Date post: | 12-Feb-2017 |
Category: |
Technology |
Upload: | israel-galvan-bobadilla |
View: | 252 times |
Download: | 0 times |
35 años de investigación, innovando con energía
Cyber Security Solutions for the Energy Industry in
North AmericaMSc. Israel Galván Bobadilla
35 años de investigación, innovando con energía
Agenda
About this presentation Facts, stats and motivation Cyber Security in North America
Government Frameworks Councils Research Solutions
Personal thoughts and conclusions
35 años de investigación, innovando con energía
About this presentation
Cybersecurity and Access Control for Utilities Reverse Trade Mission for Mexico and Panama to the United
StatesApril 19th – 30th, 2015SPONSORED BY:
35 años de investigación, innovando con energía
Facts, stats and motivation
35 años de investigación, innovando con energía
“Security incidents has increased 66%” Global State of Information Security® Survey 2015, PwC
Facts, stats and motivation
“83% view cyberattacks as one of top 3 threats business, but only 38% are prepared”
Information Systems Audit and Control Association, ISACA
“Approximately 60 to 80 percent of network misuse incidents originate from the inside network."Computer Security Institute (CSI) in San Francisco, California
35 años de investigación, innovando con energía
“Cybersecurity is not optional, is required and
mandatory”
Why?“The more people, processes and technologies are involved, the more risk we will have…”
Facts, stats and motivation
35 años de investigación, innovando con energía
Government
They provide information about how to:Invest in physical and cyber risk management products and plansEducate employees about critical infrastructure security and resiliencePlan for business continuityShare threat and incident informationReport suspicious activityPrepare for all hazards at home and at work
Identifies 16 Critical Infrastructure (CI) sectors, and one of them is: Energy Sector.
They provide Assessment Resources such as:Computer-Based Assessment Tool (CBAT)Cyber Security Evaluation Tool (CSET®)On site supportCritical Infrastructure Cyber Community C³ Voluntary Program
“Adversaries are getting
sophisticated”
35 años de investigación, innovando con energía
Government
“Invest in People as well as processes and technology”
MITIGATION BASICS:
ICSJWG 2015 Spring MeetingThe Industrial Control Systems Joint Working Group invites you to Washington, DC June 23 - 24, 2015
35 años de investigación, innovando con energía
Framework s
NIST worked with stakeholders to develop a voluntary framework – based on existing standards, guidelines, and practices - for reducing cyber risks to critical infrastructure.
35 años de investigación, innovando con energía
Government
USTDA also linked us to:
Available resources for cybersecurity
Cybersecurity Capability Maturity Model (C2M2)
Electricity Subsector (ES-C2M2)
35 años de investigación, innovando con energía
Government
35 años de investigación, innovando con energía
Councils
Is a global trade association dedicated to creating a favorable business, regulatory, and technological environment for companies that own, manage, or provide critical telecommunications systems in support of their core business.
UTC provides information, products and services that help members:
Manage their telecommunications and information technology more effectively and efficiently;Voice their concerns to legislators and regulators;Identify and capitalize on opportunities linked to deregulation worldwide; andNetwork with other telecom and IT professionals.
35 años de investigación, innovando con energía
Research
“The Health approach, anomalies & Context-Based Analytics”
INSTITUTE FOR ELECTRONIC GOVERNMENT
35 años de investigación, innovando con energía
Solutions
The BIG picture
35 años de investigación, innovando con energía
“One Size DOES NOT fit all..”
Personal thoughts
“Invest more money on technology for humans…”
“Cybersecurity culture is still being an issue, evangelization is needed...”
“There is a lack of cybersecurity specialists and there is a lot of job that must be done...”“Education and awareness are key elements ...”
“The visibility dilemma: ‘You can’t hack/protect what you can’t see’… ”
35 años de investigación, innovando con energía
EU has a lot of solutions for advanced cybersecurity problems for the short and medium term.
This solutions should be tested and evaluated, in order to identify where they fit better in our smartgrids.
There is a lot of best practices, lessons learned, successful policies and models from FERC-NERC, NIST, Homeland Security that we should adopt and maybe adapt to Mexico’s needs.
LATAM is still facing old security problems and new problems!
There are no small players on cybersecurity, safety and resilience is everybody responsibility.
Conclusions
35 años de investigación, innovando con energía
MSc. Israel Galván BobadillaELECTRICAL RESEARCH INSTITUTE
Enabling Technologies DivisionInformation Technology Department
[email protected]+52 (777) 3 62 38 11 Ext. 7526
Thank you!
“We are not in the contest era, we are on the collaboration era… A great era
by the way…”
35 años de investigación, innovando con energía
Just in case Extra slides
35 años de investigación, innovando con energía
Solutions
Cybersecurity “Big Data” analytics, policy, planning, implementation and emergency preparedness.
A cloud-based, open architecture analytical platform for harnessing data. Provides customizable methodologies for solving the complex analytic challenges of managing “Big Data” in most data formats.
FEATURES:Intelligent linkages among disparate data sourcesWeb-enabled, infrastructure independentFlexible and extensible tools for analysis and relationship mappingData type independent and open source accessQuick and easy to deployIntuitive, with little user training requiredDelivered at a fraction of the cost of legacy, monolithic data analysis toolsets
35 años de investigación, innovando con energía
Solutions
Incident management and monitoring systems, video surveillance and sensors, Cybersecurity risk management, preparedness and integration services, Biometric, electronic badge, smart card and proximity sensor technologies.
“You Can’t Hack What You Can’t See”
35 años de investigación, innovando con energía
Solutions
Incident management and monitoring systems, video surveillance and sensors, Cybersecurity risk management, preparedness and integration services, Biometric, electronic badge, smart card and proximity sensor technologies.
“You Can’t Hack What You Can’t See”
35 años de investigación, innovando con energía
Solutions
Provides an open infrastructure to connect sensor-based data, operations and people to enable real-time intelligence.
PI System, enables your business to capture and leverage sensor-based data across the enterprise to improve efficiency, sustainability, quality and safety.