This is the 2021 Agenda - The Full Agenda for 2022 Will Available Shortly. (See Available Training Options for 2022) - Register for 2022 Now
Back To Schedule
Tuesday, October 26 • 2:15pm - 2:45pm
Combining Threats, Vulnerabilities and Consequences to Better Understand and Defend ICS systems

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Securing Process Control and Safety Instrumented Systems requires a holistic approach that recognizes threats and vulnerabilities while also understanding the consequences of a compromised system. Many approaches today look at the threats and vulnerabilities (often focused mostly on the process control network) or the consequences (process risk) without viewing them as a unified landscape that we are trying to defend.

This presentation will discuss the processes and methodologies MITRE uses in the functional safety engineering space that helps to identify, quantify, and rectify process risk to systems while leveraging the real world threat and vulnerability information available to allow us to realistically prioritize our actions in strengthening our ICS security posture. This talk will dive into some tried and true techniques as well as some of the newer more contemporary approaches to understanding the threat and providing the required mitigations/controls to bring operations into the threshold of tolerable risk.

avatar for Michael	Thompson

Michael Thompson

National Cyber Security FFRDC (NCF), MITRE
avatar for Tom Cottle

Tom Cottle

Lead Cyber Physical & Control Systems / OT Security Engineer, MITRE Corporation
Tom is a Lead Cyber Physical & Control Systems/Operational Technology Security Engineer at The MITRE Corporation with more than 15 years working in process control engineering and design, process and functional safety, compliance program management, project management, risk analysis... Read More →

Tuesday October 26, 2021 2:15pm - 2:45pm EDT