Attending this event?
5th Annual Industrial Control Cyber Security Europe Summit. London Marriott Hotel Regents Park London, England | October 9/10th 2018IOT/OT Security, Threat Detection and Mitigating the Impact on Safety CasesSectors Represented include Smart Grid, Nuclear, Oil and Gas, Rail, Maritime, Aviation, Chemical and more to be announced!
View analytic
Wednesday, October 10 • 3:40pm - 4:45pm
Working Group Break-out Sessions

Log in to save this to your schedule and see who's attending!

How can Asset Owners Transform their Mindset to Become Security Focused?
- To what extent is security an afterthought to operational availability? Lee: does security interfere or compete with operations
- The importance of a holistic understanding of security at different organisational levels
-  What are the steps that can be taken to make meaningful progress towards adopting a security minded approach?
- How will security impact work practices, user behavior, and user attitudes?
Why Configuration Management Strategy is Essential to Security
- Secure out of the box is a myth
- Understanding that user capability is essential to security and acting accordingly
- What essential steps need to be taken to effectively manage accounts, administrators and patching to ensure our systems are secure
- How much configuration is necessary to customize security features for a site?
- How does the asset owner know what needs to be configured and what values are necessary?
Are we on the right trajectory to develop a framework for secure and efficient ICS technology?
- What is the current state of ICS security and what are the fundamental challenges we face in the immediate and near-term future?
- How well are we developing standards that govern the balance of interoperability and diversity required of ICS technology to achieve operational excellence and security?
- Where should we draw the lines between transparency and privacy to optimise our resilience to risk?
- What steps do we need to take to defend the future?
What measures need to be taken to address the inadequacy of the resource stream at entry and mid-career level?
- What is currently in place to incentivize relevant skills development?
- Where are we lacking the necessary infrastructure to develop short, medium and long-term skills development in both the public and private sectors?
- What does a fit for purpose training and development standard look like?
- What objectives should be set and how can we sell the benefits of new initiatives?
What needs to be prioritised to move towards more effective collection, processing and escalation of information on threats?
- How well defined is the threshold at which private sector threat information should be escalated to government authorities, and can we agree first on what should and must be shared?
- How does GDPR influence our ability to effectively process and communicate information on an incident?
- What do the mechanics of an effective information sharing infrastructure look like?
- To what extent do we have the national and transnational infrastructure in place to facilitate effective conversations?
How can the public sector better support a defined supply chain risk management strategy?
- What standards are currently available to define configuration management requirements across the supply chain?
- Do we need further regulation to attribute accountability, or can the market successfully self-regulate?
- What are the key points we need to address to reach agreement between public and private entities on a functional process to address supply chain risk?
- How do we move forward with measures to better facilitate supply chain management in partnership?

avatar for Marty Edwards

Marty Edwards

Managing Director. Former Director of the U.S. Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team, Automation Federation
Marty Edwards, a globally recognized industrial control systems cybersecurity expert and speaker, serves as Managing Director of the Automation Federation. (www.automationfederation.org) The Automation Federation—an association of non-profit member organizations—is dedicated to... Read More →
avatar for Andre Ristaino

Andre Ristaino

Managing Director, ISA Security Compliance Institute
Andre Ristaino is managing director of the ISA Automation Standards Compliance Institute (ASCI) based in Research Triangle Park, N.C. He provides staff leadership for ISA’s conformance certification programs, including the ISASecure IACS certification program managed under the ISCI... Read More →
avatar for Tim Roxey

Tim Roxey

Chief Security Officer (Interim) and Chief Special Operations Officer, NERC
Tim Roxey is presently the Chief Cyber Security Officer for the North American Electric Reliability Corporation (NERC).Previously Mr. Roxey was the Deputy Chair for the Nuclear Sector Coordinating Council and also the Technical Assistant to the Vice Chair for Constellation Energy.Mr... Read More →

Wednesday October 10, 2018 3:40pm - 4:45pm

Twitter Feed