What Lies Beneath: Avoiding the Unseen Dangers of OT Vulnerabilities

Tuesday, October 10, 2017
Time: 11 am EDT

Duration: 60 Minutes

Remember the movie Jaws? On the surface, the ocean seemed quiet and unaffected, but lurking just beneath was a 25-foot great white shark waiting to strike without warning. In today’s power plants and facilities, process control networks (PCNs) have their own sharks swimming just below the surface: vulnerabilities.

Regulatory standards continue to progress with a more objectives-based approach than in the past. This means changes are required in how power companies address vulnerability management. The recently ratified CIP-013 standard, for instance, tackles supply chain risk that when implemented will drive enhanced detection, remediation, and mitigation capabilities. Vulnerability management must evolve from an IT-based approach to a comprehensive OT one that includes workstations and routers as well as controllers, smart field instruments, and more.

In this webinar, Steven Parker, Managing Partner of Archer Security Group and President of Energy Sector Security Consortium (EnergySec), and Scott Hollis, Director of Product Management at PAS, will discuss the state of vulnerability management within the power industry today, discuss where gaps exist and the NERC CIP regulatory changes that will drive change, as well as exchange best practices that leading power companies are employing to address risk. 

What the viewers will learn:   
  • The state of vulnerability management practices today 
  • Vulnerability management gaps and regulatory impacts to organizations
  • Security best practices that address all cyber assets within a power plant

Who should attend:

  • Plant operations
  • Automation Managers/Engineers
  • OT/ICS cybersecurity professionals (Cybersecurity Managers, Engineering Managers, Security Specialists/Analysts, and Enterprise Architects)
  • IT security directors/managers, compliance managers/director

Hear from these experts:

Steven Parker 

Steven Parker, CISA, CISSP, is President of EnergySec, and is a founding director of the organization. He has been engaged in critical infrastructure protection within the electric sector since 2001, including 8 years as a senior security staff member at a large investor-owned utility. As one of the original CIP auditors, he helped establish the NERC CIP audit program at the Western Electricity Coordinating Council (WECC) in 2009. At EnergySec, he developed and established its NERC CIP training program, and has instructed more than 1000 industry professionals on this topic. Mr. Parker is also a partner at Archer Security Group, a leading consulting firm specializing in compliance and security in the energy sector. His experience includes a broad range of security disciplines including e-commerce, identity management, intrusion detection, forensics, incident response and investigations, security event monitoring, and NERC CIP compliance. 

Scott Hollis 
Director of Product Management 

As Director of Product Management at PAS, Scott has more than 20 years of experience in security and performance management. Under his leadership NetIQ entered the SIEM market culminating in Gartner leadership designation. He subsequently led the creation of the industry’s first true multi-tenant, single instance, log management SaaS platform at Alert Logic. He has held senior positions at various sized organizations ranging from privately held venture-backed technology start-ups to publicly traded Fortune 100 companies including BMC Software, NetIQ, Alert Logic, Quest Software (now a Dell company), Zenoss, and Tenable Network Security. He has a B.S. (cum laude) in Computer Science from Virginia Tech, and an M.B.A. from the University of Houston. 


Matthew Grant 
Matt Grant serves as Publisher for POWER, the largest leading global brand in the power generation industry with print, online, e-newsletters, videos, webinars, and conference offerings. He currently oversees the sales, marketing, and content efforts for POWER, an Access Intelligence brand, and began his career with the company in 2006 in sales. Matt has been directly involved in the development of numerous e-media initiatives that derive from or enhance traditional media. He holds a BA from Texas A&M University.
Already Registered? Log In Now

Complete this form to register for the webinar.
(* indicates required field)