How To Understand And Understand Cyber Security
|
|
- Bertram Cobb
- 3 years ago
- Views:
Transcription
1 Special Sessions on Cybersecurity Research for Critical Infrastructure Thursday, February 12, 2015 In Oceans 12 Session 1, 8:30 10:00, Oceans 12 Michael Siegel Principal Research Scientist, and Associate Director MIT (IC)3 Qi Van Elkema Hommes Lecturer and Research Affiliate MIT (IC)3 and Engineering Systems Division Industry Panel Moderator: Sid Snitkin New Cyber Security Approaches for ICS/IIoT Resilience and Cyber safety Advancing Cyber Security Using System Dynamics Simulation Modeling for System Resilience, Patching, and Software Development Cyber Safety: A Systems Thinking and Systems Theory Approach to Managing Cyber Security Applied to TJX Case and Stuxnet Panelists: Ibrahim Hamadi, Dolphin Energy William Cotter, 3M Eric Cosman, ARC Advisory Group (Dow Retired) 1
2 Special Sessions on Cybersecurity Research for Critical Infrastructure Thursday, February 12, 2015 In Oceans 12 Session 2, 10:30 12:00, Oceans 12 James Houghton Research Scientist, MIT (IC)3 and MIT Sloan School of Management Developing Cyber Security Metrics and Disrupting the Vulnerability Ecosystem Advancing Cyber Security Using System Dynamics Simulation Modeling for Analyzing and Disrupting Cybercrime Ecosystem and Vulnerability Markets Michael Coden Vice President, NextNine and Associate Director MIT (IC)3. MIT House of Security: Techniques to Quantify Metrics and Other Cultural Aspects of Cyber Security Industry Panel Moderator: Sid Snitkin Panelists: William Cotter, 3M Gary Williams, Schneider Electric Jeff Melrose, Yokogawa Electric Corporation 2
3 DRAFT PROSPECTUS V12.5 For discussion purposes only TM Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity TM I See Cube (IC) 3 TM (IC) DRAFT, Copyright (IC) 3 3, 2014
4 Filling a Critical Need for Critical Infrastructure Security of conventional information systems is recognized as important But still not fully effective (e.g., Target, Heartbleed, etc.) Security of our Cyber Physical Infrastructure E.g., computer controlled utilities, oil & gas sites, chemical, water, financial services, telecom, infrastructure, etc. is even more important, but much less research has been done. Critical needs for Critical Infrastructure: (1) Justify top management attention & adoption (2) Define actions that can be effective & measured (3) Define a culture of Cyber Safety (4) Create a forum for CSO/CISO s to advance Cybersecurity 4
5 Interdisciplinary Approach (IC) 3 will apply expertise from multiple disciplines in its research on Cybersecurity issues of Critical Infrastructure. Faculty from MIT Sloan School of Management, MIT School of Engineering, and MIT School of Humanities (Political Science) (IC) 3 will address complex Cybersecurity issues using techniques such as: Multi dimensional data aggregation & quality System Dynamics, Modeling and Simulation Internet, Network, and Communication Architecture Applying Accident and Safety Theory to Cybersecurity Cross border and international policy & implications Control point analysis Risk analysis and liability modeling People and process modeling: Users and operators as well as Cyber criminals 5
6 Sample Research MIT House of Security: MIT has developed techniques to measure perceptions of security in an organization Accident and Safety research: MIT can extend its research on accident prevention to preventing cyber events. Control Points: MIT has studied best choke points to interrupt a criminal enterprise. Improving CERTs: MIT has studied and suggested ways to improve and better coordinate the CERTs. Bug Bounty: MIT has studied crowd source methods of bug detection, such as bug bounty programs. Tipping Point Analysis: MIT has used System Dynamics to understand what will make complex systems unstable. Simulation of Systems: MIT has a rich history in simulation of complex systems under a wide variety of circumstances. 6
7 New Power Grid Project Risk Mapping for an electric operator 1. Sensor Ecosystem THREAT detection 2. Translate into EQUIPMENT risk mapping 3. Provide OPERATIONAL MITIGATION strategy
8 anagement Proposed Initial Interdisciplinary MIT Team Members Stuart Madnick Director Professor of Information Technologies, MIT Sloan School of Management & Professor of Engineering Systems, MIT School of Engineering Michael Siegel Associate Director, Principal Research Scientist, MIT Sloan School of Management Michael Coden Associate Director, Research Affiliate, MIT Sloan School Nazli Choucri Professor of Political Science, MIT School of Humanities and Social Sciences David Clark Senior Research Scientist in Computer Science Michael Coden Research Affiliate (former member of White House cyber study) Jerrold Grochow Research Affiliate (former MIT CIO and member of MITei cyber study) Qi Hommes Lecturer, MIT Engineering Systems Division, MIT School of Engineering Nancy Leveson Professor of Aeronautics and Engineering Systems, MIT Andrew Lo Professor of Financial Engineering, MIT Sloan School of Management Allen Moulton Research Scientist, MIT School of Engineering Richard Wang Principal Research Scientist, MIT School of Engineering John Williams Professor of Civil and Environment Engineering Raphael Yahalom Research Affiliate, MIT Sloan School of Management 8
Advancing Cyber Security Using System Dynamics Simulation Modeling for System Resilience, Patching, and Software Development
Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity (IC) 3 12 February 2015 Advancing Cyber Security Using System Dynamics Simulation Modeling for System Resilience, Patching,
More informationSystem Theoretic Approach To Cybersecurity
System Theoretic Approach To Cybersecurity Dr. Qi Van Eikema Hommes Lecturer and Research Affiliate Hamid Salim Stuart Madnick Professor IC3.mit.edu 1 Research Motivations Cyber to Physical Risks with
More informationMIT House of Security A Model for Measurements of Cybersecurity in Corporations and Organizations
12 February 2015 MIT House of Security A Model for Measurements of Cybersecurity in Corporations and Organizations Professor Stuart Madnick Michael Coden, CISSP 1 Problem: How to measure Cybersecurity?
More informationRethinking Cyber Security for Industrial Control Systems (ICS)
Rethinking Cyber Security for Industrial Control Systems (ICS) Bob Mick VP Emerging Technologies ARC Advisory Group bmick@arcweb.com 1 Rethinking Cyber Security We Now Have Years of Experience - Security
More informationPanel on Emerging Cyber Security Technologies. Robert F. Brammer, Ph.D., VP and CTO. Northrop Grumman Information Systems.
Panel on Emerging Cyber Security Technologies Robert F. Brammer, Ph.D., VP and CTO Northrop Grumman Information Systems Panel Moderator 27 May 2010 Panel on Emerging Cyber Security Technologies Robert
More informationARC Forum Orlando 2015 Building a Secure Industrial Internet of Things
ARC Forum Orlando 2015 Building a Secure Industrial Internet of Things Sid Snitkin Vice-President & GM Enterprise Advisory Services ARC Advisory Group srsnitkin@arcweb.com Session Overview ARC Presentation
More informationCybersecurity in the Utilities Sector Best Practices and Implementation 2014 Canadian Utilities IT & Telecom Conference September 24, 2014
Cybersecurity in the Utilities Sector Best Practices and Implementation 2014 Canadian Utilities IT & Telecom Conference September 24, 2014 Victoria Yan Pillitteri Advisor for Information Systems Security
More informationUniversity of Maryland Cybersecurity Center (MC 2 )
University of Maryland Cybersecurity Center (MC 2 ) Responding to the Needs of the State, the Nation, and the Global Community Pat Prof. Michael Hicks Director www.cyber.umd.edu/ Cybersecurity Challenge
More informationShared Infrastructure: What and Where is Collaboration Needed to Build the SM Platform?
Smart Manufacturing Forum Shared Infrastructure: What and Where is Collaboration Needed to Build the SM Platform? 10:45-11:45am panel discussion Moderator: John Bernaden, Vice Chair, Smart Manufacturing
More informationINSIDE. Management Process. Symantec Corporation TM. Best Practices Roles & Responsibilities. Vulnerabilities versus Exposures.
Symantec Corporation TM Symantec Product Vulnerability Management Process Best Practices Roles & Responsibilities INSIDE Vulnerabilities versus Exposures Roles Contact and Process Information Threat Evaluation
More informationRoadmaps to Securing Industrial Control Systems
Roadmaps to Securing Industrial Control Systems Insert Photo Here Mark Heard Eastman Chemical Company Rockwell Automation Process Solutions User Group (PSUG) November 14-15, 2011 Chicago, IL McCormick
More informationIndustrial Control Systems Security Guide
Industrial Control Systems Security Guide Keith Stouffer, Engineering Lab National Institute of Standards and Technology NIST SP 800-82, Rev 2 and ICS Cybersecurity Testbed Keith Stouffer Project Leader,
More informationWORKSHOP Rethinking Cyber Security for Industrial Control Systems
WORKSHOP Rethinking Cyber Security for Industrial Control Systems Bob Mick, Workshop Moderator VP Emerging Technologies ARC Advisory Group bmick@arcweb.com 1 Re-Thinking Cyber Security Why Re-Thinking?
More informationMartha W. Bidez, Ph.D. Professor and Graduate Program Director University of Alabama at Birmingham
MEng Advanced Safety Engineering and Management UAB Master s Program Review Prevention Through Design (ANSI Z10) October 9, 2012 EEI Fall Occupational Safety & Health Committee Conference Martha W. Bidez,
More informationNIST Cybersecurity Initiatives. ARC World Industry Forum 2014
NIST Cybersecurity Initiatives Keith Stouffer and Vicky Pillitteri NIST ARC World Industry Forum 2014 February 10-13, 2014 Orlando, FL National Institute of Standards and Technology (NIST) NIST s mission
More informationBig Data, Big Risk, Big Rewards. Hussein Syed
Big Data, Big Risk, Big Rewards Hussein Syed Discussion Topics Information Security in healthcare Cyber Security Big Data Security Security and Privacy concerns Security and Privacy Governance Big Data
More informationIncreasing Energy Reliability & Resiliency NGA Policy Institute for Governors' Energy Advisors Denver Colorado, September 11, 2013
+ Increasing Energy Reliability & Resiliency NGA Policy Institute for Governors' Energy Advisors Denver Colorado, September 11, 2013 Jeffrey R. Pillon, Director, Energy Assurance Programs National Association
More informationHow To Protect Your Digital Infrastructure From Cyber Threats
Critical Cyber Infrastructure Center (C 3 ) George Markowsky School of Computing & Information Science Cybersecurity and the Protection of Critical Digital Infrastructure The Problem Digital infrastructures,
More informationCybersecurity for Medical Devices
Cybersecurity for Medical Devices Suzanne O Shea Kathleen Rice January 29, 2015 Why Is This Important? Security Risks in the Sensors of Implantable Medical Devices Over the last year, we ve seen an uptick
More informationEstablishing a State Cyber Crimes Unit White Paper
Establishing a State Cyber Crimes Unit White Paper Utah Department of Public Safety Commissioner Keith Squires Deputy Commissioner Jeff Carr Major Brian Redd Utah Statewide Information & Analysis Center
More informationElectric Energy and Power Panel Sessions
Electric Energy and Power Panel Sessions S.S. (Mani) Venkata University of Washington, Seattle, WA venkata@ee.washington.edu 520-820-8005 2011 ECEDHA Annual Conference Phoenix, AZ March 13, 2011 Background
More informationOctober 16, 2015. Please visit our links below for more details about this event: http://cybersummit.memphis.edu/index.php?
October 16, 2015 Please visit our links below for more details about this event: http://cybersummit.memphis.edu/index.php?page=home http://cybersummit.memphis.edu/index.php?page=gallery The University
More informationGeorgia Tech Cybersecurity Leadership Certificate Program July 25 29, 2016
Georgia Tech Cybersecurity Leadership Certificate Program July 25 29, 2016 Preliminary Program Schedule The Georgia Tech Cybersecurity Leadership Certificate Program is presented with the guidance of Admiral
More informationASSESSMENT OF THE ISO 26262 STANDARD, ROAD VEHICLES FUNCTIONAL SAFETY
ASSESSMENT OF THE ISO 26262 STANDARD, ROAD VEHICLES FUNCTIONAL SAFETY Dr. Qi Van Eikema Hommes SAE 2012 Government/Industry Meeting January 25, 2012 1 Outline ISO 26262 Overview Scope of the Assessment
More informationCybersecurity Academies roundtable Tina Allison
Cybersecurity Academies roundtable Tina Allison Audit Tax Advisory What is cybersecurity? Cybersecurity can be defined as the protection of information assets by addressing threats to information processed,
More informationIT Professional Standards. Information Security Discipline. Sub-discipline 605 Information Security Testing and Information Assurance Methodologies
IT Professional Standards Information Security Discipline Sub-discipline 605 Information Security Testing and Information Assurance Methodologies December 2012 Draft Version 0.6 DOCUMENT REVIEW Document
More informationESKISP6055.01 Manage security testing
Overview This standard covers the competencies concerning with managing security testing activities. Including managing resources activities and deliverables. This includes planning, conducting and reporting
More information(HTTP://WWW.ADDTHIS.COM/BOOKMARK.PHP?V=250&PUBID=XA- 4EC5891570C11392)
(HTTP://WWW.ADDTHIS.COM/BOOKMARK.PHP?V=250&PUBID=XA- 4EC5891570C11392) VISIT: WWW.TTCUS.COM (HTTP://WWW.TTCUS.COM /? HSTC=40060925.4FE4E58F02ECBE9D993453E16A8EB373.1374161815407.1374161815407.1374161815407.1&
More informationThe Homeland Security and Preparedness College of The NJ-OHSP
The Homeland Security and Preparedness College of The NJ-OHSP Presented By Paul J. Lioy, Ph.D. Executive Committee of the College and Deputy Director of the Environmental and Occupational Health Sciences
More informationDr. Starnes E. Walker Founding Director, Cybersecurity Initiative starnes@udel.edu (302) 831 1580
Dr. Starnes E. Walker Founding Director, Cybersecurity Initiative starnes@udel.edu (302) 831 1580 The Cybersecurity Initiative was established at the University of Delaware in 2014 as an integrated learning
More informationIndustrial Cyber Security Risk Manager. Proactively Monitor, Measure and Manage Cyber Security Risk
Industrial Cyber Security Risk Manager Proactively Monitor, Measure and Manage Cyber Security Risk With Today s Cyber Threats, How Secure is Your Control System? Today, industrial organizations are faced
More informationDepartment of Homeland Security
Department of Homeland Security Cybersecurity Awareness for Colleges and Universities EDUCAUSE Live! July 24, 2014 Overview Dramatic increase in cyber intrusions, data breaches, and attacks at institutions
More informationARC INDUSTRY FORUM 2015
ARC INDUSTRY FORUM PRESENTATION TOPIC: MANAGING INDUSTRIAL CYBER SECURITY RISK Tyler Williams Manager, Industrial Cyber Security Shell Global Solutions tyler.williams@shell.com 1 THE TRADITIONAL APPROACH
More informationCYBER LIABILITY RISKS SEMINAR Programme overview. THURSDAY 1 OCTOBER 2015 8.30am 1.00pm Green Park Conference Centre, Reading
CYBER LIABILITY RISKS SEMINAR Programme overview THURSDAY 1 OCTOBER 2015 8.30am 1.00pm Green Park Conference Centre, Reading JLT Specialty (JLT) would like to invite you to a highly informative technical
More informationCybersecurity: Considerations for Internal Audit. IIA Atlanta Chapter Meeting January 9, 2015
Cybersecurity: Considerations for Internal Audit IIA Atlanta Chapter Meeting January 9, 2015 Agenda Key Risks Incorporating Internal Audit Resources for Internal Auditors Questions 2 Key Risks 3 4 Key
More informationHow To Manage Risk On A Scada System
Risk Management for Industrial Control Systems (ICS) And Supervisory Control Systems (SCADA) Information For Senior Executives (Revised March 2012) Disclaimer: To the extent permitted by law, this document
More informationSMART TRANSPORTATION
SMART TRANSPORTATION Professor William HK LAM, The Hong Kong Polytechnic University Professor Hong K LO, The Hong Kong University of Science and Technology Professor SC WONG, The University of Hong Kong
More informationBusiness Continuity for Cyber Threat
Business Continuity for Cyber Threat April 1, 2014 Workshop Session #3 3:00 5:30 PM Susan Rogers, MBCP, MBCI Cyberwise CP S2 What happens when a computer program can activate physical machinery? Between
More informationWhy you should adopt the NIST Cybersecurity Framework
www.pwc.com/cybersecurity Why you should adopt the NIST Cybersecurity Framework May 2014 The National Institute of Standards and Technology Cybersecurity Framework may be voluntary, but it offers potential
More informationTHE STRATEGIC POLICING REQUIREMENT. July 2012
THE STRATEGIC POLICING REQUIREMENT July 2012 Contents Foreward by the Home Secretary...3 1. Introduction...5 2. National Threats...8 3. Capacity and contribution...9 4. Capability...11 5. Consistency...12
More informationC ETS C/ETS: CYBER INTELLIGENCE + ENTERPRISE SOLUTIONS CSCSS / ENTERPRISE TECHNOLOGY + SECURITY
CSCSS / ENTERPRISE TECHNOLOGY + SECURITY C/ETS: CYBER INTELLIGENCE + ENTERPRISE SOLUTIONS CENTRE FOR STRATEGIC CSCSS CYBERSPACE + SECURITY SCIENCE CSCSS / ENTERPRISE TECHNOLOGY + SECURITY GROUP Information
More informationMichael Gaudet 2015 PHC 7/23/2015. Key Broker Challenges
Cyber 2015: The Market, Choosing Coverages and AEGIS Update Broker s Perspective Michael Gaudet Marsh FINPRO Energy, Power & Utility Industry Leader Marsh USA, Inc. Key Broker Challenges Coverage consistency
More informationCYBERSECURITY INDEX OF INDICES
Published July 2, 2015 CYBERSECURITY INDEX OF INDICES Cybersecurity development is a complex matter. Whether at the nation state level, or in an enterprise, various factors need to be taken into consideration
More informationMetrics that Matter Security Risk Analytics
Metrics that Matter Security Risk Analytics Rich Skinner, CISSP Director Security Risk Analytics & Big Data Brinqa rskinner@brinqa.com April 1 st, 2014. Agenda Challenges in Enterprise Security, Risk
More informationCyber Impact Assessment for Space Mission Assurance
Cyber Impact Assessment for Space Mission Assurance Presented by: Douglas Wiemer d.wiemer@rheagroup.com Mission and system taxonomy contribution: Cédric Seynat cseynat@rheagroup.ca 18 June 2013 1 1 Topics
More informationHow To Protect Your Data From Being Hacked
Cyber Division & Manufacturing Division Joint Working Group Cyber Security for the Advanced Manufacturing Enterprise Manufacturing Division Meeting June 4, 2014 Michael McGrath, ANSER michael.mcgrath@anser.org
More informationSeptember 28, 2 012 MEMORANDUM FOR. MR. ANTONY BLINKEN Deputy Assistant to the President and National Security Advisor to the Vice President
004216 THE WHITE HOUSE WASHINGTON MEMORANDUM FOR September 28, 2 012 MR. ANTONY BLINKEN Deputy Assistant to the President and National Security Advisor to the Vice President MR. STEPHEN D. MULL Executive
More informationCopyright 2011 Rockwell Automation, Inc. All rights reserved. Quick Industrial Security Assessment
Copyright 2011 Rockwell Automation, Inc. All rights reserved. Quick Industrial Security Assessment Key Concerns of Control System Security 1. Preventing accidental and unintentional changes to the control
More informationCybersecurity Risk Management in the Telecom Sector. MUSTAPHA HUNEYD Corporate Information Security
Cybersecurity Risk Management in the Telecom Sector MUSTAPHA HUNEYD Corporate Information Security Cyber Security Risks World Economic Forum Global Risks 2014 - Ninth Edition Critical Infrastructure Critical
More informationHow To Protect Your Business From A Cyber Attack
Intelligence FIRST helping your business make better decisions Cyber security Keeping your business resilient Cyber security is about keeping your business resilient in the modern technological age. It
More informationEU Cybersecurity Strategy and Proposal for Directive on network and information security (NIS) {JOIN(2013) 1 final} {COM(2013) 48 final}
EU Cybersecurity Strategy and Proposal for Directive on network and information security (NIS) {JOIN(2013) 1 final} {COM(2013) 48 final} Trust and Security Unit DG Communica5ons Networks, Content and Technology
More informationStanding together for financial industry cyber resilience Quantum Dawn 3 after-action report. November 23, 2015
Standing together for financial industry cyber resilience Quantum Dawn 3 after-action report November 23, 2015 Table of contents Background Exercise objectives Quantum Dawn 3 (QD3) cyberattack scenario
More informationIndustrial Control Security
Industrial Control Security Holiday Inn, Sacramento, California www.industrialcontrolsecurityusa.com www.cybersenate.com The Effective Approach for Protecting Oil and Gas Critical Infrastructures from
More informationBusiness Risk Management - Top 10 Questions to Ask
How to Ace IT Governance Without Tech Expertise 50 POWERFUL QUESTIONS READY TO ASK AT YOUR NEXT BOARD MEETING Corporate Director and Creator of THE BOARDROOM BLUEPRINT TM OVERVIEW 50 POWERFUL I.T. QUESTIONS
More informationCyber Stability 2015 Geneva, 09 July 2015. African Union Perspectives on Cybersecurity and Cybercrime Issues.
Cyber Stability 2015 Geneva, 09 July 2015 African Union Perspectives on Cybersecurity and Cybercrime Issues. FACTS AND FIGURES As African countries increase access to broadband Internet, issues relating
More informationBuilding Blocks of a Cyber Resilience Program. Monika Josi monika.josi@safis.ch
Building Blocks of a Cyber Resilience Program Monika Josi monika.josi@safis.ch About me Chief Security Advisor for Microsoft Europe, Middle East and Africa providing support to Governments and CIIP until
More informationThe Aviation Information Sharing and Analysis Center (A-ISAC)
The Aviation Information Sharing and Analysis Center (A-ISAC) Faye Francy Aviation ISAC March 2015 The Threat A National Security Issue Rapidly escalating cyber threats Executive action Executive Order
More informationENISA What s On? ENISA as facilitator for enhanced Network and Information Security in Europe. CENTR General Assembly, Brussels October 4, 2012
ENISA What s On? ENISA as facilitator for enhanced Network and Information Security in Europe CENTR General Assembly, Brussels October 4, 2012 christoffer.karsberg@enisa.europa.eu 1 Who we are ENISA was
More informationESCoRTS A European network for the Security of Control & Real Time Systems
ESCoRTS A European network for the Security of Control & Real Time Systems Luc Van den Berghe CEN-CENELEC Management Centre 20/05/10 Luxembourg workshop 1 Recommendations from a CEN/BT WG161 Survey in
More informationOperator Training Simulators, Immersive Training Simulators, Augmented Reality & Gaming
Operator Training Simulators, Immersive Training Simulators, Augmented Reality & Gaming Author: Janice Abel Principal Consultant ARC Advisory Group jabel@arcweb.com This presentation is copyrighted by
More informationCyber Security Recommendations October 29, 2002
Cyber Security Recommendations October 29, 2002 Leading Co-Chair (Asia/Oceania) Co-Chair (Americas) Co-Chair (Europe/Africa) Dr. Hiroki Arakawa Executive Vice President NTT Data Corporation Richard Brown
More informationBridging the knowledge gap between power engineering and cyber security: Imparting the interdisciplinary knowledge in cyber security for power systems
1 Bridging the knowledge gap between power engineering and cyber security: Imparting the interdisciplinary knowledge in cyber security for power systems Peter W. Sauer University of Illinois at Urbana-Champaign
More informationIndiana University-Purdue University Indianapolis
Indiana University-Purdue University Indianapolis 1 Indiana University-Purdue University Indianapolis Faculty Work for the 21 st Century William M. Plater, Executive Vice Chancellor and Dean of the Faculties
More informationBest Practices in ICS Security for Device Manufacturers. A Wurldtech White Paper
Best Practices in ICS Security for Device Manufacturers A Wurldtech White Paper No part of this document may be distributed, reproduced or posted without the express written permission of Wurldtech Security
More informationTowards better understanding Cybersecurity: or are "Cyberspace" and "Cyber Space" the same?
Towards better understanding Cybersecurity: or are "Cyberspace" and "Cyber Space" the same? Stuart Madnick Nazli Choucri Steven Camiña Wei Lee Woon Working Paper CISL# 2012-09 November 2012 Composite Information
More informationProtect Your Assets. Cyber Security Engineering. Control Systems. Power Plants. Hurst Technologies
Protect Your Assets Cyber Security Engineering Control Systems. Power Plants. Hurst Technologies Cyber Security The hackers are out there and the cyber security threats to your power plant are real. That
More informationMaritime Insurance Cyber Security Framing the Exposure. Tony Cowie May 2015
Maritime Insurance Cyber Security Framing the Exposure Tony Cowie May 2015 Table of Contents / Agenda What is cyber risk? Exposures - Should we be concerned about "Cyber"? Is Cyber covered under a Marine
More informationCapacity Building in Cyber Security Literacy: An Inter-disciplinary Approach
Capacity Building in Cyber Security Literacy: An Inter-disciplinary Approach This material is based upon work supported by the National Science Foundation under Grant No. 1516724 Project Organization University
More informationDown the SCADA (security) Rabbit Hole. Alberto Volpatto
Down the SCADA (security) Rabbit Hole Alberto Volpatto Alberto Volpatto Security Engineer & Team Leader @ Secure Network Computer Engineer Application Security Specialist What is SCADA? Supervisory operators,
More informationJOB ANNOUNCEMENT. Chief Security Officer, Cheniere Energy, Inc.
JOB ANNOUNCEMENT Chief Security Officer, Cheniere Energy, Inc. Position Overview The Vice President and Chief Security Risk Officer (CSRO) reports to the Chairman, Chief Executive Officer and President
More informationWilliam J. Perry International Security Fellowship
William J. Perry International Security Fellowship The William J. Perry International Security Fellowship at the Center for International Security and Cooperation (CISAC) within Stanford University is
More informationEstablishing and supporting CERTs for Internet security
Report on the Activities of the IGF Best Practice Forum (BPF) for: Establishing and supporting CERTs for Internet security Cristine Hoepers, CERT.br/NIC.br Maarten Van Horenbeeck, FIRST Adli Wahid, FIRST
More informationI3P SCADA Security Research Plan
I3P SCADA Security Research Plan Unifying Stakeholders and Security Programs to Address SCADA Vulnerability and Infrastructure Interdependency Ron Trellue, Team Lead Sandia National Laboratories 1 What
More informationINTERNET GOVERNANCE AND ENFORCEMENT OF INTELLECTUAL PROPERTY RIGHTS
INTERNET GOVERNANCE AND ENFORCEMENT OF INTELLECTUAL PROPERTY RIGHTS - Administrative, Civil and Criminal Challenges 5-7 February 2014, Danilovgrad (Montenegro) PROVISIONAL PROGRAMME Background In the Balkan
More informationF:\COMP\SCIENCE\CYBER SECURITY RESEARCH AND DEVELOPMENT ACT.XML
[ UPDATE COMP VERSION: This file reflects the execution of the amendments made by PL 113-283. Note that this version has been designed for review purposes just prior to publishing and replacing the source
More informationCybersecurity education for the next generation Emerging best practices
Cybersecurity education for the next generation Emerging best practices Presented at the 2013 NIST/NICE Workshop Gaithersburg, Maryland Marisa S. Viveros Vice President, Cyber Security Innovation IBM Corporate
More informationCIP 2016 Project Outline
Outline TR_SAND_1 1. Internship 2. Internship 3. Preferred Sandwich June 2016 to June 2017 First Priority: Computer Science/ Technology related Second Priority: Information Systems 4. Name: 2016 Group
More informationISA99 Working Group 5 ISA99 Working Group 5
Date: May 14, 2015 Time: 11:00 ET US Lead: E. Cosman Notes: E. Cosman Distribution: ISA99 committee and stakeholders ISA99 Working Group 5 ISA99 Working Group 5 ISA 67 Alexander Drive PO Box 12277 Research
More informationAmerican Public University System - A Multi-Disciplinary Approach to Cybersecurity Education
American Public University System - A Multi-Disciplinary Approach to Cybersecurity Education Dr. Clay Wilson, CISSP Program Director, Cybersecurity Studies American Public University System Overview About
More informationModerator Shigeki Goto, Professor, Department of Computer Science and Engineering, Waseda University
Date Friday, September 21, 2012 Host USJI-DCC Venue U.S.-Japan Research Institute (USJI)/ The Waseda Digital Campus Consortium (DCC) Title The Future of Advanced Information Societies
More informationCenter for. Emergency Management and Homeland Security. what keeps you awake at night? mitigate prepare respond recover manage
Center for Emergency Management and Homeland Security what keeps you awake at night? mitigate prepare respond recover manage diverse areas of expertise comprehensive, timely and cost-effective solutions
More informationHans Henrik Berthing, CPA, CISA, CGEIT, CRISC, CIA
Hans Henrik Berthing, CPA, CISA, CGEIT, CRISC, CIA HANS HENRIK BERTHING Married with Louise and dad for Dagmar and Johannes CPA, CRISC, CGEIT, CISA and CIA ISO 9000 Lead Auditor Partner and owner for Verifica
More informationElectricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2) (Case Study) James Stevens Senior Member, Technical Staff - CERT Division
Electricity Subsector Cybersecurity Capability Maturity Model (ES-C2M2) (Case Study) James Stevens Senior Member, Technical Staff - CERT Division James Stevens is a senior member of the technical staff
More informationEEI Business Continuity. Threat Scenario Project (TSP) April 4, 2012. EEI Threat Scenario Project
EEI Business Continuity Conference Threat Scenario (TSP) April 4, 2012 EEI Threat Scenario 1 Background EEI, working with a group of CIOs and Subject Matter Experts, conducted a survey with member companies
More informationExploring the potential for a CDC for Cyber Informal Davos Follow up Meeting
Exploring the potential for a CDC for Cyber Informal Davos Follow up Meeting Key Issues on the Agenda May 2013, San Francisco What are the key barriers and how are incentives currently misaligned? Constraints
More informationServices. Cybersecurity. Capgemini & Sogeti. Guiding enterprises and government through digital transformation while keeping them secure
Home Secure digital transformation SMACT Advise, Protect & Monitor Why Capgemini & Sogeti? In safe hands Capgemini & Sogeti Cybersecurity Services Guiding enterprises and government through digital transformation
More informationAgenda: Secure Power Systems Specialist. Challenges Project description Outcomes & findings. Phase I briefing, August 27, 2012
Secure Power Systems Specialist Phase I briefing, August 27, 2012 By Lori Ross O Neil, PNNL and Michael Assante, NBISE Agenda: Challenges Project description Outcomes & findings 1 Challenge facing the
More informationTestimony of. Before the United States House of Representatives Committee on Oversight and Government Reform And the Committee on Homeland Security
Testimony of Dr. Phyllis Schneck Deputy Under Secretary for Cybersecurity and Communications National Protection and Programs Directorate United States Department of Homeland Security Before the United
More informationCyber Security in EU: ENISA approach
Cyber Security in EU: ENISA approach Konstantinos Moulinos, Security Expert European Union Network and Information Security Agency in Electricity Distribution Grids, Brussels European Union Agency for
More informationCybersecurity at ODU ( www.odu.edu/ccser )
Cybersecurity at ODU ( www.odu.edu/ccser ) We offer a variety of options for individuals to learn about cybersecurity. These include: a. Twenty-one separate undergraduate courses related to the topic.
More informationCybersecurity Audit Why are we still Vulnerable? November 30, 2015
Cybersecurity Audit Why are we still Vulnerable? November 30, 2015 John R. Robles, CISA, CISM, CRISC www.johnrrobles.com jrobles@coqui.net 787-647-3961 John R. Robles- 787-647-3961 1 9/11-2001 The event
More informationProf. Udo Helmbrecht
Prof. Udo Helmbrecht Guiding EU Cybersecurity from Policy to Implementation Udo Helmbrecht Executive Director Information Security for the Public Sector 2015 Stockholm 02/09/15 European Union Agency for
More informationCyber Security in the Financial Industry
Supported by Cyber Security in the Financial Industry The SWIFT Institute and the KU Leuven will host a one day conference focusing on cyber security issues impacting the global financial industry. Today
More informationHPC IN Cybersecurity. 2015 Annual Technical Meeting. Venue: Schlumberger 10001 Richmond Ave, Houston, TX 77042
HPC IN Cybersecurity 2015 Annual Technical Meeting Venue: Schlumberger 10001 Richmond Ave, Houston, TX 77042 FEATURED SPEAKERS Addison Snell CEO, Intersect360 Research Addison Snell is the CEO of Intersect360
More informationCommonwealth Approach to Cybergovernance and Cybersecurity. By the Commonwealth Telecommunications Organisation
Commonwealth Approach to Cybergovernance and Cybersecurity By the Commonwealth Telecommunications Organisation Trends in Cyberspace Cyberspace provides access to ICT Bridging the digital divide and influencing
More informationAgenda. Introduction to SCADA. Importance of SCADA security. Recommended steps
Agenda Introduction to SCADA Importance of SCADA security Recommended steps SCADA systems are usually highly complex and SCADA systems are used to control complex industries Yet.SCADA systems are actually
More informationCyber Security: The Growing Liability of Handheld & Mobile Devices
Cyber Security: The Growing Liability of Handheld & Mobile Devices 1 About Advisen: Advisen Ltd. is a privately-owned, independent and unbiased provider of news, data and risk analytics to the commercial
More informationIndustrial Cyber Security Risk Manager. Proactively Monitor, Measure and Manage Industrial Cyber Security Risk
Industrial Cyber Security Risk Manager Proactively Monitor, Measure and Manage Industrial Cyber Security Risk Industrial Attacks Continue to Increase in Frequency & Sophistication Today, industrial organizations
More informationUNITED STATES COMMISSION ON CIVIL RIGHTS. Fiscal Year 2012 Federal Information Security Management Act Evaluation
Memorandum UNITED STATES COMMISSION ON CIVIL RIGHTS Date: November 15, 2012 To: From: Subject: The Honorable Commissioners Frances Garcia, Inspector General Fiscal Year 2012 Federal Information Security
More information