Sensible Control Systems Cyber Security
This presentation shares information and research regarding technical solutions that secure industrial control systems. The presentation explores the use and efficacy of firewalls, virtual private networks, authentication proxy services, and application whitelisting as well as other methods to secure a control systems. The presentation shares how these methods provide a means mitigate advanced persistent threats (APTs), such as found in Stuxnet.
The presenter explores areas that are able to improve overall automation system robustness including safety, reliability, and security. For example the presentation looks at inclusion of configuration and change control at the intelligent electronic device layer and how this addresses security and operational considerations for various industrial segments such as power, oil, gas, and water.
Admission Fee (collected at door):
»»IEEE Members $10
»»IEEE Non-members $15
»»Full Time Students Free
Professional Development: This presentation qualifies for Professional Development credit.
Public Event: This event is open to the public, both IEEE members and non-members are welcome.
Date and Time
Location
Hosts
Registration
-
Add Event to Calendar
- 110 – 12 Ave SW, Calgary, AB
- Calgary, Alberta
- Canada T2P 2M1
- Building: TransAlta Building, Atrium 1
- Room Number: Events Center B & C
- Click here for Map
- Contact Event Host
- Co-sponsored by Matt Eskandar
- Starts 19 June 2014 03:00 PM UTC
- Ends 12 September 2014 03:00 AM UTC
- Admission fee
- Menu: Regular, Vegetarian
Speakers
Dwight Anderson of Schweitzer Engineering Laboratories, Inc.
Sensible Control Systems Cyber Security
Biography:
Dwight Anderson is an electrical engineer graduated from Steven’s Institute of Technology, Hoboken, New Jersey, USA.
Dwight also holds an AAS Electrical Engineering Technologies degree from Middlesex County College, Edison, New Jersey, USA.
Dwight is presently working as a Control Systems security expert at Schweitzer Engineering Laboratories, Inc .
Pullman, Washington, He provides cybersecurity services for customers in order to increase their compliance to cybersecurity regulations (such as NIST and NERC CIP). He attends and co-leads NERC CIP training conferences along with DHS training regarding the approaches hackers might take to exploit critical infrastructure control systems.
Dwight worked for Agilent Technologies/Hewlett-Packard Loveland, Colorado, from 1997–2003 as business development manager. During this period, Dwight managed a small team to design and create a submarine antenna switching system, generating a five year business opportunity with the U.S. Navy, Australian Navy, as well as the Royal British Navy. The design passed Mil-Spec-461 (EMI and RFI) and Mil-Spec-901 (mechanical shock). Dwight also managed a small team to design an avionics test system for use onboard U.S. aircraft carriers.
Dwight is quite active in various industrial and government organizations addressing control systems cyber security issues. The following are only some of the control systems security activities that he has been involved in:
US Dept. Of Homeland Security CERT – Operational Security (OPSEC) for Control Systems - 2014
US Dept. Of Homeland Security CERT - Cybersecurity for Industrial Control Systems - 2014
Defcon – 2012
ISSA Palouse Chapter, communications director, 2009.
Chem. ITC Cyber Security Team, co-chair, 2009.
DHS – Control Systems Cybersecurity Advanced Training (Red Team vs Blue Team), 2008
(ISC) 2 CISSP, 2007.
SANS GIAC GSEC Security Boot Camp, 2007.
Agenda
»» 6:00 Introduction
»» 6:15 Presentation
»» 7:00 Break and a Quick Snack
»» 7:30 Presentation Resumes
»» 8:15 Q&A
»» 8:30 Networking
»» 9:00 Doors close
This presentation qualifies for Professional Development credit. This event is open to the public, both IEEE members and non-members are welcome.