5th Annual Industrial Control Cyber Security Europe Summit. London Marriott Hotel Regents Park London, England | October 9/10th 2018IOT/OT Security, Threat Detection and Mitigating the Impact on Safety CasesSectors Represented include Smart Grid, Nuclear, Oil and Gas, Rail, Maritime, Aviation, Chemical and more to be announced!
Back To Schedule
Wednesday, October 10 • 3:40pm - 4:45pm
Working Group Break-out Sessions

Log in to save this to your schedule, view media, leave feedback and see who's attending!

How can Asset Owners Transform their Mindset to Become Security Focused?
- To what extent is security an afterthought to operational availability?
- Does security interfere or compete with operations?
- The importance of a holistic understanding of security at different organisational levels
-  What are the steps that can be taken to make meaningful progress towards adopting a security minded approach?
- How will security impact work practices, user behavior, and user attitudes?
Why Configuration Management Strategy is Essential to Security
- Secure out of the box is a myth
- Understanding that user capability is essential to security and acting accordingly
- What essential steps need to be taken to effectively manage accounts, administrators and patching to ensure our systems are secure
- How much configuration is necessary to customize security features for a site?
- How does the asset owner know what needs to be configured and what values are necessary?
Implementing Security Standards within the Constraints of an Operational Technology Environment - Where Should we start?
-        What are the main areas of incompatibility in operational technology with cyber security standards?
-        How can we take a risk-based approach to knowing when prioritise operational capability over security?
-        What backstops are appropriate where traditional IT security tools are not fit for purpose?
-        How do we then provide adequate assurance and certificate?
Are we on the right trajectory to develop a framework for secure and efficient ICS technology?
- What is the current state of ICS security and what are the fundamental challenges we face in the immediate and near-term future?
- How well are we developing standards that govern the balance of interoperability and diversity required of ICS technology to achieve operational excellence and security?
- Where should we draw the lines between transparency and privacy to optimise our resilience to risk?
- What steps do we need to take to defend the future?
What measures need to be taken to address the inadequacy of the resource stream at entry and mid-career level?
- What is currently in place to incentivize relevant skills development?
- Where are we lacking the necessary infrastructure to develop short, medium and long-term skills development in both the public and private sectors?
- What does a fit for purpose training and development standard look like?
- What objectives should be set and how can we sell the benefits of new initiatives?
What needs to be prioritised to move towards more effective collection, processing and escalation of information on threats?
- How well defined is the threshold at which private sector threat information should be escalated to government authorities, and can we agree first on what should and must be shared?
- How does GDPR influence our ability to effectively process and communicate information on an incident?
- What do the mechanics of an effective information sharing infrastructure look like?
- To what extent do we have the national and transnational infrastructure in place to facilitate effective conversations?
How can the public sector better support a defined supply chain risk management strategy?
- What standards are currently available to define configuration management requirements across the supply chain?
- Do we need further regulation to attribute accountability, or can the market successfully self-regulate?
- What are the key points we need to address to reach agreement between public and private entities on a functional process to address supply chain risk?
- How do we move forward with measures to better facilitate supply chain management in partnership?

avatar for Eyal Adar

Eyal Adar

IEC Expert, IEC / Advisor to McKinsey & Company
Eyal Adar is an IT/OT cybersecurity specialist. With a strong record of 30+ year of integrating: strategic and technical consulting, research, solution development and International Standardization.·        Eyal is a member of IEC (International Electrotechnical Commission) CAB... Read More →
avatar for Marty Edwards

Marty Edwards

Director of Strategic Initiatives, International Society of Automation (ISA)
Marty Edwards is a globally recognized industrial automation and control systems (IACS) cybersecurity expert who collaborates with industry, government, and academia to raise awareness of the growing risks of industrial cybersecurity incidents and the need to take steps to mitigate... Read More →
avatar for Didier Giarratano

Didier Giarratano

IEC Expert, IEC
avatar for David Hanlon

David Hanlon

Secretary of the IEC Conformity Assessment Board, IEC
In his current role as Secretary of the IEC Conformity Assessment Board, based in Geneva Switzerland, David liaises with many international organizations and presents at international events on various topics including cybersecurity. David holds a Bachelor in Electrical Engineering from... Read More →
avatar for Andre Ristaino

Andre Ristaino

Managing Director, ISCI
Andre Ristaino is the Managing Director of the ISA Automation Standards Compliance Institute (ASCI) based in Research Triangle Park, N.C. He provides staff leadership for ISA’s conformance certification programs, including the ISASecure IACS certification program managed under the... Read More →
avatar for Tim Roxey

Tim Roxey

Chief Security Officer (Interim) and Chief Special Operations Officer, NERC
Tim Roxey is presently the Chief Cyber Security Officer for the North American Electric Reliability Corporation (NERC).Previously Mr. Roxey was the Deputy Chair for the Nuclear Sector Coordinating Council and also the Technical Assistant to the Vice Chair for Constellation Energy.Mr... Read More →

Wednesday October 10, 2018 3:40pm - 4:45pm BST