Process Control Systems Forum (PCSF)



Similar documents
RE: Experience with the Framework for Improving Critical Infrastructure Cybersecurity

Help for the Developers of Control System Cyber Security Standards

ISA99 Working Group 5 ISA99 Working Group 5

WORKSHOP Rethinking Cyber Security for Industrial Control Systems

WWHMI SCADA-12 Cyber Security Best Practices in the Industrial World

Federal Office of Small and Disadvantaged Business Utilization (OSDBU) Directors Interagency Council. CHARTER

Committee & Leadership Manual

Cybersecurity for Energy Delivery Systems 2010 Peer Review. Dale Peterson Digital Bond, Inc. Bandolier and Portaledge

Standard for an Architectural Framework for the Internet of Things (IoT) IEEE P2413

How to Develop a Board Member s Job Description

Roadmaps to Securing Industrial Control Systems

CForum: A Community Driven Solution to Cybersecurity Challenges

Using Microsoft SharePoint for Project Management

( 4EC C11392)

ISA Security. Compliance Institute. Role of Product Certification in an Overall Cyber Security Strategy

Guidebook for Establishing Diversity and Inclusion Employee Resource Groups

Project Plan RESIDENTIAL PARKS ACT Review Project

St Johns County CoC Governance Charter St Johns County Continuum of Care St Johns County Continuum of Care Board Purpose of the CoC and CoC Board

Integration Mgmt / Initiating Process Group 4.1 Develop Project Charter

Business Process Management's Success Hinges on Business-Led Initiatives

Integrated Information Services (IIS) Strategic Plan

Managing Cyber Risks to Transportation Systems. Mike Slawski Cyber Security Awareness & Outreach

ISA Security Compliance Institute ISASecure IACS Certification Programs

Control Systems Cyber Security Standards Support Activities

2014 Annual General Meeting. Date: Monday 7 th July 2014 Time: 5:45pm for 6:00pm start Venue: Executive Centre, Level 4 B Block, QUT Gardens Point

Security Metrics for Process Control Systems

Options for creating working groups, task forces and editorial boards to facilitate the implementation of the work plan. Note by the secretariat

Multicultural Council of Tasmania GUIDE FOR MANAGEMENT COMMITTEE MEMBERS

Virtual Team Collaboration Glossary

INCOSE Automotive Working Group Charter

Statement of Gil Vega. Associate Chief Information Officer for Cybersecurity and Chief Information Security Officer. U.S. Department of Energy

Initiating Forms COPYRIGHTED MATERIAL 1.0 INITIATING PROCESS GROUP

DPC - Strategy and Project Delivery Unit Project Management Methodology. Updated April 2010

ITS Project Management

September 4, appearing before you today. I am here to testify about issues and challenges in providing for

Project Integration Management

VOMI Global Think Tank and Advisory Board Charter. Charter of the Board and Board Structure

Guidance for ISO liaison organizations Engaging stakeholders and building consensus

DHS, National Cyber Security Division Overview

Vendor Relations and Changing Software

The Standard for Portfolio Management. Paul E. Shaltry, PMP Deputy PM PPMS ( ) BNS02

Energy Storage Safety Plan Implementation Kickoff

Nationwide Cyber Security Review (NCSR) Frequently Asked Questions

Testimony of. Mr. Anish Bhimani. On behalf of the. Financial Services Information Sharing and Analysis Center (FS-ISAC) before the

September 28, MEMORANDUM FOR. MR. ANTONY BLINKEN Deputy Assistant to the President and National Security Advisor to the Vice President

World Diamond Council

STATEMENT THOMAS P. MICHELLI CHIEF INFORMATION OFFICER U.S. IMMIGRATION AND CUSTOMS ENFORCEMENT DEPARTMENT OF HOMELAND SECURITY REGARDING A HEARING ON

Dr. Starnes E. Walker Founding Director, Cybersecurity Initiative (302)

AIPLA Trade Secret Committee Report

Federal Facilities Council Workshop: Cyber Resilience of Building Control Systems-----Nov 17-19, Washington, DC

ISA-99 Industrial Automation & Control Systems Security

NIST Cloud Computing Program Activities

Concept of Operations for Line of Business Initiatives

Basel Committee on Banking Supervision. Charter

The 10 Knowledge Areas & ITTOs

Cybersecurity Guidance for Industrial Automation in Oil and Gas Applications

Cybersecurity in a Mobile IP World

Draft Requirements Management Plan

Policies and Procedures Communications Quality & Reliability (CQR) Technical Committee

Research and Educational Networking Information Analysis and Sharing Center (REN-ISAC)

Cisco Unified Communications and Collaboration technology is changing the way we go about the business of the University.

The University of Texas at Austin BYLAWS OF THE GRADUATE STUDENT ASSEMBLY. ARTICLE I Objectives

NIST Cybersecurity Initiatives. ARC World Industry Forum 2014

MARYLAND. Cyber Security White Paper. Defining the Role of State Government to Secure Maryland s Cyber Infrastructure.

2. OVERVIEW OF THE PRIVATE INFRASTRUCTURE

BYLAWS OF THE ALABAMA ASSOCIATION FOR COUNSELOR EDUCATION AND SUPERVISION ARTICLE 1 NAME AND PURPOSES

IEEE Power and Energy Society (PES) Policies and Procedures for: Working Groups. Approved 2014 April 23 IEEE Transmission & Distribution Committee

California Counties Information Security Programs A look into the progress and future plans across counties

The SASNM was founded in It has since grown to an organisation of approximately 180 members.

PASTORAL COUNCIL CONSTITUTION AND BYLAWS SANTA CRUZ CATHOLIC CHURCH BUDA, TEXAS

JAD Guidelines. Description

By-Laws of the North American Society of Adlerian Psychology

ENERGY SECTOR CYBERSECURITY FRAMEWORK IMPLEMENTATION GUIDANCE

PROPOSED MANDATE FOR THE GLOBAL PARTNERSHIP FOR EFFECTIVE DEVELOPMENT CO-OPERATION

Board Governance Principles Amended September 29, 2012 Tyco International Ltd.

MARYLAND SOCIETY OF PROFESSIONAL ENGINEERS BYLAWS

A shift in responsibility. More parties involved Integration with other systems. 2

Corporate Governance Statement

Transcription:

Process Control Systems Forum (PCSF) Michael Torppey Technical Manager, PCSF Senior Principal, Mitretek Systems Collaborating to Advance Control System Security

Background Department of Homeland Security (DHS), Science and Technology (S&T) directorate / National Cyber Security Division (NCSD) Identified need in 2004 Mitretek Systems Chosen to Manage and Operate Nonprofit 501(c)(3) corporation focused on engineering and scientific research that operates in the public interest Avoids business relationships that might create a potential conflict of interest or otherwise influence its objectivity and independence Formational Meeting - February 9, 2005, Falls Church, Virginia Included over 40 leaders from control system community Confirmed need for the PCSF and potential value to the control system community Established initial Interest Groups and Interim Governing Board 2

Mission Accelerate response to the problem of securing SCADA and control systems in place among critical infrastructure Improve efficiency by unifying International stakeholders across government, academia, vendors, and industry sectors Collaborative venue structure supported by general meetings, workshops, liaison opportunities, and Web site Governed by select representatives from public/private stakeholders 3

Objectives Identify consensus cross-industry and cross-functional issues that require resolution, and determine a path and effort that is owned, traceable, and produces generally acceptable solutions. Aggregate information about current organizations, their efforts, directions, and work product from across multiple sectors to increase visibility and reduce redundancy. Cross-connect decision-makers from industry, government, vendors, and academia, in ways that promote increased understanding of requirements and opportunities for collaboration. Impact a broad portion of the control system community through procedures, methods, guidelines, best practices, and other resources, issued through organizations that participate in the PCSF. 4

Process Control Systems Forum A Model for Cross-Sector Collaboration Oil PCSRF Chemical Nuclear Power Industry Sectors Owner/Operators Water Gas Electric Sector Representations Standards IEEE NERC Standards API AGA ISA IEC NCSD Honeywell TSWG ORD Department of Homeland Security US-CERT ISAC HSARPA Dept of Homeland Security Process Control Systems Forum Vendors Siemens Rockwell Vendors Emerson Invensys INL National Labs Academia IFAC ARGONNE National Labs LLNL Academia SANDIA PNNL I3P A2C2 5

Governance Interim Governing Board Provides guidance on issues of strategy, management, process, and conflict resolution Interim Governing Board (IGB) will begin the transition to an elected board with a Call for Nominations during the PCSF 2006 Spring Meeting. IGB Members: Bill Rush - Vice Chair Robert Clerman - Forum Director, Acting Chair Tom Flowers (Electric Industry) Mark Heard (Chemical Industry) Seth Johnson (Water and Waste Management) Hank Kenchington (National Labs) R. Russell Rhinehart (Academia) Bryan Singer (Vendor Community) Keith Stouffer (Government) David Poczynek (Oil & Gas Industry) 6

Action Elements PCSF is a venue supporting: Information dissemination on relevant programs, activities, initiatives and results Pipeline topics that are recently introduced to the community Continuity for idea and solution building Establishment of interest and working groups to address common, cross-sector issues and produce work products as an end-result Working environment to complete deliverables and action plans established after working group formation 7

Interest Groups (IG) and Working Groups (WG) Interest Groups (IG) Formed out of cross-sector consensus views on common issues Aggregate participants facing similar challenges Tools, administration, structure and venue is provided to form an Interest Group Progress towards a Working Group with the development of an action plan, deliverables, milestones, roles Working Groups (WG) Open, continuous, voluntary, collaboration among participants Address specific problems Produce one or more deliverables Bring results back to the community or hand-off to an organization that can make use of the information towards their own end-goal Possibility of Funding 8

Get Involved in an IG or WG In La Jolla: Look over the program; Wednesday dedicated to workshops Bring your knowledge to an existing IG/WG Seek others with similar issues and organize an ad-hoc meeting (IG) Work with Presenters to migrate pipeline topics into IGs After La Jolla: Create an IG anytime on the Web site Can be a few people or an organized group Can come from a PCSF meeting or from other events Join an IG/WG anytime via their content area Invite key people from an IG/WG to speak, or meet at an event sponsored by your affiliation. 9

PCSF WG and IG **Congress of Chairs **Control System Security Event Monitoring **SCADA Cyber Self- Assessment Education and Training Safe Zone for Critical Information Sharing System Analysis and Modeling Control Systems Research Control System Technical Security Metrics Business Case Development US-CERT Control System Security Center Industry Group Chair Dr. William Rush Chair Mr. Dale Peterson Chair Mr. Brian Isle Chair Dr. John Saunders Chair Ms. Rita Wells Chair Mr. Dennis Holstein Chair Dr. Ann Miller Chair Mr. Miles McQueen Chair Mr. Ernest Rakaczky Chair Mr. Jeff Hahn ** - Working Group 10

Web Site The PCSF Web site (www.pcsforum.org) provides the means for information retrieval, structure, workflow, and collaboration on a continuous basis News and Press Releases Account Management Interest and Working Group Content and Collaboration Reference Library Calendar of Events Presentations Governance Board Information 11

PCSF Support Tools Meetings Bi-annual Forum Meetings Face to Face Meetings Desktop Sharing Meetings (LiveMeeting) Teleconferences Web site Funding Marketing Liaison Representation 12

Past Meetings 2005 Spring Meeting May 17-18, 2005 in Dallas, Texas Over 140 attendees representing owner/operators, government, academia, and vendors International Standards Coordination Meeting August 25-26, 2005 in Albuquerque, New Mexico PCSF Congress of Chairs (CoC) Working Group Meeting Improve quality of control system security standards through information exchange 80+ representatives from international control systems standards bodies attended 2005 Fall Meeting October 25-27, 2005, Chicago, Illinois Held in conjunction with the 2005 ISA EXPO 13

PCSF 2006 Spring Meeting Objectives Include All Sector Representatives Ensure action plans and solutions receive a complete review to obtain universal agreement on outcome Continue to invite representatives from all sectors to participate in governance and structure of the Forum Increase information sharing, cross-pollinate organizations, and collaborate on quality output Accelerate productivity and efficiency of our IG and WG Draw interest in Group objectives from new participants Draw upon experience and knowledge Identify potential users of the work product Transition Interest Groups to Working Groups Use open dialogue to form consensus on issues and identify achievable action items that can form the basis for a transition to Working Group status 14

PCSF 2006 Spring Meeting Objectives (concluded) Working Group Charters Strategize appropriate methods for completion of deliverables Accelerate current Working Group activities to achieve measurable results Increase International Communication Establish relationships with prominent international organizations Highlight accomplishments of international organizations and provide opportunities to grow each others programs Uncover opportunities to host a PCSF Meeting outside the U.S. Establish PCSF Value Highlight PCSF accomplishments and valuable accomplishments from other organizations activities Identify high priority, consensus issues to discuss/work further Evolve Interest and Working Groups that meet the current challenges faced by the control system community Increase the size and variety of our participant base 15

Final Words Make sure you get something out of this Stay involved Connect others to the PCSF 16

Questions? Michael Torppey Michael.torppey@mitretek.org 703-610-2074 www.pcsforum.org 17