By - Jon Brown

Fundamentals of Cyber Security for Utilities
November 13-14, 2018 | Denver, CO

Download Brochure

 

Overview

If this event is of interest, you may also be interested in Fundamentals of Cyber Security for Nuclear Plants, November 14 – 15 in Denver, CO

Like other parts of critical infrastructure, utilities face advancing cyber security threats to their corporate and field environments.  Regulators, such as NERC and FERC, have mandated in their jurisdictions that these threats be addressed ultimately through compliance with NERC CIP requirements.  However, because of the complex nature of control systems, utility cyber security programs face much greater challenges in providing needed cyber security controls for BES Cyber Assets (BCA) and BES Cyber Systems (BCS).  Further complicating the situation are newer digital components being implemented that are challenging many preconceived notions of how technology is used in power generation and delivery.

As the options for access and control become more complicated, cyber security becomes more important to the overall safety of the environment.  Threats are rapidly evolving, and the industry is struggling to balance asset availability with cyber security to keep malicious actors at bay.  Regulators continue to refine their guidance, and the industry is racing to keep up.  Notwithstanding growing questions and concerns from Utility Boards of Directors over cyber security, each audit of compliance requirements yields new insight into regulator concerns over cyber security in the energy industry.

This course is an in-depth introduction to cyber security issues facing utilities today.  It is meant as a primer to give the necessary background for all staff to understand the concepts and complexities of cyber security and compliance with NERC CIP Standards.

Share

 

Learning Outcomes

  • Review current value at risk from cyber security threats facing electric utilities
  • Analyze cyber threats and vulnerabilities
  • Define, assess, and manage security risk for smart grid
  • Discuss NERC CIP, key implementation strategies, and current events
  • Discuss the convergence of IT and cyber security departments, internal and external communication strategies and building cross-functional teams
  • Discuss practical techniques for risk management and data protection
  • Articulate holistic cyber security program strategies focused on prevention

Credits

AP_Logo

EUCI has been accredited as an Authorized Provider by the International Association for Continuing Education and Training (IACET).  In obtaining this accreditation, EUCI has demonstrated that it  complies with the ANSI/IACET Standard which is recognized internationally as a standard of good practice. As a result of their Authorized Provider status, EUCI is authorized to offer IACET CEUs for its programs that qualify under the ANSI/IACET Standard.

EUCI is authorized by IACET to offer 1.0 CEUs for this event.

 

Requirements for Successful Completion of Program

Participants must sign in/out each day, be in attendance for the entirety of the course to be eligible for continuing education credit.

Instructional Methods

This course will use PowerPoint presentations and group discussions.

Agenda

Tuesday, November 13, 2018 

registration8:00 – 8:30 a.m. :: Registration and Continental Breakfast


8:30 – 10:00 a.m. :: Threats to Energy Infrastructure – Understanding the Cyber Threat Landscape and Value at Risk

  • Current cyber security threats facing electric utilities
  • Common vulnerabilities and consequences
  • Upcoming cyber security challenges for utilities

Break10:00 – 10:30 a.m. :: Networking Break


10:30 a.m. – 12:00 p.m. :: Continuation of Value at Risk: Threats to Energy Infrastructure

lunch12:00 – 1:00 p.m. :: Group Luncheon


1:00 – 2:30 p.m. :: Security of Smart Grids: How Cyber Security is Affecting its Future

  • Defining, assessing, and managing security risks affecting smart grid
  • Compliance and distribution systems
  • NIST standards
    • Existing standards and those in development
    • Practical impacts to utility cyber security practices
  • Cyber threats and vulnerabilities to communication networks
    • Field maintenance and test equipment
    • Wide Area Network communications
    • Field communication with Internal IT assets

Break2:30 – 3:00 p.m. :: Networking Break


3:00 – 5:00 p.m. :: NERC CIP: Implementation and Preparing for Subsequent Versions

  • Definition and review of the current version of NERC CIP and key differences from previous versions
  • Discuss key factors of each NERC CIP version along with implementation strategies
  • Identify what to expect from future NERC CIP versions

Wednesday, November 14, 2018

breakfast8:00 – 8:30 a.m. :: Continental Breakfast


8:30 – 10:00 a.m. :: Continuation of NERC CIP Discussion and Resolving Implementation Challenges

Break10:00 – 10:30 a.m. :: Networking Break


10:30 a.m. – 12:00 p.m. :: Integrating Cyber Security Across the Utility

  • Internal cyber security strategy
  • Cyber Security integration across the utility
    • Cross-functional teams
    • Roles and responsibilities
  • End-to-end cyber security from back office to core business

adjourns12:00 p.m. :: Course Adjourns

Instructor

Rob Schuler, Cyber Strategy Manager, Accenture Security

Mr. Schuler is a Cyber Security Strategy Manager and Technical Thought Leader with Accenture Security in the United States. He has 20 years of cyber security risk management and systems security engineering experience across multiple industries.  Over this period, he has become a recognized expert in cyber security guidance for utility control systems.

Mr. Schuler has key expertise in helping clients to define their needs and translate them into actionable program goals. He has a strong history of identifying and unifying technical teams of diverse backgrounds and delivering program excellence.

Mr. Schuler’s industry outreach activities have included frequent speaking engagements delivering control system cyber security courses and speaking on industry panels, where his technical knowledge and interactive style is helping key industry participants reach a shared understanding of cyber security threats, compliance standards, and how to build secure, best-practice architectures while meeting compliance objectives.

Location

EUCI Office Building Conference Center

4601 DTC Blvd, B-100

Denver CO, 80237

 

Suggested Hotel

Hyatt Place Denver Tech Center
8300 E. Crescent Parkway
Greenwood Village, CO 80111
0.9 miles away
Nightly Rate for EUCI Attendees: $149.00

Click on the following booking link: Hyatt Place Denver Tech Center – EUCI and use Group Code: EUCI or

Call Central Reservations at 888-492-8847 and ask for the EUCI rate of $149 under the corporate/group code EUCI

Other Nearby Hotels

Hyatt Regency Denver Tech Center
7800 E Tufts Ave
Denver, CO 80237
Phone: 303-779-1234
0.3 miles away

Hilton Garden Inn Denver Tech Center
7675 E Union Ave
Denver, CO 80237
Phone: 303-770-4200
0.6 miles away

Denver Marriott Tech Center
4900 S Syracuse St
Denver, CO 80237
Phone: 303-779-1100
0.7 miles away

Register

Please Note: Confirmed speakers do not need to register and are encouraged to participate in all sessions of the event. If you are a speaker and have any questions please contact our offices at 1.303.770.8800

EventEarly Bird Before
Friday, October 26, 2018
Standard RateAttendees
Fundamentals of Cyber Security for UtilitiesUS $ 1195.00US $ 1395.00

This event has the following related events:

Fundamentals of Cyber Security for Nuclear PlantsUS $ 1195.00US $ 1395.00

Take advantage of these discounts!

  • Attend the Course and Fundamentals of Cyber Security for Nuclear Plants and pay US $ 1,995.00 per attendee (save US $ 395.00 each)

Register 3 Send 4th Free!

Any organization wishing to send multiple attendees to these conferences may send 1 FREE for every 3 delegates registered. Please note that all registrations must be made at the same time to qualify.

Cancellation Policy

Your registration may be transferred to a member of your organization up to 24 hours in advance of the event. Cancellations must be received on or before October 12, 2018 in order to be refunded and will be subject to a US $195.00 processing fee per registrant. No refunds will be made after this date. Cancellations received after this date will create a credit of the tuition (less processing fee) good toward any other EUCI event. This credit will be good for six months from the cancellation date. In the event of non-attendance, all registration fees will be forfeited. In case of conference cancellation, EUCIs liability is limited to refund of the event registration fee only. For more information regarding administrative policies, such as complaints and refunds, please contact our offices at 303-770-8800

By clicking Accept or closing this message, you consent to our cookies on this device in accordance with our cookie policy unless you have disabled them. more information

By clicking Accept or closing this message, you consent to our cookies on this device in accordance with our cookie policy unless you have disabled them. You can change your cookie settings at any time but parts of our site will not function correctly without them. We use cookies during the registration process and to remember member settings.

Close