305-651-6500

Jobs    Everything

Select a Metro Area

Calendar

Sep
22
Wed
(CS)²AI Online™: Navigating the New TSA Pipelines Directive (sponsored by Verve)
Sep 22 @ 1:00 pm – 2:30 pm
(CS)²AI Online™: Navigating the New TSA Pipelines Directive (sponsored by Verve) @ Online event

Join us as cyber security veteran Rick Kaun takes us through navigating the new TSA directive for pipelines (and other future industry targets) – Lessons learned from a regulated industry.

Meetup does not integrate your RSVP with our webinar platform, so registration for this event is required at: https://attendee.gotowebinar.com/register/2643322027922642955?source=08222021MeetupEvent

The recent increase in ransomware events coupled with one of the targets being a large pipeline company has compelled the TSA to issue a new cyber security directive. This means many OT organizations are now scrambling (some more or less than others) to stand up a multi-disciplined security program for a very diverse, distributed OT environment. This looks and feels a lot like the Power Industry was confronted with when NERC CIP was first introduced and so we, as security practitioners, can learn a great deal of lessons from an industry that has already run down this path. Challenges in understanding scope, standing up multiple security initiatives, organizational changes for responsibility, maintenance and response activities and most notably day to day maintenance and compliance can be significant obstacles for operating companies to overcome.

Join us to review a number of security learnings around setting up and maintaining an OT security compliance program such as:
• A multi-disciplined approach is key – treating individual security tasks as silos will create gaps, increase effort and decrease efficiency
• Remediation is a key consideration – simply mapping vulnerabilities or enabling perimeter/network monitoring is just a drop in the bucket – need to be able to reduce risk and attack surface as well as react to emerging situations
• Monitoring – as risk is reduced and new threats emerge the current risk status is always in flux. Being able to monitor and report on current status, changes to the threat landscape or show progress/compliance are key components of a sustainable program
• Automation – as many of these tasks and insights that can be automated the better. OT staff is spread too thin and traditional OT risk reduction approaches are far to manual to provide meaningful and consistent risk management

NOTE: Meetup does not integrate your RSVP with our webinar platform, so registration for this event is required at: https://attendee.gotowebinar.com/register/2643322027922642955?source=08222021MeetupEvent

————————————————————————————————–
Certificates for Professional Development/Continuing Education Units (PDUs/CEUs) are available for all attendees.
————————————————————————————————–
To view any of our growing library of past seminars and symposiums, check out the Resources area of our website in the Members Portal https://www.cs2ai.org/
————————————————————————————————–
If you’re interested in speaking at a future (CS)2AI event, having your organization become a Strategic Alliance Partner, or engaging in any of the other ways available, please contact us on our https://www.cs2ai.org/get-involved
————————————————————————————————–
Please note that all (CS)2AI ONLINE events are provided free of charge as educational career development content through the support of our paid members and our generous contributions of our corporate Strategic Alliance Partners. Contact information used in registering for our directly supported seminars may be shared with sponsors funding those specific events. Unless noted on the Gotowebinar registration page, all events are open for direct funding support.

Oct
13
Wed
(CS)2AI Online(tm): Robots, Rails, Bytes and Risk – A Modern ICS Success Story
Oct 13 @ 9:00 am – 10:30 am
(CS)2AI Online(tm): Robots, Rails, Bytes and Risk - A Modern ICS Success Story

We are very excited to have Brent Huston joining us again. Brent’s a 30-year plus security researcher, inventor and evangelist and has worked many amazing projects in highly exclusive and restricted environments. Join us this time as he dives into the control system technologies underlying the 24×265 operations of that linchpin of modern logistics, the robotic warehouse.

Please note that meetup.com does not integrate your RSVPs with the Gotowebinar platform, so your registration at this link is required: https://attendee.gotowebinar.com/register/5882566846851171851?source=10132021MeetupEvent

Description: Robotic warehousing may not be the first thing we think of when discussing industrial control systems. However, modern automated warehousing is a myriad of different IT and OT technologies that combine to create a robust business solution at an immense scale. In this case study discussion, cyber security veteran Brent Huston will discuss how information security frameworks, technical analysis, machine learning and proper application of risk management techniques led to a successful implementation. We’ll discuss how the project unfolded, some of the significant challenges and lessons learned. We’ll also discuss what it sounds like when robots smash into each other at high speeds and how difficult root cause analysis can be in a complex environment.

Discussion Leader: Brent Huston is an entrepreneur, Inventor & Futurist with a focus on crime, fraud & industrial espionage and keen interest in the impacts of technology across these activities. He’s the CEO of MicroSolved, Chief Enlightenment Officer of Bodhi Foundry, and a Principal at Digital Lizard. A widely-recognized cyber security speaker and author, he is also a (CS)2AI Founding Fellow. More at: https://www.linkedin.com/in/lbhuston/

NOTE: meetup.com does not integrate your RSVP with the Gotowebinar platform, so registration at this link is required: https://attendee.gotowebinar.com/register/5882566846851171851?source=10132021MeetupEvent

————————————————————————————————–
Certificates for Professional Development/Continuing Education Units (PDUs/CEUs) are available for all attendees.
————————————————————————————————–
To view any of our growing library of past seminars and symposiums, check out the Resources area of our website in the Members Portal https://www.cs2ai.org/
————————————————————————————————–
If you’re interested in speaking at a future (CS)2AI event, having your organization become a Strategic Alliance Partner, or engaging in any of the other ways available, please contact us on our https://www.cs2ai.org/get-involved
————————————————————————————————–
Please note that all (CS)2AI ONLINE events are provided free of charge as educational career development content through the support of our paid members and our generous contributions of our corporate Strategic Alliance Partners. Contact information used in registering for our directly supported seminars may be shared with sponsors funding those specific events. Unless noted on the Gotowebinar registration page, all events are open for direct funding support.

Oct
19
Tue
Exchange packets, frames, exploits, and/or conversation
Oct 19 @ 2:30 pm – 4:30 pm

We generally review security related happenings, share tips and tricks for configuring that shiny new technology, and chat about various topics such as security, privacy, exploitation, vulnerabilities, pen testing, web app security, CTFs, IoT security, mobile security and anything else members wish to discuss.

Giving an upcoming talk at a security conference? This is your chance to practice! Want to reverse engineer today’s catch? Bring it along. Automate a task recently? Why not share?

Nov
16
Tue
Exchange packets, frames, exploits, and/or conversation
Nov 16 @ 1:30 pm – 3:30 pm

We generally review security related happenings, share tips and tricks for configuring that shiny new technology, and chat about various topics such as security, privacy, exploitation, vulnerabilities, pen testing, web app security, CTFs, IoT security, mobile security and anything else members wish to discuss.

Giving an upcoming talk at a security conference? This is your chance to practice! Want to reverse engineer today’s catch? Bring it along. Automate a task recently? Why not share?

Dec
21
Tue
Exchange packets, frames, exploits, and/or conversation
Dec 21 @ 1:30 pm – 3:30 pm

We generally review security related happenings, share tips and tricks for configuring that shiny new technology, and chat about various topics such as security, privacy, exploitation, vulnerabilities, pen testing, web app security, CTFs, IoT security, mobile security and anything else members wish to discuss.

Giving an upcoming talk at a security conference? This is your chance to practice! Want to reverse engineer today’s catch? Bring it along. Automate a task recently? Why not share?