Cybersecurity in the Electric Sector: Update on Threats and Defenses

Slides:

Advertisements

Similar presentations

NERC Critical Infrastructure Protection Advisory Group (CIP AG) Electric Industry Initiatives Reducing Vulnerability To Terrorism.

Advertisements

David A. Brown Chief Information Security Officer State of Ohio

29 May 2006RNSA Workshop 1 Social Implication of National Security RNSA Workshop The risk of public data availability on critical infrastructure protection.

(ISC) Global Information Security Workforce Study (GISWS) Results U.S. Federal Government.

Employment Service Reform Plan in Korea Presenter: Jung, Tai-Myun, Director of Employment Policy Division Ministry of Labor, ROK.

Providing Practical Solutions Winning the Talent Wars for Recruiting and Retaining 21 st Century Cyber Engineers Jeff Kubik, PMP, CISSP Sr PM, Praxis Engineering.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Strengthening General Aviation Security November 2011.

Lessons Learned in Smart Grid Cyber Security

The U. S. National Strategy for Global Supply Chain Security Neema Khatri Office of International Affairs U.S. Department of Homeland Security.

Seán Paul McGurk National Cybersecurity and Communications

Study Results Advanced Persistent Threat Awareness.

© Copyright 2014 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Cyber Security: Now and.

SANDLER AND TRAVIS TRADE ADVISORY SERVICES, INC. © Sandler & Travis Trade Advisory Services, Inc. All Rights Reserved Trade Facilitation.

BOTSWANA NATIONAL CYBER SECURITY STRATEGY PROJECT

FERC’s New Reliability Initiatives Kevin Kelly Director, Policy Analysis, OMTR Federal Energy Regulatory Commission NARUC Annual Meeting Nashville, TN.

Clean, Green, and on the Same Team! How Economic and Workforce Development are Partnering to Serve an Emerging Regional Industry.

Global Automotive Tooling Trends Laurie Harbour, President and CEO Harbour Results Inc. November 22, 2011.

Homeland Security UNCLASSIFIED United States Coast Guard Office of Port and Facility Compliance (CG-FAC) Cyber Security and the Marine Transportation System.

According to the reporters’ research, the logistics industry is currently facing some problems such as capacity, infrastructure, security, rising truck.

Role for Electric Sector in Critical Infrastructure Protection R&D Presented to NERC CIPC Washington D.C. June 9, 2005 Bill Muston Public Release.

Jerry Cochran Principal Security Strategist Trustworthy Computing Group Microsoft Corporation.

Cyber Insecurity Under Attack Cyber Security Past, present and future Patricia Titus Chief Information Security Officer Unisys Corporation.

Employee Privacy at Risk? APPA Business & Financial Conference Austin, TX September 25, 2007 Scott Mix, CISSP Manager of Situation Awareness and Infrastructure.

Conficker Update John Crain. What is Conficker? An Internet worm  Malicious code that is self-replicating and distributed over a network A blended threat.

Page 1 Strategic Foresight Initiative Summary Briefing Emergency Management Higher Education Conference June 6, :30 – 11:30 am.

DRAFT 1 Belfast th World Cyber Security Technology Research Summit Suren Gupta Allstate Corporation Executive Vice President Allstate Technology.

The cost of Cybercrime 1 Steve Lamb Regional Marketing Manager – EMEA, Enterprise Security Products Twitter: actionlamb.

Internet2 Abilene & REN-ISAC Arbor Networks Peakflow SP Identification and Response to DoS Joint Techs Winter 2006 Albuquerque Doug Pearson.

Legal Jeopardy: Whose Risk Is It?. SPEAKERS Jason Straight Chief Privacy Officer and Senior Vice President Cyber Risk Solutions at UnitedLex Patrick Manzo.

APCO, International Meeting the Challenges Public Safety Communications is clearly a full partner in the effort to resolve every emergency…we are truly,

ERCOT IT Update Ken Shoquist VP, CIO Information Technology Board Meeting February 2004.

State of the Industry NAESB Critical Infrastructure Committee.

April 19 th, 2016 Governors Homeland Security and All-Hazards Cyber Security Sub-Committee.

Physical Security Market to Global Analysis and Forecasts by Application, Services No of Pages: 150 Publishing Date: Jan 2017 Single User PDF: US$

Physical Security Market to Global Analysis and Forecasts by Application, Services No of Pages: 150 Publishing Date: Feb 2017 Single User PDF: US$

Broadband Challenges 2017 Christopher Tamarin

Increasing Information and Data Security in Today’s Cybersecurity World 2017 Conference Review 6/6/2017.

Earth’s Mightiest Heroes: Combating the Evils Lurking in Cyberspace

Security Operations Update

Aaron Clark-Ginsberg and Rebecca Slayton

Cybersecurity, competence and preparedness

The Cybersecurity Framework

About Us Who we are Berwick Partners is a division of Odgers Berndtson operating in the senior leadership recruitment market. We operate a 100% retained.

Ken Watson 9 Sep 2003 Critical Infrastructure Assurance: Business Case for Public-Private Partnership Ken Watson 9 Sep 2003

Cyber Security: State of the Nation

QUANTICO POTOMAC AFCEA

United States Coast Guard Office of Port and Facility Compliance (CG-FAC) Cybersecurity and the Marine Transportation System.

California Cybersecurity Integration Center (Cal-CSIC)

The Housing & Finance Institute Building the skills and relationships

USA Final Project Report

© 2016 Global Market Insights, Inc. USA. All Rights Reserved Industrial Control Systems Security Market to reach $7bn by 2024: Global.

Top 5 Key Players Of Artificial Intelligence In Cyber Security Market From 2018 To Size, Trend, Share, Opportunity Analysis & Forecast,

Understanding Existing Standards:

Cybersecurity at PJM Jonathon Monken

Scaling Up Investment in Clean Energy

Role for Electric Sector in Critical Infrastructure Protection R&D

NERC Critical Infrastructure Protection Advisory Group (CIP AG)

Securing the Threats of Tomorrow, Today.

PGE Chris Nolke, Director of Cybersecurity

kctcs action plan.

Get the right expertise for your business? Know how

I UNDERSTAND CONCEPTS OF CYBERSECURITY

CIPC Executive Committee Update

Strategic threat assessment

NS3040 Fall Term 2018 Defense Industrial Base

Cybersecurity at PJM Jonathon Monken

Data Breach of United States Office of Personnel Management

American Public Power Association’s Cybersecurity Services Program

Global Cyber Security Market (By Product Segments, Service Segments, Industry Verticals, Geography, Recent Developments) - Forecast to 2025

Presentation transcript:

Cybersecurity in the Electric Sector: Update on Threats and Defenses Presented to: Oregon Public Utilities Commission June 28, 2018

Presenter Background 17 years in cybersecurity related roles in the sector PacifiCorp | Senior Cybersecurity Consultant | 2001-2009 WECC | Senior CIP Compliance Auditor | 2009-2010 EnergySec | Vice-President | 2010-2013 EnergySec | President | 2013 – Present Industry Consulting | 2012 – Present CISSP, CISA

Overview Source of threats has not changed significantly in recent years Nation States Terrorists Financially motivated attackers Capabilities of attackers continues to increase Industry defenses continue to mature Likelihood of attack remains an unknown

NERC State of Reliability Report Released June 21, 2018. Reviewed previous year No Reportable Cybersecurity Incidents in 2015-17 Phishing is largest attack vector (June 2017) Advisory on APT targeting sector (Sep 2017) Dragonfly APT - report from Dragos (Nov 2017) Safety Systems attacked in Middle East 2018 Outlook: More phishing. Targeting of Trusted Business Partners. Crypto Mining.

Recent News Dragos Blog: XENOTIME https://dragos.com/blog/20180524Xenotime.html Described as most dangerous group currently known. No attribution of group affiliation Responsible for TRISYS attack against safety system Active since 2014 and involved globally Believed to be seeking to do harm

Recent News Electrum – Group responsible for Ukraine attacks may be expanding to other regions VPNFilter – Broad attack against consumer-class network routers. Malware had Modbus related capabilities Hidden Cobra – Threat group believed to be associated with North Korea. New malware families associated with this group

What is Industry Doing? ESCC E-ISAC CRISP Cyber Mutual Aid GridEX NRECA/APPA capacity building for small utilities Supply Chain security whitepapers

What is Government Doing? DOE CESER – New centralized office for cybersecurity efforts CEDS – Government funded security research ESCC – CEO level industry/government collaboration DOE Security Strategy NERC CIP Core standards stabilizing New Supply Chain standards expected soon Possible new standards on incident reporting

Trends Increasing focus on control system security Many new vendors in the marketplace Early stage adoption in industry Security staff sizes are increasing 24x7 operations more common for large utilities Shortage of skilled workers is a challenge Moving beyond compliance… CIP standards still a driver, but security is greater focus

Trends Information Sharing Improving, but still lacking E-ISAC growing. 2019 budget request $27.3 million Zero Reportable Cybersecurity Incidents Increasing reporting of below-threshold events FERC may order stronger reporting requirements Increasing focus on small utilities/distribution DOE grants to APPA and NRECA ($2.5MM/year) Possible collaboration with National Guard

Summary There are still many unknowns regarding grid security Motivations and likelihood of attack Overall state of security across thousands of organizations is impossible to measure Industry readiness is difficult to assess in the absence of experienced attacks There are ALWAYS unknown vulnerabilities Industry continues to mature and is putting significant effort into improving security posture

Questions

Thank You Steven H Parker President, EnergySec steve@energysec.org 503.905.2923 (desk) @es_shp (twitter) www.energysec.org