2018 ICS Cyber Security Conference

This session will describe the considerations for assessing the security and reliability aspects of ICS. The topics he will cover include the interdependence of information and operational technologies (IT and OT), and how they support one another, in both directions. Jack will describe the areas of IT and OT specialization, and how an attack on, or failure in, either IT or OT will impact the other. He will then discuss the application of standards from various organizations to assess security, and how there are a number of common threads. Jack will discuss the determination of the right assessment tools and techniques, and why it is important to connect IT findings to the OT side. Jack will then turn to the assessment of OT, the requirements that must be met, how an assessment moves from looking at those requirements to looking at the as-built plant. He will then describe the documentation of findings and the connection of those findings to IT.  Finally, Jack will discuss making the case to the customer for improvements in IT and OT to ensure security and reliability.