This is part two of the RSAC 365 Virtual Seminar: OT & ICS Security which took place on September 8, 2022.
Lightning Talk: Cyber and ZTA for Critical Infrastructure
Many have known for some time that cyber securing our critical infrastructure is important. This 7-minute lightening talk will discuss perspectives on progress so far and recognize that cyber security is a stepping stone to what is really desired: cyber resiliency. We’ll describe approaches for moving critical towards cyber-resilient infrastructure.
Session 2: Protecting Information and System Integrity in Industrial Control System Environments
Attendees will be introduced to the newly published NIST SP 1800-10 Protecting Information and System Integrity in Industrial Control System Environments: Cybersecurity for the Manufacturing Sector and related resources.
Session 3: Uniquely ICS: Applying the MITRE ATT&CK Matrix
ICS technologies are at the foundation of our nation’s critical infrastructure and are increasingly the target of sophisticated cyber threats. To help track and understand these threats, in early 2020 MITRE ATT&CK released a new matrix within ATT&CK focused on Industrial Control Systems (ICS). This talk will discuss ATT&CK as a whole, what makes ICS unique, and some of the use cases for the knowledge base.
Session 4: Lessons Learned from Incident Response in OT/ICS Environments
Cyber incidents in OT/ICS environments can be opportunistic, copying or modifying known attack paths to disrupt operations. They can also be highly sophisticated, going undetected, targeting centralized command and control of technologies, hijacking native functionality in process equipment, and masquerading as legitimate activity. This session will cover what’s changed in the last year, common cybersecurity denominators across sectors, and lessons learned for incident response across the industry, with caveats for essential partnerships to secure purpose-built OT and ICS environments.
View more details regarding this Virtual Seminar here.