RSAC 365 Virtual Seminar & Innovation Showcase: OT & ICS Security
OT & ICS Security: Strategies for Securing Critical Infrastructure
Protecting critical infrastructure has become a national priority, and it’s an endeavor that requires collaboration, partnership, and trust. Join us for this RSAC 365 Half Day Virtual Seminar and hear from thought leaders across industries and sectors who will share challenges and lessons learned as we navigate a path forward together.
The first and last sessions will be followed by a 20-25 minute Q&A.
Session 1: Panel: OT Security Management 101
Building a defensive environment is key to defending critical infrastructure. While OT systems play a critical role in protecting critical infrastructure, these environments are designed to interact with machines. The convergence of IT/OT continues to be a challenge because cyberthreats are evolving while skillsets remain siloed. How do we get IT and OT to work together? How do we build? How do we train? This panel of industry CISOs and leaders will share their experiences and offer actionable steps to mitigate risks and better secure OT environments.
Moderator: Dawn Cappelli
Panelists: Nicole Darden Ford, Chris Leigh, Dr. Phyllis Schneck, Jennifer Lyn Walker
Lightning Talk: Cyber and ZTA for Critical Infrastructure
Many have known for some time that cyber securing our critical infrastructure is important. This 7-minute lightening talk will discuss perspectives on progress so far and recognize that cyber security is a stepping stone to what is really desired: cyber resiliency. We’ll describe approaches for moving critical towards cyber-resilient infrastructure.
Presenter: Jeffrey Gottschalk
Session 2: Protecting Information and System Integrity in Industrial Control System Environments
Attendees will be introduced to the newly published NIST SP 1800-10 Protecting Information and System Integrity in Industrial Control System Environments: Cybersecurity for the Manufacturing Sector and related resources.
Presenters: Michael Pease, Michael Powell, John Hoyt
Session 3: Uniquely ICS: Applying the MITRE ATT&CK Matrix
ICS technologies are at the foundation of our nation’s critical infrastructure and are increasingly the target of sophisticated cyber threats. To help track and understand these threats, in early 2020 MITRE ATT&CK released a new matrix within ATT&CK focused on Industrial Control Systems (ICS). This talk will discuss ATT&CK as a whole, what makes ICS unique, and some of the use cases for the knowledge base.
Presenter: Jake Steele
Session 4: Lessons Learned from Incident Response in OT/ICS Environments
Cyber incidents in OT/ICS environments can be opportunistic, copying or modifying known attack paths to disrupt operations. They can also be highly sophisticated, going undetected, targeting centralized command and control of technologies, hijacking native functionality in process equipment, and masquerading as legitimate activity. This session will cover what’s changed in the last year, common cybersecurity denominators across sectors, and lessons learned for incident response across the industry, with caveats for essential partnerships to secure purpose-built OT and ICS environments.
Presenter: Danielle Jablanski
Join us after the RSAC 365 Virtual Seminar for our Innovation Showcase–in partnership with AllegisCyber.
Attacks on OT/ICS systems are increasing and the stakes have never been higher. An expert panel of practitioners, investors, and analysts will give an inside look into the industrial cybersecurity threat landscape and the challenges to securing our nation’s critical infrastructure. The panel will discuss:
- Why unique OT environments can’t be secured with traditional IT approaches
- The drivers behind the increase to OT-specific attack vectors
- The disruptive technologies driving investments during a down market
- Where the government is in all of this
The panel will then hear from two emerging companies that are innovating in the OT/ICS space:
Hosted in partnership with:
RSAC 365 Innovation Showcase Media Sponsor:
Director of OT-CERT, Dragos
VP of Global Security and CISO, Rockwell Automation
Assistant Head of Cyber Security and Information Sciences Division, MIT Lincoln Laboratory
Lead Cybersecurity Engineer, MITRE Corporation
OT Cybersecurity Strategist, Nozomi Networks
Director and Chief of Information Security Officer, Eversource Energy
Mechanical Engineer, Smart Connected Systems Division, NIST
Cybersecurity Engineer, NIST National Cybersecurity Center of Excellence
Vice President & Chief Information Security Officer, Northrop Grumman
Senior Cybersecurity Engineer, MITRE's Cyber Infrastructure Protection Innovation Center (CIPIC)
Director of Infrastructure Cyber Defense, WaterISAC