Security Management Program Development:

Transcription

1 Security Management Program Development: A Critical Infrastructure Protection Model July 15 16, 2015 Earn up to 15 CPEs EXPERIE NCE, DED IC ON AT I D, AN LEA DE RS HIP IN SE R CU ITY E C DU AT IO N

2 Are you confident in your ability to create an integrated, end-to-end security program? Can you confidently answer these questions? What standards, models, and resources do utilities utilize to design programs to protect critical infrastructure? How do law enforcement and the intelligence community factor into a security plan? How are different security solutions aligned with varying complexities of security problems while maintaining an integrated security focus? What does an integrated security risk management program look like? How are metrics used to build on security program success? What is the standard for physical security protection in critical infrastructure? How can cyber-security be effectively integrated into an enterprise security program? Join us in New Orleans and get the answers! This program provides protection planning information using practical, real life examples from the diverse and complex utilities, critical infrastructure protection domain. A broad array of security solutions with sound protection philosophy is applied culminating in a fully integrated, end-to-end security program that any industry can apply in part or in whole. Learn how utilities security professionals are adapting to the new reality of integrated security management. Come away with valuable resources to assist you in your own security program Sponsored by planning. the ASIS Utilities Security Council and the Critical Infrastructure Working Group RETURN ON YOUR INVESTMENT Expand your knowledge of security program development and application. Learn how to integrate complex and diverse security solutions into a cohesive, functioning security program. Benefit from the expertise of experienced professionals who have not only developed security plans and programs for many of North America s largest utilities in order to protect critical infrastructure, but have also worked with governments, regulatory bodies, and law enforcement to develop fully integrated and comprehensive security solutions, compliance programs, and security frameworks. PROFESSIONALLY DEVELOPED FOR Physical and cyber security managers and directors Risk managers Specialists/managers/directors of critical infrastructure security programs Homeland security specialists and managers Business continuity planners Facility and infrastructure managers Emergency management professionals Professionals preparing to take the CPP or PSP exams Senior risk managers Register by May 16 for earlybird rates!

3 PROGRAM OVERVIEW Security Program Development and Effective Risk Management Review risk management standards and risk assessment tools. Review how risk management is used to mitigate threats for enhanced security planning. Learn to plot risk for enterprise risk management alignment; determine your risk tolerance; and learn how to use integrate physical, IT, and operational technology (OT) risk management. Standards and Guidelines Examine the difference and learn why we need both. See how they can be used in the assessment process. Sample security standards will be reviewed. A call for involvement will be presented as well. Program Design: Complex Security Problems, the Utilities View Bring it all together for dams and powerhouses, nuclear plants, reservoirs, Security Governance pipelines, and transmission lines. Acts of Often misunderstood and left unapplied, terrorism, building response programs, a good governance structure is necessary and working with outside agencies will to effective security management. also be included. Security governance, risk, and compliance management are linked as NETWORKING an important triad in the security model. Use this exciting opportunity to collaborate with other security Protection Principles practitioners from diverse industries. Hear Examine the protection principles used from seasoned security professionals. within our security programs. Review in depth defense, deterrence, detection, Program content updates will be posted delay, and response concepts. Critical at asset identification, adversary path applications, worst case scenario planning, response exercises, and the relationship between business continuity, disaster recovery, and safety are covered. Security Program Metrics Review who uses metrics, how to select the best ones for your program, and why they are important especially in promoting your department. Discuss the contribution of security incident management to metrics and learn how useful audits can be using metrics as a baseline. Security Technology Application A fully integrated security program model is necessary in today s security management plan and for futureproofing your security program. Evaluate the capabilities of common physical and cyber security technologies; then learn to measure system effectiveness. Learn how information technology management and operational technology management link to the overall technology applied to the security program.

4 FAST FACTS Registration Hours Tuesday 5:00 6:00 pm Wednesday 7:00 8:00 am Program Hours Wednesday-Thursday 8:00 am 5:15 pm Registration Fees Registration fees include a networking reception, daily refreshment breaks and continental breakfast. Hotel costs are not included. Early-bird 5/16 After 5/16 Member $ 825 $ 925 Nonmember $1,125 $1,225 Program Chair Doug Powel, CPP, PSP Manager, SMI Security, Privacy & Safety BC Hydro & Power Authority Instructors Sarah Bynum, CPP, CISSP Director of Security Siemens Energy, Inc. Darren Nielsen, CPP, PCI, PSP, CISA Senior Compliance Auditor, Cyber and Physical Security Western Electricity Coordinating Council Scott Stephens, CPP Security Design Specialist Austin Water Utility Updates will be posted online Hotel Be sure to mention ASIS when requesting the special room rate of $123 single/double (plus tax). It will be honored until the room block is full or June 22. Hyatt French Quarter 800 Iberville St Team Discounts 10% off when three to five attendees register from the same organization; 15% for six or more. For details, asis@asisonline.org. HOW TO REGISTER Web Phone

5 Upcoming Programs APRIL 2015 JULY CPP, PCI, and PSP Reviews New York, NY Workplace Violence Managing The Program th New York City Security Conference & Expo New York, NY Enhanced Violence Indianapolis, IN Active Shooter Indianapolis, IN MAY High Rise Security Phoenix AZ 4-7 ASIS Assets Protection CourseTM: Practical Applications (APC II) Chicago, IL 7-8 CPP and PSP Reviews In conjunction with PSA-TEC Westminster, CO 20 So You Would Like to be a Writer...It s Easy Executive Protection Certificate Program How Data and Information can be Used to Plan an Attack Security Management Program Development AUGUST Emergency Management Interface with Public Safety Responders SEPTEMBER Bullying, Harassment, Hazing, and Domestic School Violence CPP, PCI, and PSP Reviews Anaheim, CA Pre-Seminar Programs and Tours Anaheim, CA 28-10/1 61st Annual Seminar & Exhibits Anaheim, CA JUNE /2 Education Sessions Sponsored 8-11 Effective Management for by ASIS Gaming and Wagering Security Professionals Protection Council for G2E Madrid, Spain Las Vegas, NV 8-10 Facility Security Design San Antonio, TX OCTOBER Physical Security Systems San Antonio, TX Corporate Investigations Security Force Management San Antonio, TX Physical Security Master Planning ASIS Assets Protection CourseTM: Functional Management (APC III) 21 Retail Data Security: The St. Pete Beach, FL Intersection of the Physical and Digital Worlds 17 The Contract Is Key: Protecting the Professional Security Provider from 3rd Party The Investigative Interviewing Method Liability Risk, Threat, and Vulnerability Assessment Certificate Program 23 Command Center About ASIS International ASIS International (ASIS) is the preeminent organization for security professionals, with more than 38,000 members worldwide. Founded in 1955, ASIS is dedicated to increasing the effectiveness and productivity of security professionals by developing educational programs and materials that address broad security interests, such as the ASIS Annual Seminar and Exhibits, as well as specific security topics. ASIS also advocates the role and value of the security management profession to business, the media, government entities, and the public. By providing members and the security community with access to a full range of programs and services, and by publishing the industry s number one magazine Security Management ASIS leads the way for advanced and improved security performance.

6 Security Management Program Development: A Critical Infrastructure Protection Model July 15 16, 2015 ASIS Delivers Distinctive Security Education Save $100! Register by May 16. Leading security practitioners, who face the same challenges you face, develop and deliver distinctive ASIS programs. They address real-world security issues through personal experiences and by applying theories, proven and tested, by leading security professionals. Your colleagues highly rate ASIS programs for providing best practices and the newest strategies for mitigating ever-changing security threats today s implementation for tomorrow s security. For more information, visit Prince Street Alexandria, VA USA Non-Profit US Postage PAID ASIS