schneider Electric at Bangalore, India as Lab Manager for 3 + years. Exposed to rich experience of handling pentest of 300+ critical ICS products i.e., PLCs, Safety devices, RTUs, Historians, smart metres, and associated applications. Gained effective practical experience in MITRE ATT&CK, IEC 62443-4-1, IEC 62443-4-2, and OT pentest environment.

He possesses certifications like ISA 62443 Cybersecurity Expert, CISSP, CISM, GPEN, GICSP, ISO 27001:2013 LA and AWS Security. He is passionate about IT-OT convergence and attack surfaces exposed in such engineering. He continues to pursue offensive security at his home lab during his free time endeavour. He started a OT Cybersecurity startup ‘SECOT PVT Ltd’. It got very quick success in bagging projects in middle east (RA of 120 electric substations and few more in oil & gas). During his tenure, he practiced IEC 62443-2-X series as a service provider for asset owners.

He joined Siemens Energy at Erlangen, Germany to contribute to the cybersecurity of Grid Automation Technologies for electrical utilities. Prashanth contributed to strategic decisions for OT cybersecurity in the digitalisation journey of GAT, Siemens Energy. Interacted with many of the important Energy companies in Europe, Middle East, and US. He practiced NERC-CIP, IEC 62443-3-2, IEC 62443-3-3, local regulations, NIST CSF during this role.

He is currently working with SKF Group and contributes to formulating OT cybersecurity strategy, policy, governance, processes, including IT-OT convergence for 100+ manufacturing factories across the globe.