FIIF JAM SESSION focusing on Industrial Internet cyber safety issues 22 September 2015
Size: px
Start display at page:

Download "FIIF JAM SESSION focusing on Industrial Internet cyber safety issues 22 September 2015"

Transcription

1 FIIF JAM SESSION focusing on Industrial Internet cyber safety issues 22 September 2015 Introduction Cyber Security Risks of Industrial Internet in different s of Pasi Ahonen, Senior Scientist, KYBER-TEO Project Manager VTT Technical Research Centre of Finland

2 Ten IoT Opportunities and 2

3 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control 3

4 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production 4

5 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics 5

6 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool 6

7 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool Manufacturing Continuous production Remote maintenance Cyber disturbance to production network 7

8 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool Manufacturing Continuous production Remote maintenance Cyber disturbance to production network Health Online diagnostics Patient monitoring & Personal fitness Personal data leak from monitoring 8

9 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool Manufacturing Continuous production Remote maintenance Cyber disturbance to production network Health Online diagnostics Patient monitoring & Personal fitness Personal data leak from monitoring Transport Optimized logistics Fleet management & Condition based maintenance Cyber disturbance to fleet management network 9

10 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool Manufacturing Continuous production Remote maintenance Cyber disturbance to production network Health Online diagnostics Patient monitoring & Personal fitness Personal data leak from monitoring Transport Optimized logistics Fleet management & Condition based maintenance Cyber disturbance to fleet management network Buildings Life-cycle costs Maintenance cost optimizer Cyber vandalism against building automation network 10

11 Ten IoT Opportunities and Other Utilities Waste material utilization Process optimizer & Environment monitor Hostile access to pump station control Agriculture Efficient production Precision farming, Traceability of origin Malware infected farming or food production Construction Logistics of materials, tools and workforce Logistics optimizer (RFID, GPS, ERP ) Network based denial of access to logistics Retail Global reach & distribution Optimized customer care, Self-checkout Consumer abuse using open source attack tool Manufacturing Continuous production Remote maintenance Cyber disturbance to production network Health Online diagnostics Patient monitoring & Personal fitness Personal data leak from monitoring Transport Optimized logistics Fleet management & Condition based maintenance Cyber disturbance to fleet management network Buildings Life-cycle costs Maintenance cost optimizer Cyber vandalism against building automation network Security Security services Remote monitoring & Smart access Hijacking of remote connections to acquire unlawful entry 11

12 Cyber Security Risk areas relevant to Industrial Internet Ref: OWASP Internet of Things Project: Daniel Miessler, IoT Village, DEFCON 23, August

13 Cyber Security Risk areas relevant to Industrial Internet Ref: OWASP Internet of Things Project: Daniel Miessler, IoT Village, DEFCON 23, August

14 CONCLUSION? The designers of IoT applications must UNDERSTAND these problems at hand - IN PRACTICE! VTT Oy 14

15 VTT Offering - Cyber Defence Workshops BATTLEFIELD - Scout/intelligence - Attack - Monitor - Defence actions Network monitoring tools Illegal admission Networks FW Application Log Log monitoring tools Security testing tools Network scanning GW Platforms Network events Network monitoring tools Tools for the attack Network attack Switch Settings Alarms Visualisation tools 1. Find vulnerable targets 2. Select targets and goals for the attack 3. Implement attacks by using ready configured tools Applicable vulnerable network and device environments are used in the workshops Advanced actions Secure networks Secure applications Secure platforms Secure settings Policy Guidelines Models/Practice Requirements Audits Work rights Change control 1. Set logging 2. Monitor traffic 3. Find attacks 4. Consider best defence mechanism VTT Oy 15

16 VTT Offering - Cyber Defence Workshops Main goals for participants are to recognise cyber attacks and learn the best defence mechanisms in practice Special hands-on workshop for company experts who need to understand how cyber attacks work and how they can defence their s against such attacks Value: Hands-on learning of cyber attacks and specific defence VTT Oy 16

17 VTT Offering - Cyber Defence Workshops Participant Objectives Threaths Learn to understand and find cyber threaths and vulnerabilities in company s s and operations Recognise cyber security needs in your company Learn the basics of good practices and tools See in practice about cyber security tools for attack, monitor and defence VTT Oy 17

18 You are welcome to test your s and products TECHNOLOGY FOR BUSINESS

Similar documents

Internet of Things (IoT): Security Awareness. Sandra Liepkalns, CRISC sandra.liepkalns@netrus.com

Internet of Things (IoT): Security Awareness. Sandra Liepkalns, CRISC sandra.liepkalns@netrus.com Internet of Things (IoT): Security Awareness Sandra Liepkalns, CRISC sandra.liepkalns@netrus.com So What is the Internet of Things Network of physical objects embedded with: Electronics, software, sensors

More information

SOMEBODY'S WATCHING YOU! Maritime Cyber Security White Paper. Safeguarding data through increased awareness

SOMEBODY'S WATCHING YOU! Maritime Cyber Security White Paper. Safeguarding data through increased awareness SOMEBODY'S WATCHING YOU! Maritime Cyber Security White Paper Safeguarding data through increased awareness November 2015 1 Contents Executive Summary 3 Introduction 4 Martime Security 5 Perimeters Breached

More information

Intelligent. Buildings: Understanding and managing the security risks

Intelligent. Buildings: Understanding and managing the security risks Version 2 IET Sector Insights Intelligent Buildings: Understanding and managing the security risks More efficient and cost-effective use of the built environment is increasingly being driven by economic

More information

The Internet of Things (IoT)

The Internet of Things (IoT) The Internet of Things (IoT) The New New Thing October 2014 Smart Planet Green Environment Environmental Sensors Water, power leak detection Pollution, weather monitoring Smart Cities Connected Communities

More information

30 Independent Study. 60 (e.g. lectures, seminars and supervised group activity)

30 Independent Study. 60 (e.g. lectures, seminars and supervised group activity) 1. Programme Title BSc Digital & Technology Solutions 2. Unit Title Data and Security 3. HE Level UG1 FHEQ Level 4 4. Unit Code DTS16104 5. Credit Value of Unit 30 6. Unit Type Mandatory 7. Unit Tutor

More information

ABB s approach concerning IS Security for Automation Systems

ABB s approach concerning IS Security for Automation Systems ABB s approach concerning IS Security for Automation Systems Copyright 2006 ABB. All rights reserved. Stefan Kubik stefan.kubik@de.abb.com The problem Most manufacturing facilities are more connected (and

More information

i-pcgrid Workshop 2015 Cyber Security for Substation Automation The Jagged Line between Utility and Vendors

i-pcgrid Workshop 2015 Cyber Security for Substation Automation The Jagged Line between Utility and Vendors March 25-27, 2014 Steven A. Kunsman i-pcgrid Workshop 2015 Cyber Security for Substation Automation The Jagged Line between Utility and Vendors ABB Inc. March 26, 2015 Slide 1 Cyber Security for Substation

More information

Best Practices at Research Level

Best Practices at Research Level PReparing Industry to Privacy-by-design by supporting its Application in REsearch Best Practices at Research Level Hisain Elshaafi Telecommunications Software and Systems Group (TSSG) Waterford Institute

More information

How To Secure Your System From Cyber Attacks

How To Secure Your System From Cyber Attacks TM DeltaV Cyber Security Solutions A Guide to Securing Your Process A long history of cyber security In pioneering the use of commercial off-the-shelf technology in process control, the DeltaV digital

More information

Professional Services Overview

Professional Services Overview Professional Services Overview INFORMATION SECURITY ASSESSMENT AND ADVISORY NETWORK APPLICATION MOBILE CLOUD IOT Praetorian Company Overview HISTORY Founded in 2010 Headquartered in Austin, TX Self-funded

More information

Rule 4-004M Payment Card Industry (PCI) Monitoring, Logging and Audit (proposed)

Rule 4-004M Payment Card Industry (PCI) Monitoring, Logging and Audit (proposed) Version: Modified By: Date: Approved By: Date: 1.0 Michael Hawkins October 29, 2013 Dan Bowden November 2013 Rule 4-004M Payment Card Industry (PCI) Monitoring, Logging and Audit (proposed) 01.1 Purpose

More information

What someone said about junk hacking

What someone said about junk hacking What someone said about junk hacking Yes, we get it. Cars, boats, buses, and those singing fish plaques are all hackable and have no security. Most conferences these days have a whole track called "Junk

More information

State of Vermont. Intrusion Detection and Prevention Policy. Date: 11-02-10 Approved by: Tom Pelham Policy Number:

State of Vermont. Intrusion Detection and Prevention Policy. Date: 11-02-10 Approved by: Tom Pelham Policy Number: State of Vermont Intrusion Detection and Prevention Policy Date: 11-02-10 Approved by: Tom Pelham Policy Number: 1 Table of Contents 1.0 Introduction... 3 1.1 Authority... 3 1.2 Purpose... 3 1.3 Scope...

More information

BYOD (Bring Your Own Device)

BYOD (Bring Your Own Device) BYOD (Bring Your Own Device) Agenda Set the scene BYOD raising many questions Structured & Integrated answers Belgacom Entreprise Mobility Belgacom Mobile Device Management Sensitivity : "Unrestricted",

More information

Global Cyber Range (GCR) Empowering the Cybersecurity Professional (CyPro)

Global Cyber Range (GCR) Empowering the Cybersecurity Professional (CyPro) Global Cyber Range (GCR) Empowering the Cybersecurity Professional (CyPro) NICE Conference 2014 CYBERSECURITY RESILIENCE A THREE TIERED SOLUTION NIST Framework for Improving Critical Infrastructure Cybersecurity

More information

The digital future for energy and utilities.

The digital future for energy and utilities. Digital transformation has changed the way you do business. The digital future for energy and utilities. Digital is reshaping the landscape in every industry, and the energy and utilities sectors are no

More information

Cyber Security VTT and the Finnish Approach

Cyber Security VTT and the Finnish Approach Cyber Security VTT and the Finnish Approach September 22, 2015 Reijo Savola, Principal Scientist CHALLENGES Explosive increase in number and impact of cyber security attacks Use of Internet technologies

More information

Smart Farming The need for a new collaboration platform

Smart Farming The need for a new collaboration platform Smart Farming The need for a new collaboration platform Overview Kverneland Group Agriculture Equipment overview Software sells! The Future of Farming Big Data Island solutions problem FIspace Conclusion:

More information

IS YOUR INFORMATION SECURE? Secure and reliable ICT. Our experience. Your benefit. SWISS CYBER SECURITY

IS YOUR INFORMATION SECURE? Secure and reliable ICT. Our experience. Your benefit. SWISS CYBER SECURITY IS YOUR INFORMATION SECURE? Secure and reliable ICT. Our experience. Your benefit. SWISS CYBER SECURITY Security Services Identify and reduce risks The reliable protection of your assets information, workforce,

More information

Analyzing Security for Retailers An analysis of what retailers can do to improve their network security

Analyzing Security for Retailers An analysis of what retailers can do to improve their network security Analyzing Security for Retailers An analysis of what retailers can do to improve their network security Clone Systems Business Security Intelligence Properly Secure Every Business Network Executive Summary

More information

GPS Monitoring Device

GPS Monitoring Device GPS Monitoring Device Products Features GPS Tracking System is a multi function tracking device with gps positioning and Anti-theft technology. Main features Mobile phone inquiry (via sms, up to 3 different

More information

Dr. György Kálmán gyorgy@mnemonic.no

Dr. György Kálmán gyorgy@mnemonic.no COMMUNICATION AND SECURITY IN CURRENT INDUSTRIAL AUTOMATION Dr. György Kálmán gyorgy@mnemonic.no Agenda Connected systems historical overview Current trends, concepts, pre and post Stuxnet Risks and threats

More information

Document ID. Cyber security for substation automation products and systems

Document ID. Cyber security for substation automation products and systems Document ID Cyber security for substation automation products and systems 2 Cyber security for substation automation systems by ABB ABB addresses all aspects of cyber security The electric power grid has

More information

Security Threats on National Defense ICT based on IoT

Security Threats on National Defense ICT based on IoT , pp.94-98 http://dx.doi.org/10.14257/astl.205.97.16 Security Threats on National Defense ICT based on IoT Jin-Seok Yang 1, Ho-Jae Lee 1, Min-Woo Park 1 and Jung-ho Eom 2 1 Department of Computer Engineering,

More information

What happened to the "things"? Thoughts and Considerations on the Internet of Things.

What happened to the things? Thoughts and Considerations on the Internet of Things. What happened to the "things"? Thoughts and Considerations on the Internet of Things. Steve Halliday, president, High Tech Aid and president, RAIN RFID Alliance 1 Agenda Why are we here? What is the Internet

More information

FINAL DoIT 11.03.2015 - v.4 PAYMENT CARD INDUSTRY DATA SECURITY STANDARDS APPLICATION DEVELOPMENT AND MAINTENANCE PROCEDURES

FINAL DoIT 11.03.2015 - v.4 PAYMENT CARD INDUSTRY DATA SECURITY STANDARDS APPLICATION DEVELOPMENT AND MAINTENANCE PROCEDURES Purpose: The Department of Information Technology (DoIT) is committed to developing secure applications. DoIT s System Development Methodology (SDM) and Application Development requirements ensure that

More information

Protecting Your Organisation from Targeted Cyber Intrusion

Protecting Your Organisation from Targeted Cyber Intrusion Protecting Your Organisation from Targeted Cyber Intrusion How the 35 mitigations against targeted cyber intrusion published by Defence Signals Directorate can be implemented on the Microsoft technology

More information

Industrial Security for Process Automation

Industrial Security for Process Automation Industrial Security for Process Automation SPACe 2012 Siemens Process Automation Conference Why is Industrial Security so important? Industrial security is all about protecting automation systems and critical

More information

Great Now We Have to Secure an Internet of Things. John Pescatore SANS Director, Emerging Security Trends @John_Pescatore

Great Now We Have to Secure an Internet of Things. John Pescatore SANS Director, Emerging Security Trends @John_Pescatore Great Now We Have to Secure an Internet of Things John Pescatore SANS Director, Emerging Security Trends @John_Pescatore 1 What the Heck is That?? 2 Different Views of the Internet of Things 3 Different

More information

Effective Threat Management. Building a complete lifecycle to manage enterprise threats.

Effective Threat Management. Building a complete lifecycle to manage enterprise threats. Effective Threat Management Building a complete lifecycle to manage enterprise threats. Threat Management Lifecycle Assimilation of Operational Security Disciplines into an Interdependent System of Proactive

More information

93% of large organisations and 76% of small businesses

93% of large organisations and 76% of small businesses innersecurity INFORMATION SECURITY Information Security Services 93% of large organisations and 76% of small businesses suffered security breaches in the last year. * Cyber attackers were the main cause.

More information

WIRELESS LOCAL AREA NETWORK (WLAN) IMPLEMENTATION

WIRELESS LOCAL AREA NETWORK (WLAN) IMPLEMENTATION United States Department of Agriculture Marketing and Regulatory Programs Grain Inspection, Packers and Stockyards Administration Directive GIPSA 3140.5 11/30/06 WIRELESS LOCAL AREA NETWORK (WLAN) IMPLEMENTATION

More information

i Network, Inc Technology Solutions, Products & Services Providing the right information, to the right customer, at the right time.

i Network, Inc Technology Solutions, Products & Services Providing the right information, to the right customer, at the right time. Technology Solutions, Products & Services Providing the right information, to the right customer, at the right time. 2 Barry Brueseke (619) 401 7334 www.inetwork west.com 4/3/2014 IEEE Cyber Security Workshop

More information

Remote control. With RVR you can be sure you ll never be alone. Remote control

Remote control. With RVR you can be sure you ll never be alone. Remote control Remote control Remote control Remote locations are often the most vulnerable to attack, and similarly the most difficult to protect. Utilities with critical infrastructure; forecourts with expensive cars;

More information

Big Data and Cyber Security A bibliometric study Jacky Akoka, Isabelle Comyn-Wattiau, Nabil Laoufi Workshop SCBC - 2015 (ER 2015) 1 Big Data a new generation of technologies and architectures, designed

More information

Growth with IoT initiatives for Finland

Growth with IoT initiatives for Finland VTT TECHNICAL RESEARCH CENTRE OF FINLAND LTD Growth with IoT initiatives for Finland Tekes Industrial Internet Event 30.9.2015 Heikki Ailisto, VTT FIIF, FIMECC, Digile, and Tekes aknowledged as sources

More information

E-Virus in Six Cisco Routers

E-Virus in Six Cisco Routers Name of the Project: e.g. Organization Development By Roland Cheung @HKCERT Agenda Malware Trend Security Risk on Industry Sector Case Study Security Mitigations Malware Trend Reason Fun Profit Direct

More information

Signal Customized Helpdesk Course

Signal Customized Helpdesk Course Signal Customized Helpdesk Course This course is a combination of modules taken from two Microsoft Courses: 50311A and 50331A. It is geared toward staff who handle helpdesk calls and troubleshoot end user

More information

Designing a security policy to protect your automation solution

Designing a security policy to protect your automation solution Designing a security policy to protect your automation solution September 2009 / White paper by Dan DesRuisseaux 1 Contents Executive Summary... p 3 Introduction... p 4 Security Guidelines... p 7 Conclusion...

More information

Bring Your Own Internet of Things: BYO IoT

Bring Your Own Internet of Things: BYO IoT SESSION ID: CSV F02 Bring Your Own Internet of Things: BYO IoT Carsten Eiram Chief Research Officer Risk Based Security @carsteneiram Jake Kouns CISO Risk Based Security @jkouns Agenda What is IoT? What

More information

Network/Cyber Security

Network/Cyber Security Network/Cyber Security SCAMPS Annual Meeting 2015 Joe Howland,VC3 Source: http://www.information-age.com/technology/security/123458891/how-7-year-old-girl-hacked-public-wi-fi-network-10-minutes Security

More information

Digital Business Services Topic Area Theaters May 17-19, 2016 Orlando, FL

Digital Business Services Topic Area Theaters May 17-19, 2016 Orlando, FL Digital Topic Area Theaters May 17-19, 2016 Orlando, FL Session ID Title Abstract Time and Location DB34027 Exploit Business Benefit Cases to Accelerate and Improve Processes DB34011* DB34008 DB34051*

More information

BYOzzzz: Focusing on the Unsolved Challenges of Mobility, An Industry Perspective

BYOzzzz: Focusing on the Unsolved Challenges of Mobility, An Industry Perspective BYOzzzz: Focusing on the Unsolved Challenges of Mobility, An Industry Perspective Kit Colbert CTO, End-User Computing 2014 VMware Inc. All rights reserved. VMware: Addressing the Market From Data Center

More information

13 Ways Through A Firewall

13 Ways Through A Firewall Industrial Control Systems Joint Working Group 2012 Fall Meeting 13 Ways Through A Firewall Andrew Ginter Director of Industrial Security Waterfall Security Solutions Proprietary Information -- Copyright

More information

Vulnerability and Threat Management and Prevention

Vulnerability and Threat Management and Prevention A1 Vulnerability and Threat Management and Prevention Weston Hecker Security Expert With KLJ Systems Network Analyst/Penetration Tester/President Of Computer Security Association Of North Dakota Slide

More information

Directives and Legislation

Directives and Legislation Cybercrime against Businesses, 25 Findings from the National Computer Security Survey Ramona R. Rantala Bureau of Justice Statistics September, 28 Directives and Legislation The National Strategy to Secure

More information

Turnkey Cloud Based RFID Solutions. We put a light on all the things you search for

Turnkey Cloud Based RFID Solutions. We put a light on all the things you search for We put a light on all the things you search for 1 Scan Perform Visualize - Decide Support the work where the work is done Suppress all unnecessary information Provide the information needed for the job

More information

Advance Malware protection in distribution and manufacturing environments. Rob Dolci, April 2016, copyright aizoon USA.

Advance Malware protection in distribution and manufacturing environments. Rob Dolci, April 2016, copyright aizoon USA. Advance Malware protection in distribution and manufacturing environments Rob Dolci, April 2016, copyright aizoon USA. aizoon at a glance Bologna New York, NY Cuneo USA Troy, MI Lewiston, ME Cambridge,

More information

SEMETS3-72 Performing computer system security assessments for engineering software

SEMETS3-72 Performing computer system security assessments for engineering software Performing computer system security assessments for engineering Overview This unit identifies the competences you need to perform a computer system security assessment, in accordance with approved procedures.

More information

Endoscope Tracking System

Endoscope Tracking System Endoscope Tracking System ENDORA Tracking System Workflow Storage: Displays which cabinet the endoscope is in Timestamps when endoscope enters the cabinet Procedure: Links patient ID to endoscope used

More information

Codes of Connection for Devices Connected to Newcastle University ICT Network

Codes of Connection for Devices Connected to Newcastle University ICT Network Code of Connection (CoCo) for Devices Connected to the University s Author Information Security Officer (Technical) Version V1.1 Date 23 April 2015 Introduction This Code of Connection (CoCo) establishes

More information

13 Ways Through A Firewall What you don t know will hurt you

13 Ways Through A Firewall What you don t know will hurt you Scientech 2013 Symposium: Managing Fleet Assets and Performance 13 Ways Through A Firewall What you don t know will hurt you Andrew Ginter VP Industrial Security Waterfall Security Solutions andrew. ginter

More information

Critical Infrastructure & Supervisory Control and Data Acquisition (SCADA) CYBER PROTECTION

Critical Infrastructure & Supervisory Control and Data Acquisition (SCADA) CYBER PROTECTION Critical Infrastructure & Supervisory Control and Data Acquisition (SCADA) CYBER PROTECTION ALBERTO AL HERNANDEZ, ARMY RESERVE OFFICER, SOFTWARE ENGINEER PH.D. CANDIDATE, SYSTEMS ENGINEERING PRESENTATION

More information

CERT's role in national Cyber Security: policy suggestions

CERT's role in national Cyber Security: policy suggestions CERT's role in national Cyber Security: policy suggestions Subject: Legal Aspect of Cyber Security. Author: Vladimir Chitashvili Lecture: Anna-Maria Osula What is national Cyber Security is? In another

More information

Triangle InfoSeCon. Alternative Approaches for Secure Operations in Cyberspace

Triangle InfoSeCon. Alternative Approaches for Secure Operations in Cyberspace Triangle InfoSeCon Alternative Approaches for Secure Operations in Cyberspace Lt General Bob Elder, USAF (Retired) Research Professor, George Mason University Strategic Advisor, Georgia Tech Research Institute

More information

Brief self-introduction

Brief self-introduction Brief self-introduction Name: Yaokai Feng Affiliation Graduate School of Information Science and Electrical Engineering, Kyushu University, Japan Bachelor and Master degrees Tianjin University, China,

More information

Lifecycle Solutions & Services. Managed Industrial Cyber Security Services

Lifecycle Solutions & Services. Managed Industrial Cyber Security Services Lifecycle Solutions & Services Managed Industrial Cyber Security Services Around the world, industrial firms and critical infrastructure operators partner with Honeywell to address the unique requirements

More information

IoT & SCADA Cyber Security Services

IoT & SCADA Cyber Security Services IoT & SCADA Cyber Security Services RIOT SOLUTIONS PTY LTD P.O. Box 10087, Adelaide St Brisbane QLD 4000 BRISBANE HEAD OFFICE Level 4, 60 Edward St, Brisbane, QLD 4000 T: 1300 744 028 Email: sales@riotsolutions.com.au

More information

How Smart, Connected Products are Transforming Competition

How Smart, Connected Products are Transforming Competition How Smart, Connected Products are Transforming Competition Professor Michael E. Porter Harvard Business School James Heppelmann President & CEO, PTC Executive Event Munich, Germany January 21, 2015 This

More information

Hong Kong Information Security Outlook 2015 香 港 資 訊 保 安 展 望

Hong Kong Information Security Outlook 2015 香 港 資 訊 保 安 展 望 Hong Kong Information Security Outlook 2015 香 港 資 訊 保 安 展 望 Agenda Information Security Trends Year 2014 in Review Outlook for 2015 Advice to the Public Hong Kong Computer Emergency Response Team Coordination

More information

Unit 3 Cyber security

Unit 3 Cyber security 2016 Suite Cambridge TECHNICALS LEVEL 3 IT Unit 3 Cyber security Y/507/5001 Guided learning hours: 60 Version 1 September 2015 ocr.org.uk/it LEVEL 3 UNIT 3: Cyber security Y/507/5001 Guided learning hours:

More information

Critical Controls for Cyber Security. www.infogistic.com

Critical Controls for Cyber Security. www.infogistic.com Critical Controls for Cyber Security www.infogistic.com Understanding Risk Asset Threat Vulnerability Managing Risks Systematic Approach for Managing Risks Identify, characterize threats Assess the vulnerability

More information

10- Assume you open your credit card bill and see several large unauthorized charges unfortunately you may have been the victim of (identity theft)

10- Assume you open your credit card bill and see several large unauthorized charges unfortunately you may have been the victim of (identity theft) 1- A (firewall) is a computer program that permits a user on the internal network to access the internet but severely restricts transmissions from the outside 2- A (system failure) is the prolonged malfunction

More information

TMX-NET PRO. Smart and secure tele-control via the internet. smart telecontrol

TMX-NET PRO. Smart and secure tele-control via the internet. smart telecontrol TMX-NET PRO Smart and secure tele-control via the internet smart telecontrol Smart and secure tele-control in the cloud any time and any place clients tablets secure internet smartphones TMX-Net Pro features

More information

Critical Security Controls

Critical Security Controls Critical Security Controls Session 2: The Critical Controls v1.0 Chris Beal Chief Security Architect MCNC chris.beal@mcnc.org @mcncsecurity on Twitter The Critical Security Controls The Critical Security

More information

National Cyber League Certified Ethical Hacker (CEH) TM Syllabus

National Cyber League Certified Ethical Hacker (CEH) TM Syllabus National Cyber League Certified Ethical Hacker (CEH) TM Syllabus Note to Faculty This NCL Syllabus is intended as a supplement to courses that are based on the EC- Council Certified Ethical Hacker TM (CEHv8)

More information

Data Security Concerns for the Electric Grid

Data Security Concerns for the Electric Grid Data Security Concerns for the Electric Grid Data Security Concerns for the Electric Grid The U.S. power grid infrastructure is a vital component of modern society and commerce, and represents a critical

More information

Quality Programs for Regulatory Compliance

Quality Programs for Regulatory Compliance Quality Programs for Regulatory Compliance Roy Garris, IconATG Regulatory Compliance Practice Manager (866) 785-4266 http://www.iconatg.com info@iconatg.com Version 1.00 Application Vulnerabilities Put

More information

CuTTIng ComplexITy simplifying security

CuTTIng ComplexITy simplifying security CuTTIng ComplexITy simplifying security With corporate IT becoming increasingly complex, how can you boost efficiency while improving corporate security? with kaspersky, now you can. kaspersky.com/business

More information

BAE Systems PCI Essentail. PCI Requirements Coverage Summary Table

BAE Systems PCI Essentail. PCI Requirements Coverage Summary Table BAE Systems PCI Essentail PCI Requirements Coverage Summary Table Introduction BAE Systems PCI Essential solution can help your company significantly reduce the costs and complexity of meeting PCI compliance

More information

M2M transforms an industry: evolution of heavy equipment and dispersed assets

M2M transforms an industry: evolution of heavy equipment and dispersed assets M2M transforms an industry: evolution of heavy equipment and dispersed assets Whitepaper April 2013 Steve Hilton Executive summary Enterprises with heavy equipment and dispersed assets are competing in

More information

AUTHORED BY: George W. Gray CTO, VP Software & Information Systems Ivenix, Inc. ADDRESSING CYBERSECURITY IN INFUSION DEVICES

AUTHORED BY: George W. Gray CTO, VP Software & Information Systems Ivenix, Inc. ADDRESSING CYBERSECURITY IN INFUSION DEVICES AUTHORED BY: George W. Gray CTO, VP Software & Information Systems Ivenix, Inc. ADDRESSING CYBERSECURITY IN INFUSION DEVICES INTRODUCTION Cybersecurity has become an increasing concern in the medical device

More information

TECHNICAL AUDITS FOR CERTIFYING EUROPEAN CITIZEN COLLECTION SYSTEMS

TECHNICAL AUDITS FOR CERTIFYING EUROPEAN CITIZEN COLLECTION SYSTEMS TECHNICAL AUDITS FOR CERTIFYING EUROPEAN CITIZEN COLLECTION SYSTEMS Technical audits in accordance with Regulation 211/2011 of the European Union and according to Executional Regulation 1179/2011 of the

More information

NERC CIP Compliance with Security Professional Services

NERC CIP Compliance with Security Professional Services NERC CIP Compliance with Professional Services The North American Electric Reliability Corporation (NERC) is a nonprofit corporation designed to ensure that the bulk electric system in North America is

More information

Innovation value pools for Utilities or Advanced Information and Communications (ICT) Technology in Energy

Innovation value pools for Utilities or Advanced Information and Communications (ICT) Technology in Energy Innovation value pools for Utilities or Advanced Information and Communications (ICT) Technology in Energy Tony Court Director, Cisco Consulting Services Oct 2014 3 R s for Utility Success in 21 st Century

More information

G/On. Basic Best Practice Reference Guide Version 6. For Public Use. Make Connectivity Easy

G/On. Basic Best Practice Reference Guide Version 6. For Public Use. Make Connectivity Easy For Public Use G/On Basic Best Practice Reference Guide Version 6 Make Connectivity Easy 2006 Giritech A/S. 1 G/On Basic Best Practices Reference Guide v.6 Table of Contents Scope...3 G/On Server Platform

More information

HMS Industrial Networks. Putting industrial applications on the cloud

HMS Industrial Networks. Putting industrial applications on the cloud HMS Industrial Networks Putting industrial applications on the cloud Whitepaper Best practices for managing and controlling industrial equipment remotely. HMS Industrial Networks Inc 35 E Wacker Drive,

More information

Securing Industrial Control Systems Secure. Vigilant. Resilient. May 2015

Securing Industrial Control Systems Secure. Vigilant. Resilient. May 2015 Securing Industrial Control Systems Secure. Vigilant. Resilient. May 2015 Cyber Security Securing industrial control systems: Don t be a victim of cyber-attacks Cyber security Just as the workplace is

More information

Protect Web Sites from Cyber Attacks

Protect Web Sites from Cyber Attacks www.thales-esecurity.com Protect Web Sites from Cyber Attacks Henry Ng, CISSP-ISSAP CISA ISC2 Authorized Instructor Head of Consulting Services Thales e-security Jan 9, 2015 2 3 Lessons learnt The worst

More information

Experience the Difference.

Experience the Difference. Experience the Difference. experience the Advanced Mobile Group Difference Founded on a commitment to service, accessibility and hands-on support, Advanced Mobile Group understands how a mobile computing

More information

TLP WHITE. Denial of service attacks: what you need to know

TLP WHITE. Denial of service attacks: what you need to know Denial of service attacks: what you need to know Contents Introduction... 2 What is DOS and how does it work?... 2 DDOS... 4 Why are they used?... 5 Take action... 6 Firewalls, antivirus and updates...

More information

Connecting things. Creating possibilities. A point of view

Connecting things. Creating possibilities. A point of view Connecting things. Creating possibilities. A point of view Is the next technological revolution already here? The Internet of Things is already transforming our daily lives, our health, education and businesses.

More information

Automation Suite for. 201 CMR 17.00 Compliance

Automation Suite for. 201 CMR 17.00 Compliance WHITEPAPER Automation Suite for Assurance with LogRhythm The Massachusetts General Law Chapter 93H regulation 201 CMR 17.00 was enacted on March 1, 2010. The regulation was developed to safeguard personal

More information

Cyber Security An Exercise in Predicting the Future

Cyber Security An Exercise in Predicting the Future Cyber Security An Exercise in Predicting the Future Paul Douglas, August 25, 2014 AUDIT & ACCOUNTING + CONSULTING + TAX SERVICES + TECHNOLOGY I www.pncpa.com I www.pntech.net What is Cyber Security? Measures

More information

Bring Your Own Internet of Things BYO-IoT

Bring Your Own Internet of Things BYO-IoT Bring Your Own Internet of Things BYO-IoT Carsten Eiram Chief Research Officer che@riskbasedsecurity.com / @CarstenEiram Jake Kouns Chief Information Security Officer jake@riskbasedsecurity.com / @jkouns

More information

Enterprise Application Enablement for the Internet of Things

Enterprise Application Enablement for the Internet of Things Enterprise Application Enablement for the Internet of Things Prof. Dr. Uwe Kubach VP Internet of Things Platform, P&I Technology, SAP SE Public Internet of Things (IoT) Trends 12 50 bn 40 50 % Devices

More information

Enterprise Mobility: A Market Perspective!!

Enterprise Mobility: A Market Perspective!! Enterprise Mobility: A Market Perspective!! Paul Black Director Telecommunications and Media IDC Middle East, Africa & Turkey Email: pblack@idc.com Direct: +971 4 446 3106 3 rd Platform Trillions of Things

More information

The Internet of Things. Giles Norman MobileFirst Consulting Manager, IBM. Daniel Dombach Director EMEA, Industry Solutions, Zebra Technologies

The Internet of Things. Giles Norman MobileFirst Consulting Manager, IBM. Daniel Dombach Director EMEA, Industry Solutions, Zebra Technologies The Internet of Things Giles Norman MobileFirst Consulting Manager, IBM Daniel Dombach Director EMEA, Industry Solutions, Zebra Technologies Internet of Things Daniel Dombach Director EMEA Industry Solutions

More information

Manufacturing Market space, barriers to entry & opportunities Glenn Sayer

Manufacturing Market space, barriers to entry & opportunities Glenn Sayer Manufacturing Market space, barriers to entry & opportunities Glenn Sayer Principal Sales Engineer Software Specialist MFG NA Manufacture Industry Segments Staff Communications & Management Mobile Operator

More information

Security for the Internet of Things (IoT) John Yeoh, IoT Working Group

Security for the Internet of Things (IoT) John Yeoh, IoT Working Group Security for the Internet of Things (IoT) John Yeoh, IoT Working Group Cloud Security Alliance, 2015 Agenda Introduction IoT Security Challenges IoT Threat Discussion Working Group Activities Cloud Security

More information

8 Steps for Network Security Protection

8 Steps for Network Security Protection 8 Steps for Network Security Protection cognoscape.com 8 Steps for Network Security Protection Many small and medium sized businesses make the mistake of thinking they won t be the target of hackers because

More information

Emerging Security Technological Threats

Emerging Security Technological Threats Emerging Security Technological Threats Jamie Gillespie Training and Education Team Leader, AusCERT About AusCERT Australia s national CERT Collect, monitor, advise on threats and vulnerabilities Incident

More information

HMS Industrial Networks

HMS Industrial Networks HMS Industrial Networks Putting industrial applications on the cloud Whitepaper Best practices for managing and controlling industrial equipment remotely. HMS Industrial Networks AB Stationsgatan 37 30245

More information

www.cadline.co.uk www.midastechnology.co.uk Page 1 of 5

www.cadline.co.uk www.midastechnology.co.uk Page 1 of 5 Page 1 of 5 Support Are you confident that you have all eventualities covered and that your current IT support provider can handle all of your issues? Are you frustrated with your application supplier

More information

Enterprise Security Architecture for Cyber Security. M.M.Veeraragaloo 5 th September 2013

Enterprise Security Architecture for Cyber Security. M.M.Veeraragaloo 5 th September 2013 Enterprise Security Architecture for Cyber Security M.M.Veeraragaloo 5 th September 2013 Outline Cyber Security Overview TOGAF and Sherwood Applied Business Security Architecture (SABSA) o o Overview of

More information

External Supplier Control Requirements

External Supplier Control Requirements External Supplier Control s Cyber Security For Suppliers Categorised as Low Cyber Risk 1. Asset Protection and System Configuration Barclays Data and the assets or systems storing or processing it must

More information

8 Steps For Network Security Protection

8 Steps For Network Security Protection 8 Steps For Network Security Protection 8 Steps For Network Security Protection Many small and medium sized businesses make the mistake of thinking they won t be the target of hackers because of their

More information

Cyber Security. A professional qualification awarded in association with University of Manchester Business School

Cyber Security. A professional qualification awarded in association with University of Manchester Business School ICA Advanced Certificate in Cyber Security A professional qualification awarded in association with University of Manchester Business School An Introduction to the ICA Advanced Certificate In Cyber Security

More information

The Impact of IoT for Building Service Contractors

The Impact of IoT for Building Service Contractors The Impact of IoT for Building Service Contractors info@thinglogix.com www.thinglogix.com 1 Table of Contents The Impact of IoT for Building Service Contractors 2. What is IoT? 3. Increase HVAC system

More information

Ecom Infotech. Page 1 of 6

Ecom Infotech. Page 1 of 6 Ecom Infotech Page 1 of 6 Page 2 of 6 IBM Q Radar SIEM Intelligence 1. Security Intelligence and Compliance Analytics Organizations are exposed to a greater volume and variety of threats and compliance

More information
2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback | Do Not Sell My Personal Information