News:
Experiment Simulated Attacks on Natural Gas Plant
An experiment conducted by ICS/SCADA security experts reveals how utilities could spot malware and cyberattacks on their automation environments on the fly merely by continuously monitoring the customarily predictable behaviors of those networks and systems. Read more:
“Ultimately, none were successful”
Surprised by the discussion that is missing the big points, Dale Peterson is full of enough outrage and disbelief to break his self-imposed complaining about ICS-CERT ban. Read more:
Oil and Gas Industry Urged to Focus on Cybersecurity
As cyber threats continue to increase in frequency and sophistication, helping critical infrastructure owners and operators across the energy sector identify opportunities to strengthen their own cybersecurity capabilities is a top priority. Read more:
Protecting Water and Wastewater Facilities from Cyberattack
Despite the cybersecurity challenges associated with increasing connectivity, industry and government organizations are making steady progress. Read more:
NIST Cyber Security Framework Third Workshop
The third Cybersecurity Framework workshop was held July 10-12, 2013 in San Diego during which NIST presented an annotated outline of the initial draft Cybersecurity Framework for discussion. Read more: Watch Day 1: WatchDay 2: Watch Day 3:
Resources:
ICS-ISAC Situational Awareness Reference Architecture (SARA)
SARA is an ongoing project to compile and publish an applied guide to the processes, practices, standards and technologies which facilities and others can use to establish situational awareness. Learn more:
STIX Use Cases
STIX is targeted to support a range of core use cases involved in cyber threat management, brief overviews of which are provided below. Additional use cases will be documented as they emerge through the continued operational application of STIX. Learn more:
Qatar National ICS Security Standard
This ICS security baseline standard document provides the minimum controls that need to be incorporated or addressed for any ICS system that has been determined to be critical to the State of Qatar. Learn more:
Events:
Aug 21st - Que SARA, SARA… the Inevitability of Knowledge Sharing– an ICS-ISAC Monthly Briefing
Many in the industrial cybersecurity space have long pressed for faster action on the part of stakeholders. Over recent years, however, much of this emoting has seemed to fall on deaf ears. Do more:
August 6-7, 2013 – NERC CIP Compliance Bootcamp – Seattle, WA
Designed for IT, security, compliance professionals and operations staff working at an electric utility seeking to find ways to meet their compliance obligations, reduce their regulatory documentation burden and improve their security posture and for those not in the industry who have an interest in learning more about electric sector cybersecurity solutions. Do more:
Introduction to the ICS-ISAC
In this 45 minute session ICS-ISAC Chair Chris Blask provides an overview of the center followed by a Q&A period. Do more: