Take Back Your Network
March 7, 2018
10:00 AM PST
The common lament in the OT space is that cybersecurity is difficult. Too much hype around ‘Silver Bullet’ technologies and far too much resistance to change, technology and automation in OT networks leaves many simply scratching their heads and not doing much. The reality is there is no silver bullet. That doesn’t mean, however, that cybersecurity in OT is impossible. In fact 3 fundamental functions, tied together, can dramatically increase the speed, accuracy and efficiency of any ICS cybersecurity program.
First collect your data – there is a lot of it out there. From the systems themselves, from ancillary databases and from your people (tribal knowledge). Pull it all in – the more the merrier. Second, solidify your foundation. Baselines, patches, backups, redundancy – all are hallmarks of a robust security program and are much easier to create and maintain than many would lead you to believe. Third – monitor and maintain. You need to invest in this phase of all of your efforts go to waste.
Seems too simple? Join us for a look at how a powerful OT platform can pull together otherwise seemingly disparate data sources and weave them together into a single, asset based view into a multi-dimensional, multi-disciplinary monitoring and remediation tool.
Our presentation will walk the audience through the ingestion of data, the correlation of asset characteristics and, finally, the presentation of information that has proven invaluable to many clients in the areas of compliance, situational awareness and incident response. From a single portal.
Rick Kaun | VP Solutions, Verve Industrial Protection
Steve Parker | President, EnergySec
Rick has over 14 years in IT and security during which he has provided varying levels of consulting projects to a wide range of clients in multiple industries including oil and gas, refining, mining, power, pulp and paper as well a handful of discrete manufacturing industries. As the former chair for the NPRA cyber security committee or as a contributing member to the Control System Security Working Group Rick always approaches any engagement with an eye towards building a scalable, cost effective and manageable solution. And because security is a program that requires constant attention, collaboration and innovation, Rick is a strong believer in the need for co-operation, creative thinking and a consistent focus in order to drive results.
Steven Parker, CISA, CISSP, is a founding director of EnergySec. He has been engaged in critical infrastructure protection within the electric sector for more than 14 years, including eight years as a senior security staff member at a large west coast utility. He was also one of the original NERC CIP auditors for the WECC region. He has been with EnergySec full-time since 2010.