The Control Systems Security Workforce Challenges
July 26, 2018 (10:00am EST)
This session will dig into the control system or operating technology (OT) Cyber-security Workforce development challenges (Demographics, diversity, limited educational resources, limited company training budgets.) We will profile some of the key work force positions from entry level to leadership. We will also discuss the tensions that exist in many organizations between traditional IT teams and the teams that run the operational technology.
This session will answer questions like: How do I change my culture to a cyber security culture in these environments? How do I get teams to work together? How do I find the right people or do I train people I already have?
NOTE: This meetup has already taken place. Paid members are able to access the recorded content at https://cs2ai.org/resources/
Discussion Leader: Samara Moore
Samara focuses on partnering across the enterprise to manage cyber and physical security and compliance risks. She joined Exelon after 10 years in the federal government. Moore was previously National Security Staff member at the White House, responsible for the NIST Cybersecurity Framework development. Prior to the White House, Samara co-led the development of the U.S. Department of Energy’s Cybersecurity Capability Maturity Model for power system utilities.
Discussion Leader: Rebekah Mohr
Rebekah Mohr is a Security Manager for Accenture, specializing in Industrial Control Systems (ICS) Security. She provides clients with services such as defining a company-wide ICS Security Program, conducting ICS Security gap assessment or risk modeling workshops, and providing materials and tools to close ICS Security gaps, complete ICS Security Remediation Programs and conduct ICS Security Run & Maintain Assurance.
Rebekah brings experience gained from 6 years working with Shell, where she was responsible for ICS Security at a Refinery, and later joined the global ICS Security Team as a Regional Technical Expert. During her time with the global team, she developed an ICS Security Risk Model, which was the first of its kind in the industry, and she designed a global ICS Security Remediation Program.
Rebekah has a Bachelor of Science degree in Math, Statistics and Computer Science from McGill University and a Master of Science degree in Statistics from University of British Columbia. Rebekah has been awarded with a Young Women in Energy and SANS “People who Made a Difference in Cyber Security” Award. Rebekah is driven to contribute as a thought leader within this space and to make a difference for the next generation of women in the technical workforce.
Discussion Leader: Andy Bochman
Mr. Bochman provides strategic guidance to senior USG and industry leaders on topics at the intersection of grid and critical infrastructure modernization and security. A frequent speaker, writer and standards developer, Andy has provided analysis on energy sector security actions, standards and gaps to DOE, DOD, DHS, FERC, NERC, NIST, NARUC, the Electricity Subsector Coordinating Council (ESCC), and state utility commissions, most recently testifying before the Senate Energy and Natural Resources Committee on energy infrastructure cybersecurity issues. He previously was Global Energy & Utilities Security Lead at IBM and Senior Adviser at the Chertoff Group in Washington, DC.
Andy is currently researching a book on applying engineering fundamentals to critical infrastructure cyber challenges. His recent publications include: “the National Security Case for Simplicity in Energy Infrastructure” (CSIS, 2015), “IoT, Automation, Autonomy and Megacities in 2025: A Dark Preview” (CSIS, 2017), "The Missing Chief Security Officer" (CXO, 2018) and "Internet Insecurity: the Brutal Truth" (HBR, 2018).