Join us Wednesday July 17th from 1-2:30pm ET for a panel discussion where industry experts investigate the possible sources and application of the knowledge needed to secure critical infrastructure.
Questions the panel will ponder include:
- Is it the public or private sectors who have the most or best knowledge?
- How can asset owners effectively use knowledge shared with them?
- What can vendors do to enable knowledge sharing?
Facilitated by Industrial Control System Information Sharing and Analysis Center (ICS-ISAC) Chair Chris Blask this panel includes: Zach Dexter Founder of Databracket, Dwayne Melancon CTO at Tripwire, and Steven Parker President of EnergySec.
“When it comes to information sharing, from an internal perspective getting the data is only half the battle,” said Melancon.
“Security professionals then need to have a repeatable process to analyze the incoming threat data, determine how it impacts their organizations, and develop an action plan. Sharing methods for streamlining this analysis is crucial, and tying it into a robust architecture for information security has become paramount in today’s threat environment.”
The Situational Awareness Reference Architecture (SARA) which the ICS-ISAC is developing in partnership with its membership will provide a backdrop to the conversation.
Designed to benefit both the technical & non-technical attendee, the ICS-ISAC Public Briefing series takes a no-nonsense approach to addressing issues that cut across industry, sector, and job function.
“There is a lot of effort these days to facilitate knowledge-sharing among organizations, between public & private entities, and so forth,” Melancon said.
“One of the challenges is knowing just how to go about sharing — intention is not sufficient. We need persistent mechanisms and communication paths to create successful information sharing. ICS-ISAC is front-and-center in bringing things together to drive better community and stronger practices for information sharing.”
So whether you are hands-on ICS, administrator, or C-level decision-maker you will find valuable information that you can take and implement to further secure your industrial control systems.
Wednesday July 17th, 2013 – 1:00-2:30pm ET
Register Here for this Event
About the Panelists:
Zach Dexter is Founder of Databracket an innovative software solutions developer with global clientele. From their corporate headquarters in North Carolina’s Research Triangle area Databracket has unparalleled access to highly skilled science and engineering talent and have used this advantage to develop a broad organizational background in computer security, software engineering and project management.
Databracket can rapidly develop and deliver secure, easy-to-maintain systems by using rapid prototyping and iterative development to quickly create cloud-based software services for e-commerce, distributed messaging and general business applications such as billing.
* * *
Dwayne Melancon (@ThatDwayne) is Tripwire Inc‘s Chief Technology Officer, where he owns a critical role in driving and evangelizing the company’s global overall product strategy. He brings over 25 years of security software experience and is responsible for leading the company’s long term product strategy to meet the evolving data security needs of global enterprises. Since joining Tripwire in 2000 he has spearheaded numerous initiatives including executive responsibility for business development, professional services and support, information systems and marketing. Prior to joining Tripwire, Dwayne held leadership roles at DirectWeb, Inc., Symantec Corporation and Fifth Generation Systems, Inc. He is certified on both IT management and audit processes, holding both ITIL and CISA certifications, and is a frequent speaker at national and regional industry events.
Tripwire’s powerful IT security and compliance automation solutions help businesses and government agencies take control of their IT infrastructure. Headquartered in Portland, Oregon Tripwire’s outstanding leadership has earned the company a global presence with operations in 15 countries as well as a reputation for best-of-class products.
* * *
Tripwire supports customer efforts to secure their critical data and IT infrastructure while meeting rigorous business demands such as compliance and system availability by identifying the most complete solution available given the customer’s unique physical, virtual and outsourced infrastructure.
Steven Parker, CISA, CISSP, is the President of the Energy Sector Security Consortium (EnergySec). He was part of the grassroots effort that led to the formation of EnergySec and has served on its board of directors since 2008. Steven’s experience includes more than a decade of full-time security work at critical infrastructure organizations including the Western Electricity Coordinating Council, PacifiCorp, and US Bank. He has contributed to a broad range of security projects covering areas such as e-commerce, identity management, intrusion detection, forensics, and security event monitoring.
The foundation of EnergySec was established over a decade ago as relationships formed among a group of information security, physical security, disaster recovery and business continuity professionals from energy organizations in the Pacific Northwest. Initially, the small group met for lunch to discuss the security challenges they were all facing. The idea was simple: share common security practices for the purpose of learning from each other. From these simple beginnings the organization has grown to nearly 1,500 members with over 470 organizations participating in EnergySec programs.
EnergySec was tapped by Department of Energy in 2010 to build the National Electric Sector Cybersecurity Organization (NESCO) a public-private partnership focused on security related information sharing in the electric sector. The development of the NESCO virtual information sharing organization remains a key focus of EnergySec as it continues to develop programs and other efforts to meet the needs of the energy sector into the future.
Chris Blask has a career that spans the breadth of the industrial control system cybersecurity space. From humble beginnings as a control system engineer he soon saw the need for and invented one of the first commercial firewall products. Joining Cisco Systems he then led their firewall business to a position of global leadership, a legacy that continues to this day. Recognizing the need to apply Security Information and Event Management (SIEM) technology to ICS cybersecurity he founded Lofty Perch, authored the first book on SIEM, and created AlienVault’s ICS Group.
Today, Mr. Blask is actively involved with a wide range of domestic and international efforts. He is Founder and CEO of ICS Cybersecurity, Inc.; Chair of the Industrial Control System Information Sharing and Analysis Center (ICS-ISAC); Chief Architect for NorthWind Technologies in Doha, Qatar; and is advisor to Itex Solutions in Sana’a, Yemen and to Targetproof in Atlanta, Georgia (USA).
The Industrial Control System Information Sharing and Analysis Center (ICS-ISAC) exists to bring together the private sector partners and stakeholders for the purpose of sharing knowledge about risks, threats and best practices across our shared critical infrastructure. The Center was created to provide the ICS community with a common platform where collaboration can be performed in an environment best suited to the needs of all involved parties.
A member driven organization, the ICS-ISAC is supported by valued industry partners including Red Tiger Security, Dynetics, Texas PUC, IBM, Management Analytics, McAfee, n-Dimension, Yokogawa, GDS Transnational, SISCO, and Waterfall Security. Interested organizations, researchers, vendors, and asset owners can become a part of the Industrial Control System Information Sharing and Analysis Center at http://ics-isac.org.
- NERC CIP Version 5: One Giant Leap
- The Evolution of Industrial Control System Information Sharing
- NERC CIP: It Gets Worse Before it Gets Better
- Introducing the Complete NERC Solution Suite
P.S. Have you met John Powers, supernatural CISO?
Title image courtesy of ShutterStock