Against a backdrop of continued cyber threats such as Stuxnet, Dragonfly and Black Energy, the Cyber Senate return for the 4th Annual Industrial Control Cybersecurity USA Summit to bring key stakeholders together to address our responsibility in ensuring the safety, reliability and stability of our Critical National Infrastructure.
The security threats to U.S. critical infrastructure span the digital divide. Resent attacks, like those in the Ukraine, blend the cyber and physical environment to cause confusion within and damage to the production environment. Modern cyber defense requires sophisticated operational tactics and strategies. Although, cyber hygiene is essential for fending off the daily barrage of lower level threats that can impair an organization’s performance, few companies are prepared for a targeted attack on their core operational processes from an advanced adversary.
If it can be programmed, it can be hacked. This daunting reality facing our interconnected and digital environments has been described as a battle to be won every day by cybersecurity professionals.
Control systems present unprecedented challenges as they are transitioned to a modern architecture based on digital control systems and increasingly wireless communications systems. This transition creates a paradox – more efficient, effective operation, but dramatically increased vulnerabilities and attack surfaces.
INL’s unparalleled capabilities in nuclear nonproliferation and cybersecurity are fundamentally changing how the nation and world approach complex threats to nuclear assets, energy systems and cyber-physical systems.
• Internationally recognized nonproliferation experts with real-world experience in nuclear facility inspection, physical protection, modeling and simulation, material science, physics and engineering.
• Comprehensive instrumentation and control, cyber and nuclear nonproliferation capabilities with similar nuclear infrastructure and examination equipment found worldwide.
• INL’s full-scale infrastructure includes; isolated, industry scale power grid, water and telecommunication distribution systems to provide an expansive and unique test site that can replicate critical services across a region or municipality.
• Inclusive nuclear security approach that allows for field and laboratory technology evaluation.
• Replication of typical control system network for architecture reviews and system hygiene to support asset owners in securing their systems.
• Protocol analysis, reverse engineering and cybersecurity forensics to advance persistent threat mitigations for the nuclear industry.
• Cyber-informed risk methods and unique engineering methodologies and tools designed to anticipate cyber and physical security risk, and inform investment strategies.
• Frameworks for prioritization of investments and threat indicators to inform and advanced security profile for high-consequence operations.
Safeguarding critical infrastructure including the power grid, nuclear materials and facilities is inextricably linked to the cybersecurity of the command and control environment.
These environments are complicated by instrumentation and controls that are continuously connected with information technology and wireless communications.
An integrated cyber physical security approach is essential to address the resiliency of the power and nuclear installations and continuity of operations.
INL’s world-leading cyber and industrial control systems security experts are changing the way the nation and the world meet the unique security demands of operational environments.
As Operational Technology (OT) environments become increasingly interconnected and smarter, organizations face significant digital transformation challenges. The business demand for the raw data and information produced by OT systems is growing exponentially both from an internal and external perspective. As the demand for data increases, so has the volume of cyber-attacks specifically aimed at OT system. Cyber-attacks are becoming more advanced and have the potential to impact a number of aspects of a company’s business including safety, health and environment, production operations, information integrity, financial performance and reputation.
For a company looking to harden their OT environment, identifying where to begin can often be a confusing and difficult process. Before embarking on an OT hardening project, for example by either implementing costly technical solutions or introducing new OT specific policies and procedures, leaders need take a step back and ask themselves if they understand, or have thought about, the “BASICs” of OT.
In this session, Leidos Cyber Expert, Scott Keenan, will explain Leidos’ view of OT “BASICS” which provides organizations with the foundation necessary to build a OT hardening project.
This September in London and October in Sacramento, we learn from Honeywell why USB devices are still the #1 source of malware in ICS. This discussion will help you understand how USB devices can pose a threat even without malware, including:
o Surprisingly effective HID attacks
o More advanced threats posed by rogue network devices, serial adapters and more
Participants in London and Sacramento will see real examples of the impact these attacks can pose to ICS, plus Eric Knapp, Global Director of Cyber Security Solutions and Chief Cyber Security Engineer for Honeywell Process Solutions asks “Are these really advanced? Do you even have to worry about this?”
This year all critical national infrastructure are invited to join both shows free as an initiative to further cyber resilience in both public and private domains!
Contact Daryl Fig for your free guest pass for your team at email@example.com
4th Annual Industrial Control Cyber Security Europe
Millennium Gloucester Hotel
London United Kingdom
Headline Sponsors Leidos
Co Sponsors Honeywell
Associate Sponsor Verve Industrial Protection
Associate Sponsor Airbus
Network and share best practice with leaders from Nuclear, Water, Oil and Gas, Chemical, Automotive and Smart Grid sectors
4th Annual Industrial Control Cyber Security USA Summit
The Sutter Club
Further events you won’t want to miss from the Cyber Senate:
European Rail Cyber Security Working Group, September 11/12th London
Aviation Cyber Security Summit, November 21/22 London United Kingdom
Warrington chosen to host international nuclear conference
2nd annual Industrial Control Cybersecurity Nuclear Summit to take place in Birchwood
Warrington is set to host the second annual Industrial Control Cybersecurity Nuclear Summit on 22nd – 24th May 2017.
Taking place at The Centre, Birchwood Park, the two-day conference will cover pressing cyber security challenges in the nuclear industry, including managing supply chains, preparing for the Internet of Things (IoT) and what public/private partnerships could mean for the sector.
The event, which is aimed at an international audience, will be structured around presentations and debate from some of the world’s leading cyber security experts and authorities in nuclear security.
Past presenters have included the IAEA, ONR, NDA, BEIS, Engie, Lockheed Martin, Airbus, Horizon Nuclear, EDF and Honeywell.
Discussing the conference, event organiser James Nesbitt, Founder of the Cyber Senate said: “The security landscape is changing and the way we protect the safety, reliability and stability of our critical nuclear infrastructure must change with it.
“This event will address several key areas such as how to reduce vulnerability, detect threats and how IT and operational technology can work in synergy to defend nuclear assets. It will also cover wider issues in the industry, such as the growing skills gap. We’ve brought together an impressive range of world experts on these topics who will be sharing best practice and providing insight as to what the future may hold for this sector.”
“Warrington is home to a number of organisations in the nuclear industry, including Sellafield Ltd, AMEC Nuclear, NNL and Rolls Royce Nuclear, so holding the conference here felt like a natural step. These are big issues that affect not just the security of businesses, but of whole nations and events like these are an important way to share best practice and plan for the future.”
For more information, visit: https://www.industrialcontrolsecuritynuclear.com/