Distribution Security Forum

Join us in Washington, DC!
April 11-12, 2019

The Distribution Security Forum is a conference focused on security issues in power distribution systems. This event will focus on improving security for the electric distribution infrastructure. Join us in Washington, DC, April 11th and 12th, for discussion panels, distribution presentations, and networking with peers facing similar threats.

The Ukraine attacks and other recent developments have highlighted the need to improve security for electric distribution infrastructure that is not covered by the CIP standards. With advancing technology, cyber attacks against electric distribution systems, advanced metering infrastructures, microgrids, and distributed energy resources are presenting an increasing risk.

Who should attend?

  • Utility security leadership and staff
  • Utility distribution operations leadership and staff
  • Utility operational technology support
  • Product vendors that provide products for distribution, metering, micrograms, or distribution energy resources
  • State regulatory and/or energy officials and staff
  • Security solutions providers
  • Engineering and consulting firms supporting electric distribution systems
  • Interested individuals from trade organizations, research and policy organizations, national labs, and academia

Registration Fee:

Non Member Early Bird Member
$395.00 $295.00 $195.00

The Distribution Security Forum will be held at the Crystal Gateway Marriott in Arlington, VA. The hotel address is:

1700 Jefferson Davis Highway, Arlington, Virginia 22202 USA

EnergySec has a room block for this event. $249/night. You can reserve your room here. Cuff-off date is March 13, 2019.

The meeting room location for this event will be available closer to the event date.

 Day 1

8:30a - 9:00a | Registration Open

Room location to be announced

9:00a - 9:45a | Brian Harrell | Assistant Director for Infrastructure Security - CISA

9:45a - 10:30a | NARUC's Cyber Manual presentation | Lynn Costantini

10:30a - 11:00a | Networking Break

11:00a - 11:30a | Edison Electric Institute: Cyber Mutual Assistance for Distribution System Operators | Kaitlin Brennan

11:30a - 12:00p | Electricity Subsector Coordinating Council | Laura Schepis

12:00p - 1:00p | Lunch

Join us for a catered lunch and spend some time networking with other industry professionals.

1:00p - 2:00p | Panel - Small Utility Cybersecurity | Jaret Pfluger

2:00p - 2:30p | Presentation

2:30p - 3:00p | Networking Break

3:00p - 4:00p | Distribution Resilience Innovation | Fred Hintermister | Energy Analytic Security Exchange (EASE)

What resilience challenges and opportunities do we see for that last mile of power delivery we call Distribution? How can mastery of the distribution security differentiate your organization and build strategic competitive advantage? Getting specific about desired outcomes delivered and focused innovation to get us there into the next decade and beyond. Orchestrating tech, talent and process to achieve our goals from product development to supply chain to total life cycle management of distribution assets from a distinctively innovative perspective.

4:00p - 5:30p | Evening Reception and Networking

 Day 2

8:30a - 9:00a | Registration Open

Join us for networking at 8am prior to the start of Day 2.

9:00a - 9:45a | Richard Mroz

9:45a - 10:30a | Resilient Communications for Utilities | Sharla Artz | UTC

10:30a - 11:00a | Networking Break

11:00a - 12:00p | Active Protection of SCADA Communications, Not Just Monitoring | Tony Bogovic

SCADA networks have become targets for cyber attacks. Isolating these critical networks is no longer a practical option as IT and OT interworking is now a forgone conclusion. This is especially evident as utilities and government agencies deploy distributed intelligence at millions of infrastructure endpoints. Although they provide benefits, they introduce greater vulnerabilities than originally anticipated. Because it is financially impossible to build totally impenetrable networks, industry has embraced Continuous Monitoring and Detection schemes as practical mitigation strategies. However, the increasing frequency of cyber attacks is causing alarm fatigue and longer analysis and response timesThe next step is deploying capabilities that advance beyond mere detection to protecting these networks and their critical assets in an automated fashion in real-time.  The presentation will discuss protection techniques such packet sniffing and interception capabilities, building protocol dissectors for matching protocol session content against rules governing protocol behaviors. The benefits of automated SCADA traffic profiling will also be reviewed.  Recommended actions in real-time for implementing appropriate responses will be addressed to move from warnings and alarms to automated protection of SCADA networks from attacks.  Insights from firsthand experience and high level results and discoveries made during recent deployments are shared.

12:00p - 1:00p | Lunch

1:00p - 2:00p| Cybersecurity Best Practices | Paul Feldman

2:00p - 2:30p| APT Reality: Motivation, Mitigation & Remediation | Gentry Lane | Anova Intelligence

Advanced Persistent Threats to the energy sector are no longer from lone hackers, but are the focused efforts of adversarial cyber armies. The escalating sophistication of their malware combined with the organizational complexities inherent to energy are a potentially catastrophic combination. Understanding motivations, methods and attack histories are critical for informing mitigation, remediation and crisis strategies. 

2:30p - 3:30p| Cybersecurity Workforce | Steve Parker | EnergySec

Call for Speakers

2019 Distribution Security Forum April 11-12, 2019 | Arlington, VA Marriott Crystal Gateway

Are you someone who can passionately and effectively share your subject matter expertise, real life experiences, innovative ideas, and/or practical solution’s with attendees at our event? If so, we invite you to submit a speaking proposal today.

We are looking for speakers that can address current challenges and solutions related to cybersecurity in electric distribution systems, including related topics such as Distributed Energy Resources, Distribution Automation, Microgrids, Advanced Metering Infrastructure, Utility Communications, Demand Response, and similar topics. Presentation slots of up to one hour are available.

We are open to a wide range of topics relevant to the above mentioned areas, including the following:

  • Expanding security programs to cover distribution assets
  • Case Studies on security technology deployments
  • Security research or demonstration projects
  • Security architecture approaches
  • Addressing the unique challenges of small, distribution-only utilities
  • Leveraging government resources (i.e. National Guard, FBI, ICS-Cert, Fusion Centers, state and local law enforcement) in utility security efforts
  • The use of Blockchain or other emerging technologies in distribution and/or end-user markets
  • Supply chain or vendor relations topics relevant to security
  • Legal, policy, and compliance initiatives, including state-level activity
  • Approaches to evaluating the efficacy and/or cost-effectiveness of security solutions
  • Security exercises relevant to distribution systems
  • Security operations, threat hunting, and/or incident response for distribution systems
  • Challenges and solutions related to the use of cloud or 3rd party operated technology, including operational systems, communication systems, and data collection and
  • Information sharing and collaboration at the local, regional, national, and international

We are seeking both technical and policy-focused talks relevant to the conference themes. Technical talks should be detailed enough to provide actionable information, while remaining accessible to individuals that lack deep technical knowledge.


The audience for this event is expected to include a broad cross section of stakeholders including utility management and staff, government organizations, state-level regulatory staff, state energy officials, vendor personnel, security researchers, policy organizations, students, and academia. We expect up to 75 attendees.

Submission Instructions

Interested individuals should submit the following information via email to cfs@energysec.org.

Full Name, Email Address, Company/Organization, Job Title, Short Biography, Title and Abstract for presentation, Time allotment desired

Join Our Fast Growing Membership Base Today!

Memberships Start At


Contact Us

Send us an email and we'll get back to you, asap.

Not readable? Change text. captcha txt