Like other parts of critical infrastructure, utilities face advancing cyber security threats to their corporate and field environments. Regulators, such as NERC, FERC, and the Canadian National Energy Board, have mandated in their jurisdictions that these threats be addressed ultimately through compliance with NERC CIP requirements. However, because of the complex nature of control systems, utility cyber security programs face much greater challenges in providing needed cyber security controls for BES Cyber Assets (BCA) and BES Cyber Systems (BCS). Further complicating the situation are newer digital components being implemented that are challenging many preconceived notions of how technology is used in power generation and delivery.
As the options for access and control become more complicated, cyber security becomes more important to the overall safety of the environment. Threats are rapidly evolving, and the industry is struggling to balance asset availability with cyber security to keep malicious actors at bay. Regulators continue to refine their guidance, and the industry is racing to keep up. Notwithstanding growing questions and concerns from Utility Boards of Directors over cyber security, each audit of compliance requirements yields new insight into regulator concerns over cyber security in the energy industry.
This course is an in-depth introduction to cyber security issues facing utilities today. It is meant as a primer to give the necessary background for all staff to understand the concepts and complexities of cyber security and compliance with NERC CIP standards.
- Identify current cyber security threats facing electric utilities
- Analyze cyber threats and vulnerabilities
- Define, assess and manage security risk for smart grid
- Discuss NERC CIP version 5 and key implementation strategies
- Identify international efforts surrounding protection for critical infrastructure
- Discuss the convergence of IT and cybersecurity departments, internal communication strategies and building cross-functional teams
- Analyze risk management and data protection strategies
EUCI has been accredited as an Authorized Provider by the International Association for Continuing Education and Training (IACET). In obtaining this accreditation, EUCI has demonstrated that it complies with the ANSI/IACET Standard which is recognized internationally as a standard of good practice. As a result of their Authorized Provider status, EUCI is authorized to offer IACET CEUs for its programs that qualify under the ANSI/IACET Standard.
EUCI is authorized by IACET to offer 1.0 CEUs for this event.
Requirements for Successful Completion of Program
Participants must sign in/out each day, be in attendance for the entirety of the course to be eligible for continuing education credit.
This course will use PowerPoint presentations and group discussions.
Monday, April 24, 2017
8:00 – 8:30 a.m. :: Registration and Continental Breakfast
10:00 – 10:30 a.m. :: Networking Break
12:00 – 1:00 p.m. :: Group Luncheon
2:30 – 3:00 p.m. :: Networking Break
3:00 – 5:00 p.m. :: Continuation of NERC CIP Discussion and Resolving Implementation Challenges
Tuesday, April 25, 2017
8:00 – 8:30 a.m. :: Continental Breakfast
10:00 – 10:30 a.m. :: Networking Break
12:00 p.m. :: Course Adjourns
Robert Schuler, Manager, Cyber Security Strategy
Mr. Schuler is a Cyber Security Strategy and Technical Thought Leader with Accenture Strategy in the United States. He has over 19 years of cyber security risk management and systems security engineering experience across multiple industries. Over this period, he has become a recognized expert in cyber security guidance for control systems, including Nuclear Energy Institute (NEI) 08-09 and NEI 13-10.
Mr. Schuler has key expertise in helping industry clients define their needs and translate them into actionable program goals. He has a strong history of guiding teams toward shared agreement, facilitating process refinement, and aligning organizational culture with program expectations.
Mr. Schuler’s industry outreach activities have included frequent speaking engagements delivering nuclear and utility control system cyber security courses and speaking on industry panels, where his technical knowledge and interactive style is helping key industry participants reach a shared understanding of cyber security threats, compliance standards, and how to enhance security architectures while meeting regulatory objectives.
401 W Pratt St
Baltimore, MD 21201
To reserve your room, please call 1-443-573-8700 or book online here.
Please indicate that you are with the EUCI group to receive the group rate.
The room rate is $229.00 single or double plus applicable taxes.
Room Block Dates:
A room block has been reserved for the nights of April 23 – 25, 2017.
Rate Available Until:
Make your reservations prior to March 23, 2017. There are a limited number of rooms available at the conference rate. Please make your reservations early.