Complimentary Webinar:

ICS Cybersecurity – The Power of Regulation Versus Well-Oiled Industry Standards

Tuesday, April 25, 2017
Time: 1 pm EDT

Duration: 60 Minutes

It has become an ongoing debate – does government or self-regulation work better to secure an industry? The power industry is currently on NERC CIP Version 6 of its regulatory requirements with future regulations expected on supply chain security. Oil & gas (O&G) has no such regulatory regime, but does have standards that it uses to reduce cybersecurity risk, such as NIST 800-82 and IEC 62443. For O&G, compliance is an internally generated activity.

Which of these two different drivers for industrial control system (ICS) cybersecurity is better? Who is more prepared for the ever-evolving threat landscape facing today’s critical infrastructure? Please join us to hear two industry veterans – one from Power and one from O&G – debate the merits of both approaches. Is O&G nimbler in responding to state-sponsored and insider threats? What does success look like having a government partner in Power? How do both industries fare in light of the growing specter of ransomware? What are common best practices that both industries can recommend to secure industrial control systems?

Learn from their experience working within their respective areas and what companies must do to secure process control networks. David Batz will share his policy perspective based on years working within the electric power industry. Mr. Batz is the current senior director for Edison Electric Institute, a trade association representing investor-owned utilities that are responsible for 70% of U.S. power generation. For the O&G perspective, Jason Howard-Grau will share lessons learned from the front lines of securing energy production facilities. Mr. Howard-Grau is the chief information security officer (CISO) at PAS and is the former CISO at MOL Group, a major oil and gas firm with operations in 36 European countries.

What you will learn:
  • How different drivers in the Oil & Gas and Power industries work to guard against cybersecurity threats and the merits of each approach.
  • How each industry is faring in their efforts to counter ransomware attacks. 
  • What companies must do to secure process control networks based on the lessons learned by experts within their respective industries.
Who should attend:
  • Automation Management
  • CEO
  • CISO
  • CIO
  • Corporate Security
  • CSO
  • Cybersecurity Engineering
  • VP / Director of Cybersecurity
  • ICS cybersecurity professionals
  • IT Automation Asset Management
  • Operational Technology (OT) Engineering
  • Plant Operations
  • Regulatory Compliance
  • Reliability Engineering

Hear from these experts:
David Batz
Senior Director of Cyber and Infrastructure Security
Edison Electric Institute
David Batz is the director of cyber and infrastructure security at Edison Electric Institute. David assists members with understanding and applying appropriate security solutions to address emerging threats and issues, including the Internet of Things (IoT). He has provided professional technology and security solutions and services for 30 years, with over 20 years of experience working with owners and operators within the energy sector. In addition to providing in-depth technical knowledge of security and network issues, David  leverages over a decade of energy, and regulatory compliance as well as physical and cyber security policy experience and engagement with federal agencies, including the Department of Energy and the Department of Homeland Security.

Jason Haward-Grau 
Chief Information Security Officer (CISO)
PAS, Inc.
Jason Haward-Grau is the chief information security officer at PAS, Inc. Jason is a veteran technology leader with more than 22 years of cybersecurity and advisory experience within both operational and information technologies. Prior to joining PAS, Jason was the CISO at MOL Group, an integrated oil and gas company with operations in over 30 countries, where he owned and developed the company’s cybersecurity strategy. Prior to MOL Group, Jason held information technology (IT) leadership positions at both Burberry and Vodafone, where he was Global Head of Cyber Security Operations & Program Delivery. Previously, Jason was a Senior Advisor at KPMG focusing on IT and cybersecurity within the Financial Services, Petrochemical, and Telecommunication sectors. Jason has held other IT leadership roles at GlaxoSmithKline, Diageo, Impact Plus, and the Royal Bank of Scotland.

Aaron Larson
Executive Editor
Aaron is an engineer who has worked at nuclear, biomass, and coal power plants, where he gained significant operations, maintenance, safety, financial, and management experience. He has also served in the Navy, earned a BS in nuclear engineering technology from Thomas Edison State College, holds an MBA in financial management from City University of Seattle, and is credentialed as a Chief “A” Boiler Engineer. Aaron writes news and feature stories on a variety of topics.
Already Registered? Log In Now

Complete this form to register for the webinar.
(* indicates required field)