Chemical Sector Cyber Security Program



Similar documents
Roadmaps to Securing Industrial Control Systems

Rethinking Cyber Security for Industrial Control Systems (ICS)

Priority III: A National Cyberspace Security Awareness and Training Program

DHS, National Cyber Security Division Overview

Actions and Recommendations (A/R) Summary

The Cybersecurity Framework and the SAFETY Act a Primer for Temple Business School

TESTIMONY OF DANIEL DUFF VICE PRESIDENT - GOVERNMENT AFFAIRS AMERICAN PUBLIC TRANSPORTATION ASSOCIATION BEFORE THE

RE: Experience with the Framework for Improving Critical Infrastructure Cybersecurity

Preventing and Defending Against Cyber Attacks June 2011

Help for the Developers of Control System Cyber Security Standards

Docket No. DHS , Notice of Request for Public Comment Regarding Information Sharing and Analysis Organizations

Thomas J. Schlagel Chief Information Officer, BNL

PREPUBLICATION COPY. More Intelligent, More Effective Cybersecurity Protection

STATEMENT OF. Dr. David McClure Associate Administrator Office of Citizen Services and Innovative Technologies General Services Administration

Why you should adopt the NIST Cybersecurity Framework

Table of Contents. Acknowledgments. developed by the Critical Infrastructure Partnership. Acknowledgements...1

7 Homeland. ty Grant Program HOMELAND SECURITY GRANT PROGRAM. Fiscal Year 2008

How To Write A Cybersecurity Framework

Preventing and Defending Against Cyber Attacks November 2010

Business Plan 2012/13

( 4EC C11392)

CForum: A Community Driven Solution to Cybersecurity Challenges

ADVANCED DISTRIBUTION MANAGEMENT SYSTEMS OFFICE OF ELECTRICITY DELIVERY & ENERGY RELIABILITY SMART GRID R&D

MARYLAND. Cyber Security White Paper. Defining the Role of State Government to Secure Maryland s Cyber Infrastructure.

National Security & Homeland Security Councils Review of National Cyber Security Policy. Submission of the Business Software Alliance March 19, 2009

cyberr by e-management The Leader in Cybersecurity Risk Intelligence (RI) Cybersecurity Risk: What You Don t Know CAN Hurt You!

ESKISP Direct security testing

An Overview of Large US Military Cybersecurity Organizations

Department of Homeland Security

Middle Class Economics: Cybersecurity Updated August 7, 2015

NIST Cybersecurity Framework. ARC World Industry Forum 2014

DHS Cyber Security & Resilience Resources: Cyber Preparedness, Risk Mitigation, & Incident Response

Water Security in New Jersey: Partnership and Services

CyberSecurity Solutions. Delivering

Cloud Cyber Incident Sharing Center (CISC) Jim Reavis CEO, Cloud Security Alliance

Written Statement of Richard Dewey Executive Vice President New York Independent System Operator

Release of the Draft Cybersecurity Procurement Language for Energy Delivery Systems

State Agency Cyber Security Survey v October State Agency Cybersecurity Survey v 3.4

Business Continuity for Cyber Threat

How To Protect Your Data From Being Hacked

NHTSA S AUTOMOTIVE CYBERSECURITY RESEARCH. Arthur Carter, Frank Barickman, NHTSA

Cybersecurity in the States 2012: Priorities, Issues and Trends

PROTECTING CRITICAL CONTROL AND SCADA SYSTEMS WITH A CYBER SECURITY MANAGEMENT SYSTEM

FS-ISAC CHARLES BRETZ

RESPONSIBLE CARE SECURITY CODE OF MANAGEMENT PRACTICES

NH!ISAC"ADVISORY"201.13" NATIONAL"CRITICAL"INFRASTRUCTURE"RESILIENCE"ANALYSIS"REPORT""

Testimony of Dan Nutkis CEO of HITRUST Alliance. Before the Oversight and Government Reform Committee, Subcommittee on Information Technology

NGA Paper. Act and Adjust: A Call to Action for Governors. for cybersecurity;

Dealer Member Cyber-security

ITU National Cybersecurity/CIIP Self-Assessment Toolkit. Background Information for National Pilot Tests

2 Gabi Siboni, 1 Senior Research Fellow and Director,

The Cybersecurity Journey How to Begin an Integrated Cybersecurity Program. Version 1.0 March 2005

AT&T Cybersecurity Policy Overview

Department of Homeland Security Information Sharing Strategy

Computer and Network Security in Higher Education

The Comprehensive National Cybersecurity Initiative

National Initiative for Cyber Security Education

CYBER SECURITY GUIDANCE

The NIST Cybersecurity Framework

Experience the commitment WHITE PAPER. Information Security Continuous Monitoring. Charting the Right Course. cgi.com 2014 CGI GROUP INC.

State Homeland Security Strategy (2012)

STATE OF NEW HAMPSHIRE STRATEGIC PLAN TO ADDRESS CYBER CRIME

How to Use the Federal Risk and Authorization Management Program (FedRAMP) for Cloud Computing

How To Understand And Manage Cybersecurity Risk

Testimony of. Mr. Anish Bhimani. On behalf of the. Financial Services Information Sharing and Analysis Center (FS-ISAC) before the

Which cybersecurity standard is most relevant for a water utility?

Quantum Dawn 2 A simulation to exercise cyber resilience and crisis management capabilities. October 21, 2013

Department of Homeland Security Federal Government Offerings, Products, and Services

Subject: Critical Infrastructure Identification, Prioritization, and Protection

Managing Cyber Risks to Transportation Systems. Mike Slawski Cyber Security Awareness & Outreach

December 17, 2003 Homeland Security Presidential Directive/Hspd-7

Cybersecurity Audit Why are we still Vulnerable? November 30, 2015

How To Write A National Cybersecurity Act

Critical Infrastructure Security and Resilience

NATIONAL STRATEGY FOR GLOBAL SUPPLY CHAIN SECURITY

BlacKnight. Cyber Security international A BUSINESS / MARKETING PRESENTATION

Statement of Gil Vega. Associate Chief Information Officer for Cybersecurity and Chief Information Security Officer. U.S. Department of Energy

Critical Infrastructure Security & Resilience Month 2014 Toolkit

Action Plan for Canada s Cyber Security Strategy

National Initiative for Cybersecurity Education

ENERGY SECTOR CYBERSECURITY FRAMEWORK IMPLEMENTATION GUIDANCE

NICE and Framework Overview

SDN Security Challenges. Anita Nikolich National Science Foundation Program Director, Advanced Cyberinfrastructure July 2015

ESKISP Conduct security testing, under supervision

Transcription:

Chemical Sector Cyber Security Program Christine Adams, Director, Chemical Sector Cyber Security Program Neil Hershfield, Director, CIDX Cyber Security Initiative

Cyber Security Program Leadership Executive Board Sponsor David Kepler, Dow Chemical Executive Sponsors Tom Archibald, Rohm & Haas Mack Murrell, Dow Chemical Steering Team Thomas Good, DuPont Cheryl Flannery, Air Products Theresa Jones, Dow Chemical Neil Hershfield, Dow Chemical Lynn Richard, Rohm & Haas Phillip Shupe, Eastman Chemical

Where We Began Sector-wide cyber security initiative launched in March 2002 Chemical Sector Cyber Security Information Sharing Forum Created to address the cyber security challenge Consists of senior-level staff representatives from ten trade associations First action was to appoint a taskforce to create a sector-wide cyber security strategy Chemical Sector Cyber Security Strategy published in June 2002 Appended to National Strategy to Secure Cyberspace in February 2003 Chemical Sector Cyber Security Program established in the Fall 2002 to put our strategy into action

Addressing Five Key Components of Cyber Security Strategy Fostering involvement and commitment Encouraging the establishment of practices and standards Encouraging acceleration of improved technology and solutions Strengthening the industry s information sharing network Maintaining an active cyber security public advocacy program December 16, 2005

Leveraging Proven Sector Initiatives Chemical Trade Associations (Forum) Involvement and commitment Public advocacy Chemical Industry Data Exchange (CIDX ) Practices and standards Technology acceleration Chemical Sector Information Sharing & Analysis Center (ISAC) Information sharing

We Have Been Busy! Forging a relationship with the Department of Homeland Security Partnering with representatives from other critical infrastructure sectors to develop the voice of the end user Studying developments in the information sharing arena and recommending an approach for our industry Enhancing guidance documents and developing tools to facilitate implementation of Program recommendations Developing a toolkit to help trade associations establish an effective cyber security program

Guidance Documents Cyber Security Architecture Reference Model Report on the Evaluation of Self-Assessment Tools and Methods Version 1.0 Report on Cyber Security Vulnerability Assessment Methodologies Version 2.0 Guidance for Addressing Cyber Security in the Chemical Sector Version 2.1 The Cyber Security Journey How to Begin an Integrated Cyber Security Program Security Technologies for Manufacturing and Control Systems (ISA) Integrating Electronic Security into the Manufacturing and Control Systems Environment (ISA) Security Capabilities Profile for Industrial Control Systems (NIST)

White Papers and Webcasts White Papers A Case for Taking Action on Cyber Security Making the Case for Addressing Cyber Security in Manufacturing Control Systems Key Technology Issues Webcasts Completed Chemical Sector Cyber Security Executive Briefing Webcasts in Development Understanding Cyber Security Risks Overall Guidance Case Study: Implementing Guidance Vulnerability Assessment Methodology Reference Model

New Look to Chemical Industry Cyber Security Effort Two leading cyber security efforts CIDX Cyber Security Initiative Chemical Sector Cyber Security Program Industry bringing them together to more effectively respond to emerging sector needs Transition planned for completion on January 1, 2006 Neil Hershfield will assume Christine Adams responsibilities as Program Director December 16, 2005 The consolidated organization will operate as the Chemical Sector Cyber Security Program under ChemITC.

Big Plans for 2006 Shift emphasis from developing guidance to facilitating implementation through industry trade associations Expand external reach, partnering with critical infrastructure sectors and DHS Promote manufacturing and control systems security through proactive engagement in standards bodies and government programs

2006 Project Teams Engage Trade Associations Communication Material and Outreach Technology Team Manufacturing and Control Systems European Team Information Sharing RAMCAP (Risk Analysis and Management for Critical Asset Protection)

Designed to Help Your Company Improve cyber security measures Protect continuity of business operations Access cost effective practices for risk mitigation and information sharing Influence public policy related to chemical sector cyber security concerns Improve public safety and reduce potential effects of cyber security incidents on all stakeholders Employees, Customers, Investors, Communities, Government

Chemical Industry Success Depends on You Our success as a sector depends on everyone s involvement All companies large and small are encouraged to: Get involved with one or more of the Cyber Security Program work teams Take advantage of the Program and its resources Make cyber security a company priority Use available guidance and tools to enhance cyber security performance Open the lines of communication between your company s organizations that manage security manufacturing, information technology, process control and R&D

Join a Project Team Today! If you are interested in having someone from your company participate on one or more Cyber Security Project Teams, please contact: Neil Hershfield By e-mail nhershfield@dow.com By phone 989.636.4444 Or before you leave today!

Working together across the sector We can help prevent, be prepared for, and better able to respond to significant cyber-based infrastructure attacks. Thank You!

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information