Pacific Rim Critical Infrastructure Security Summit
Join us at the Marriott Waikiki Beach Resort!
February 12-13 2019
Connecting with our neighbors, business partners, peers, other industries and governments is what allows us to get perspectives that would be otherwise missed. Since 2004, EnergySec has been focused on bringing together people and various organizations to help foster environments of learning. It is our hope and desire to leave each person we meet with at least one take away idea or thought that could potentially make a difference in making our critical infrastructures more secure and resilient.
- Featuring experts on critical infrastructure security and attendees from the U.S, Asia, and Australia.
- Featuring presentations by leading security professionals in critical infrastructure, detailing innovative ways to address security risks.
- Including interactive discussions about security challenges that exist when supporting mission critical technology.
- Designed for key security professionals representing organizations in Hawaii, the Western United States, Canada, South and Central America, Southeast Asia, Japan and New Zealand.
- Located at the beautiful Waikiki Beach, Honolulu, HI. Play in the surf at the tropical playground surrounding Waikiki Beach Marriott Resort & Spa.
Join us for the 2019 Pacific Rim Critical Infrastructure Security Summit!
Tue, Feb 12, 2019, 9:00 AM – Wed, Feb 13, 2019, 3:00 PM HST
Full Summit Pass
Full Summit Pass – Alumni*
*This pricing is only available to prior attendees of the Pacific Rim Summit. If you have previously attended but didn’t receive a code, please email us at firstname.lastname@example.org
Marriott Waikiki Beach Resort
Waikiki Beach Marriott Resort & Spa
2552 Kalakaua Avenue
Honolulu, HI 96815
*EnergySec does not have a hotel room block or discount rate for this event. For room reservation information for the venue visit:
Agenda subject to change
Day 1 – Tuesday, Feb. 12
- 8:00a – 9:00a
- 9:00a – 9:45a
“Critical Infrastructure: Mitigating today’s risk for tomorrow’s resilience”
Christine Riccardi | Regional Director, Region IX, Department of Homeland Security, Office of Infrastructure
- 9:45a – 10:30a
“Braving the Storm: Securing the ICS Firmware Supply Chain”
Eric Byres | CEO, aDolus Inc.
- 10:30a – 11:00a
- 11:00a – 11:30a
“Cyber Security Education in the Hawai’i “
Dave Stevens | IT Instructor, University of Hawai’i Kapi’olani Community College
- 11:30a – 12:00p
“Cybersecurity and Situational Awareness”
Jeff Foley | Senior Business Development Manager, Siemens Industry
- 12:00p – 1:00p
- 1:00p – 1:45p
“Evaluation and Deployment of Cybersecurity Network and Asset Monitoring in a Large Scale Electric Utility”
Katherine Brocklehurst | Senior Director, ICS Security, Claroty
- 1:45p – 2:30p
“Quantifying Cyber Resilience: A Metric-Based Methodology and Demonstrative Application to Energy Systems”
Dr. Meghan Galiardi and Dr. Shamina Hossain-McKenzie | Senior Member of the Technical Staff in Cyber Resilience R&D, Sandia National Laboratories
- 2:30p – 3:00p
- 3:00p – 4:00p
“Physical Security for Critical Infrastructure”
Richard Hyatt | Director of Security and Michael Wilson | Physical Security Analyst, Chelan County PUD.
- 4:00p – 5:30p
Evening Reception and Networking
Day 2 – Wednesday, Feb. 13
- 8:00a – 9:00a
- 9:00a – 10:00a
“Only as Complex as You Need: The Trends and Current State of Energy Sector Attack Tradecraft”
Joe Slowik | Adversary Hunter (Threat Intelligence), Drago’s Inc.
- 10:00a – 10:30a
“Why You Need Comprehensive Visibility – Holistic Security using Hybrid Collection Methods”
Robert Landavazo | ICS Engineer, Tripwire
- 10:30a – 11:00a
- 11:00a – 12:00p
“DHS Critical Infrastructure Overview – Sector Interdependencies”
L. Chris Shephard | Director of Information & Critical Infrastructure Security, Gannett Fleming, Inc.
- 12:00p – 1:00p
- 1:00p – 1:45p
“Machine Learning, Artificial Intelligence and other Scary Advanced Capabilities that could save critical infrastructure (or accelerate the collapse)”
Brian McKay | Senior Engineer, AECOM
- 1:45p – 2:30p
“Converged IT-Physical Security approach for Critical Infrastructure Protection”
Michael Gonzalez | Sr. Physical Security IT Systems Administrator, Hawaiian Electric (HECO)
Yogesh Ailawadi | Sr. Director, Product Management & Marketing, Alert Enterprise
- 2:30p – 3:00p
“Overview of Blockchain in Critical Infrastructure”
Steve Parker | President, EnergySec
Conference Ends – Mahalo!
Yogesh leads AlertEnterprise’s global product management team and brings over 15 years of experience in information security, identity and access governance across IT, Physical and OT systems. He has led global deployments of PIAM/IAM solutions for Fortune 100/500 customers across industries including oil & gas, utilities, finance, and aviation. Yogesh is well versed in industry regulatory standards such as NERC CIP, FERC, SOX and GDPR and is CISSP certified with a deep understanding of engineering concepts and technologies and their usage in the security domain.
Katherine Brocklehurst has over 20 years of cybersecurity technology experience and began focusing on industrial and critical infrastructure cybersecurity in 2013 with energy/electric utilities, oil & gas, and water management sectors. She was most recently the director of industrial cybersecurity at Tripwire and Belden where she was director of industrial cybersecurity and a specialist in NERC CIP compliance among other standards and frameworks. Prior to Tripwire, Katherine held roles at nCircle, IntruVert/McAfee, Network General, Nokia Internet Communications and RSA.
Eric Byres is widely recognized as one of the world’s leading experts in the field of industrial control system (ICS) and Industrial Internet of Things (IIoT) cybersecurity. He is the inventor of the Tofino Security technology – the most widely deployed ICS-specific firewall in the world – licensed by industry giants Honeywell, Schneider Electric, and Caterpillar. Eric’s many accomplishments include founding the BCIT Critical Infrastructure Security Centre, providing guidance to government security agencies and major energy companies on critical infrastructure protection, chairing the ISA SP-99 Security Technologies Working Group, representing Canada for the IEC TC65/WG10 standards effort, and testifying to the US Congress on the Security of Industrial Control Systems in National Critical Infrastructures. He has received numerous awards from international organizations and was made an ISA Fellow in 2009. In 2013 he received ISA’s highest honor: Excellence in Leadership.
Jeff joined Siemens in 1998 spending 13 years designing, architecting and deploying carrier grade IT networks for major telcos in North America focusing on networking, applications, and cyber security. The past 6 years have been spent specializing in bringing IT security and best practices into the OT environment for Industrial Control systems around Utilities, Oil & Gas and other industrial networks. In 2015 hosted a Cyber Security NERC CIP Roadshow in 12 locations across the U.S. helping utilities prepare for the transition from CIP v3 to CIP v5. Contributor to the National Cybersecurity Center of Excellence NIST SP 1800-7 Situational Awareness for Electric Utilities Practice Guide. In the past several years, spoken on Cyber Security on the OT Environment conferences in 10 countries regarding NERC CIP, NERC 1300, NIST, ISO 27001, National Council of Operations: Article #733, IEC 62443, 61850, and IEEE SmartGridComm.
Dr. Meghan Galiardi is a cybersecurity researcher at Sandia National Laboratories with a focus on developing mathematical foundations for cyber analyses. She received her PhD and Master’s degrees in mathematics from the University of Illinois at Urbana-Champaign in 2016 and 2013, respectively and a B.S. degree in both computer science and mathematics from Stonehill College in 2011. Her research interests include cyber resilience metrics, mathematical modeling, and algorithms development.
Michael Gonzalez is the Sr. Physical Security IT Systems Administrator at Hawaiian Electric Company, Inc. He plans, coordinates, installs, maintains, and optimizes the company’s physical security and surveillance systems, as well as provides training for operators and supervisors. Mike also independently manages compliance with physical security standards for critical infrastructure and recommends and facilitates the installation and programming of security countermeasures. He is also the system administrator for the company’s Identity and Access Management System. Prior to this role, Mike was a security supervisor in the Hawaiian Electric Security Division, responsible for the Security Operations Center. He has been working in the utility security industry since 2007 when he started as a security supervisor, then accepted various roles with increasing responsibility. Prior to working at HECO, Mike served in the United States Army as an infantryman during Operation Iraqi Freedom. Mike also served in the US Army Reserve as a military policeman. He was the recipient of the Security Systems News 20 Under 40 Award– End User Class of 2015. He completed his Masters in Organizational Management and Leadership, a Bachelors in Social and Criminal Justice, Security Management, and Organizational Management; and an Associate’s Degree in Electronics Engineering, all while serving as a security expert at Hawaiian Electric Company.
Dr. Shamina Hossain-McKenzie is a cybersecurity researcher at Sandia National Laboratories with a focus on power systems and cybersecurity. She received her electrical engineering PhD and Master’s degrees from University of Illinois at Urbana-Champaign in 2017 and 2014, respectively, and her B.S. degree from Washington State University in 2012. Her research interests include power system resilience, grid modeling and simulation, and DER cybersecurity.
Richard is the Director of Security for Chelan Public Utility District with a combined 32 years of multi-discipline security experience and is retired from the New York City Police Department. Board certified in both Security Management and Investigations from the American Society of Industrial Security, Richard obtained his Bachelor of Science degree for Information Technology from the University of Phoenix and is an Alumni of The Wharton School’s Security Executive Program. Richard has extensive experience in all aspects of physical security, threat assessment, crisis management, regulatory compliance, business continuity and critical infrastructure protection. In addition, Richard is a longstanding servant leader participating in the security industry as a volunteer for the ASIS Utilities Security Council and currently Chairs WECC’s Physical Security Work Group.
Robert Landavazo is an ICS Engineer at Tripwire where he focuses on helping customers secure their Industrial Control Systems. He has a background in in the electric utility sector, most recently working to implement a NERC Critical Infrastructure (CIP) internal compliance program leveraging Tripwire’s own product suite. While at this utility, Robert worked in Operations Technology to support SCADA in Distribution, Transmission and Generation. Prior to his tenure in utilities, Robert worked in Public Safety, managing emergency communications infrastructure like Next Generation 911, IP Radio and Computer Aided Dispatch systems.
Professional with 20 years of engineering project management, strategic planning, and operational integration of emergent capabilities. Brian has extensive expertise in critical infrastructure protection, cyber security and management of rapid innovation processes. He formerly worked with Xcel Energy to launch its Critical Infrastructure Protection Program and most recently has worked with the US Indo-Paciﬁc Command Innovation and Experimentation Division to lead the Rapid Capability Cell and develop and manage applications of machine learning for warﬁghting challenges. Brian has previously presented at EnergySec, regional utility cyber security forums, and the Hawaii International Conference on Systems Science.
Christy leads a 55 member regional cadre, responsible for the physical and cyber security, protection, and resilience of critical infrastructure in California, Nevada, Arizona, Hawaii, Guam, Commonwealth of the Northern Mariana Islands, and American Samoa. Christy’s staff provides expert advice on cybersecurity, information sharing and protection, data tools and technology, and infrastructure resilience. In this role, Christy leverages a long-standing expertise in public/private partnerships and information sharing to implement and execute security and emergency management programs across the region. Christy ensures strategic delivery of mitigation and preparedness programs for today’s evolving threat environment; addresses infrastructure resilience challenges and policy impacts through complex analysis; and applies risk management principles to infrastructure across all-hazards. Most recently, Christy has led cybersecurity and physical security outreach and operations in support of U.S. election infrastructure.
Christy previously served as the DHS Office of Infrastructure Protection’s Deputy Chief of Staff and provided advice, counsel and decision support to DHS executive leadership to shape the organization’s programs and resources, adapting them to the evolving cyber and physical infrastructure risk environment. In that role, Christy designed, planned and implemented the 2 year-initiative to evolve the entire suite of IP operations to a regional based, service delivery model. Christy has a Bachelor of Science in Computer Science from the University of Dayton and received her Master of Science in Computer Science from Johns Hopkins University. She is also a proud graduate of the Naval Postgraduate School for Homeland Defense and Security Studies.
Mr. Shepherd is the Director of Information & Critical Infrastructure Security for Gannett Fleming. He is responsible for providing information security, cyber security, and compliance consulting services to electric utility, transit, and water management clients in government, municipalities, and private sectors. He is directly involved in security engineering & design, security testing & evaluations, risk assessments, and vulnerability assessments for both enterprise-level IT systems and Supervisory Control and Data Acquisition (SCADA)/Industrial Control Systems (ICS). Over the last 30 years, Chris has managed client projects in the Banking and Energy Industries for operational upgrades, physical and cyber security retrofits, and federal compliance related projects (e.g. NERC CIP, FERC Hydroproject Security, FCC Narrow Banding, Sarbanes-Oxley, State of Wyoming Public Utility Vulnerability Assessment). He has conducted cyber, physical, and information security audits to insure compliance with best practice and regulatory security standards.
Mr. Shepherd is serving his second term as a Committee Member of the NERC Reliability Issues Steering Committee (RISC) which reports directly to the NERC Board of Trustees. This committee evaluates and make recommendations on risks to the electricity industry. Chris has worked on Task Force teams to co-author several NERC electric industry guidelines and currently is a member on the NERC Cyber Security – CIP Guidelines and Technical Basis Review team.
Joe Slowik currently hunts ICS adversaries for Dragos, pursuing threat activity groups through their malware, their communications, and any other observables available. Prior to his time at Dragos, Joe ran the Incident Response team at Los Alamos National Laboratory, and served as an Information Warfare Officer in the US Navy. Throughout his career in network defense, Joe has consistently worked to ‘take the fight to the adversary’ by applying forward-looking, active defense measures to constantly keep threat actors off balance.
Dave Stevens is an IT Instructor at the University of Hawai’i Kapi’olani Community College on O’ahu and his teaching focus is Network Security and Ethical Hacking. He is the faculty advisor for the Hawai’i Advanced Technology Society (HATS) Kapi’olani CC Chapter and helps his students perform penetration testing, vulnerability analysis, and cyber awareness training for local companies. Dave also hosts The Cyber Underground, every Friday at 1pm
on ThinkTechHawaii.com. A show dedicated to engaging the public to increase knowledge and understanding of Information Technology Security. He earned his undergraduate degree at Cal. St. Univ., Northridge and his MSIS from Hawai’i Pacific University. He is a Certified Information System Security Professional (CISSP) and a Project Management Professional (PMP).
Michael serves as the Senior Physical Security Analyst for Chelan County Public Utility District, where he brings over 14 years of experience in Physical Security, with a strong background in Security Systems theory, design and implementation. He currently oversees the daily operations of the Security Department consisting of core employees and contracted security officers responsible for the protection and safeguarding of Critical Infrastructure and the Utility’s most critical assets, its people.
Michael acts as a trusted advisor to executives and cross-functional business partners on various matters, including; Regulatory Compliance, Security threat and risk methodologies, crisis management, business continuity, physical security systems, internal and external investigations, workplace violence and intelligence gathering, analysis and assessment. He actively serves on the National ASIS Utilities Security Council and the Western Electricity Coordinating Council’s Physical Security Working Group. Michael has proudly volunteered as an EMT and first responder for the last ten years in his organization and community. He is an Alumnus of the Wharton School’s Security Executive Program and Board certified from the American Society of Industrial Security as a Certified Protection Professional (CPP), Physical Security Profession (PSP) and Professional Certified Investigator (PCI).