- 234
- 1 013 043
SANS ICS Security
United States
Registrace 6. 05. 2019
SANS has joined forces with industry leaders and experts to strengthen the cybersecurity of Industrial Control Systems (ICS). The initiative is equipping security professionals and control system engineers with the security awareness, work-specific knowledge, and hands-on technical skills they need to secure automation and control system technology. Watch our videos, listen to our webcasts, to learn as much as possible about ICS Security, OT security, NIST, NERC CIP, and more!
Machina Matrix: OT Security and Operations in Cyber Overdrive Building Operational Resilience
In the era of smart factories, the convergence of IT and OT systems, and the rise of the distributed workforce, the traditional concept of air gaps has become obsolete. Surprisingly, Operational Technology (OT) security budgets still hover between 3% to 5% of total cybersecurity spend. This presentation delves into the dynamic relationship between OT security and operations teams, exploring the challenges they face in aligning objectives and seizing the opportunities presented by security by design and operation. The session emphasizes how decisions regarding data architecture, system maintenance, and design can yield substantial benefits for both OT security and operations teams. For instance, the shift from traditional VPN architectures to OT data lakes supporting read-only use cases with fine-grained data access controls can enhance collaboration. By creating shared views of system and equipment data, security and operations teams can streamline troubleshooting, reduce Mean Time to Repair (MTTR), and optimize spending on upgrades and maintenance. Additionally, the presentation highlights the critical role of next-gen factories and greenfield projects in integrating cyber resilience into lifecycle budgeting, addressing often overlooked cybersecurity aspects such as End of Life of software products. Attendees will gain insights into strategic investments that promise significant Return on Investment (ROI) for both OT Security and Operations. The session will feature real-world examples of ROI sources and provide guidance on quantifying impact to support investment decisions, ultimately fostering stakeholder engagement and securing leadership buy-in for collaborative cybersecurity initiatives. Join us to explore how collaborative efforts between operations and security can enhance efficiency, reduce labor costs, and mitigate the probability of events impacting operation in the industrial context.
SANS ICS Security Summit 2024
Machina Matrix: OT Security and Operations in Cyber Overdrive Building Operational Resilience
Susan Peterson Sturm, Senior Director, Cybersecurity Business Development & Strategic Partnerships, Wabtec
Tomomi Aoyama, Senior Director of Product, Omny
View upcoming Summits: www.sans.org/u/DuS
SANS ICS Security Summit 2024
Machina Matrix: OT Security and Operations in Cyber Overdrive Building Operational Resilience
Susan Peterson Sturm, Senior Director, Cybersecurity Business Development & Strategic Partnerships, Wabtec
Tomomi Aoyama, Senior Director of Product, Omny
View upcoming Summits: www.sans.org/u/DuS
zhlédnutí: 84
Video
Is Your Operator Ready for a Cyber Attack?
zhlédnutí 42Před 7 hodinami
ICS operators are on the front lines of critical operations…but are usually the last ones to receive any form of cyber security training. This presentation will explore the use of simple and effective operational practices such as “Toolbox Talks”, developing SOP’s (Standard Operating Procedures) and other operational controls to improve your organizations readiness to identify and respond to an...
Lessons Learned Building OT SOCs
zhlédnutí 121Před 7 hodinami
“Prevention is ideal, but detection is a must” and OT Security Operations Centers are the nerve center for detection and response. With the focus of too many OT security programs primarily focusing on prevention security controls, asset operators are now trying to build the right OT SOC for them. Please join Bruce in this presentation where he outlines his lessons learned from building OT SOCs....
Using ChatGPT to Write ICS/OT Defensive and Offensive Tools
zhlédnutí 164Před 7 hodinami
During the work on my SANS Master's thesis, I realized two things: I am not a developer and ChatGPT makes a pretty good one. Using ChatGPT to write the Python scripts for my research, I started to branch out and use it to write defensive tools such as for identifying unknown assets on the network as a listening service or offensively such as when taking a PLC out of Run mode remotely. If you ca...
FuxNet: The New ICS Malware that Targets Critical Infrastructure Sensors
zhlédnutí 110Před 7 hodinami
Around April 2024 a Ukrainian affiliated hacking group named BlackJack claimed they attacked Russia's Industrial Sensor and Monitoring Infrastructure company called Moscollector. Not only the hackers allegedly destroyed Moscollector's servers and databases, they also deployed a notorious malware called FuxNet (rhymes with Stuxnet) which bricked many sensor gateways, essentially blinding physica...
One Team One Fight: How Vulnerability Collaboration Crushes Threat Actors Hopes and Dreams
zhlédnutí 21Před 7 hodinami
In 2023, Rockwell Automation’s Product Security Incident Response Team was alerted by the government about an exploit targeting the 1756-EN* Communication modules. The Product Security Incident Response Team, with over 100 years of combined expertise, quickly formed a task force to address the threat, which allowed remote code execution and denial-of-service on many module models. The newest mo...
Does Practice Make Perfect? Lessons Learned from Full-Scale Power System Incident Response Exercise
zhlédnutí 69Před 7 hodinami
While threats to the energy sector occur daily, few utilities get the opportunity to fully test out their detection and response mechanisms to advanced threats in the real world. With the high demand for reliability, few grid operators would allow execution of simulated cyber-attacks on their live systems. The DOE-funded Liberty Eclipse project offers a unique opportunity for small and large ut...
Answering the Big Question: Has My OT Been Compromised?
zhlédnutí 111Před 7 hodinami
Determining an OT compromise is crucial in incident response, impacting business continuity, safety, and regulatory compliance. This presentation targets the core challenges in recognizing OT breaches: scarcity of EDR deployment, inadequacies in IDS tuning, skill gaps within OT teams, and overlooked security log and telemetry data. Through case studies from OT IR engagements, I will examine the...
Journey to an OT SOC: Case Studies from Expanding Visibility
zhlédnutí 34Před 7 hodinami
I am thrilled to submit ExxonMobil’s session, "Journey to an OT SOC: Case Studies from Expanding Visibility" where I plan to dive into the hard lessons learned during the establishment of a OT Security Operations Center capability at ExxonMobil. Here's a summation of the key takeaways: We tried to address the critical need for aligning OT and IT in the cybersecurity realm while getting quick wi...
Hacking the Power Grid in a Virtual City - At Scale
zhlédnutí 129Před 7 hodinami
The presenter will demonstrate open source tools enabling the audience to rapidly instantiate a co-simulation (distribution and transmission power models) of an urban area of a large US city (approximately 78,000 loads within minutes). This system will include IT systems and OT systems together and run automated attacks using well known attack frameworks to display outcomes of an electric grid ...
An ICS/OT Cybersecurity Consultant's Experience with SANS ICS Security
zhlédnutí 392Před 2 měsíci
Hear from Oren Niskin, an ICS/OT Cybersecurity Consultant for Ernst & Young, who has taken multiple courses of SANS ICS Security training. He shares how he used these courses to gain practical skills and advance his career in ICS/OT cybersecurity. Learn more about SANS ICS Security: www.sans.org/u/1w8R #cybersecurity #ICS #OT #CriticalInfrastructure #ICSsecurity
Mission to Defend Critical Infrastructure | SANS ICS Security
zhlédnutí 1,8KPřed 6 měsíci
Find available training and join us in the mission to protect and defend critical infrastructure: www.sans.org/u/1ueD About SANS Industrial Control Systems Security: ICS cyber security is focused on protecting industrial systems and operational technology (OT) against accidental or intentional risks. The SANS ICS Security Curricula provides training courses focused on assessing and defending IC...
Tactical Risk Reduction in ICS/OT Environments
zhlédnutí 1,1KPřed 8 měsíci
ICS/OT environments are production environments that are closely monitored and maintained by personnel experienced in that process. Their job is not to think like the "bad guy" or to be a cybersecurity expert. However, a little bit of knowledge goes a long way to protecting these production assets and the processes they support. This presentation will outline the key areas to review to gather a...
Panel | We Hear You Cloud and Clear
zhlédnutí 255Před 8 měsíci
Many organizations who were not already leveraging cloud service provider solutions found themselves rushing to these capabilities in 2020 during the pandemic and there have been no signs of this cloud pursuit trend slowing down. In a similar way the ICS community finds itself looking to cloud enabled solutions to house process sensitive data sets, running non-real time applications in the clou...
Keynote | High Five: Top Trends in ICS
zhlédnutí 390Před 8 měsíci
Keynote | High Five: Top Trends in ICS
Managing Insider Threats | SANS ICS Concepts
zhlédnutí 2KPřed 11 měsíci
Managing Insider Threats | SANS ICS Concepts
NRECA RC3 Self-Assessment Tool | SANS ICS Concepts
zhlédnutí 784Před 11 měsíci
NRECA RC3 Self-Assessment Tool | SANS ICS Concepts
Cyber Informed Engineering | SANS ICS Concepts
zhlédnutí 1,9KPřed rokem
Cyber Informed Engineering | SANS ICS Concepts
A Cross-Sector Methodology for Ranking OT Cyber Scenarios and Critical Entities
zhlédnutí 595Před rokem
A Cross-Sector Methodology for Ranking OT Cyber Scenarios and Critical Entities
Manufacturing Cybersecurity - Boots on the Ground and Back to the Basics
zhlédnutí 394Před rokem
Manufacturing Cybersecurity - Boots on the Ground and Back to the Basics
Combating Implicit Trust in West Texas Oil Field
zhlédnutí 294Před rokem
Combating Implicit Trust in West Texas Oil Field
Multiverse of Convergence: Charting IT/OT Threat Overlap
zhlédnutí 342Před rokem
Multiverse of Convergence: Charting IT/OT Threat Overlap
Orlando Utilities Commission Cyber Security and Efficient Management of Grid Edge Devices Project
zhlédnutí 190Před rokem
Orlando Utilities Commission Cyber Security and Efficient Management of Grid Edge Devices Project
Do We Have Logs for That? When Network Traffic Analysis Falls Short
zhlédnutí 472Před rokem
Do We Have Logs for That? When Network Traffic Analysis Falls Short
Harnessing the Power of Vital OT Endpoint Information for Security, Resilience and Performance
zhlédnutí 217Před rokem
Harnessing the Power of Vital OT Endpoint Information for Security, Resilience and Performance
New Cyber-Physical Threats to Industrial Equipment
zhlédnutí 411Před rokem
New Cyber-Physical Threats to Industrial Equipment
Delivering OT Security from Legislation to Harmonized Daily Business at Industrial Sites
zhlédnutí 831Před rokem
Delivering OT Security from Legislation to Harmonized Daily Business at Industrial Sites
How to Perform Effective OT Cyber Security Risk Assessments
zhlédnutí 9KPřed rokem
How to Perform Effective OT Cyber Security Risk Assessments
This mf just said "howsomever."
First! 🙂
Why should we invest in this when the new encabulators are smaller than the size of a bread box. Get with the times all future encabulators will be smaller than a cellphone in the future.
Utter HyperFoolishness!
Lol
I prefer the Interocitor. It's much more efficient in the endospheric nano frequency range without bleeding energy into the Kelvin metrics.
TARS, is that you?
Thank you for that tight conniption fit!
These lines must have been so hard to learn, Jesus. I know they probably used some teleprompting or cue cards, but still. Hell of a performance all for a silly joke.
Can I just say, holy cow.
4:52 is nuts!
How-some-ever. Lol
I love the fact that the Hyper Encabulator has the Enterprise's science station hypnosis thingy, and the Death Star Trench on it. Also the "Handsome Ransomware Hypervizor" being a mechanical watch movement is brilliant.
And HAL displays.
Embiggens
How did they ever stabilize the mastication!
Man, I wish I had one of these hyper encabulators! My current hyperluminal transmogrification setup is a nightmare. The quantized tachyonic emissions keep interfering with the longitudinal redundancy checks, causing a total baryogenesis cascade. Last week, the whole mess fried the positronic brain of my pet hamster, Sparky. Not cool. Maybe this thing comes with a schmuck shield for us non-encapsulator engineers?
N U C L E A R B O A T
What movie is the clip at 1:53 from?
I need to hire this man to handle marketing of the product we haven't defined yet.
i didnt think the joke could get better, but it just got better. Leslie nelson would be proud.
That A "bit of fry and Laurie" reference was very choice
I had to retire from my job since the meetings begin to sound like this video.
Soon Ai-powered-encabulator😂
I can't believe he was able to do this twice :D
The "SOC drawer" hahahahahaha 🤣🤣🤣
JAJAJA
"The hyper-encabulator operates totally under the principle of colonic effluvium expulsion and audible gaseous eruptations"...... So it works on Stinky Farts 🤔😅
"But I regress" is such a subtle gem.
40 missed calls from Eminem
Great performance!
I love to encabulate about 34 percent
I'm still encabulating in 2024!
Allow me to elusivate
Did someone mention intermodalities?™🔺
It really isn't JUST the absurd technical jargon. It's not JUST the strange almost hidden little puns and jokes. It's the way he uses ALMOST the right word CONSTANTLY.
One can only dream about the galactic encabulator
To all the fellow tech people in the comments: This gibberish is what everyone else hears when we talk.
this greatly helped me bulding a presantation
We're thrilled to hear this. Thank you for sharing your experience!
This is like the nerd version of that one In Living Color bit
I bet he "follows the science."
I'm dying here. Luckily I have an automatic de-encabulator on the wall.
Is there a github repo or link as to where I could download the VoltageRegulator.xmpp file to practice ?
Is there a github repo or link as to where I could download the VoltageRegulator.xmpp file to practice ?
I wonder how many people believe this is a real thing?
Sounds like what would happen if AI wrote history books...
no side fumbling??? I am SOLD.
what is this used for
Encabulation, duh
backrooms
FATBOY SLIM
Plastic, spastic, and cynosynclastic
Never overlook the SOC drawer, especially in the morning, when the smell of napalm is so good...