Register for this Webinar
On-Demand Webinar:

ICS4ICS-ISA Global Cybersecurity Alliance Stands Up ICS Incident Response System

Cyber response is the only recognized disaster response domain that does not utilize FEMA’s Incident Command System Framework. The ISA Global Cybersecurity Alliance joined forces with the DHS ICS Joint Working Group (ICSJWG), electric utilities, cybersecurity response teams, and over 50 participating companies to include cyber-incidents in the updated framework – learn what it means for your company.



Date: May 21, 2021
Time: 12 PM EDT (9 AM PDT / 6:00 PM CEST)
Duration: 1 hour
Presented by:

Overview

Did you know that cyber response is the only recognized disaster response domain that does not utilize the Incident Command System Framework?

The ISA Global Cybersecurity Alliance has joined forces with the Department of Homeland Security ICS Joint Working Group (ICSJWG), electric utilities, cybersecurity response teams, and more than 50 participating companies to update the framework and create the Incident Command System for Industrial Control Systems (ICS4ICS). ICS4ICS is a growing public-private partnership with DHS that leverages FEMA's Incident Command System framework for response structure, roles, and interoperability. This is the same system used by First Responders globally when responding to hurricanes, floods, earthquakes, industrial accidents, and other high impact situations. The approach guides companies, organizations, and municipalities in identifying an incident, assessing damage, addressing immediate challenges, communicating with the right agencies and stakeholders, and resuming day to day operations.

Join us to learn how the framework can help your organization prepare for and respond to cyber incidents using a planned, coordinated, proven approach that has been vetted by industry companies and subject matter experts. The webinar will detail the conversations underway to develop common language and standardized approaches to make the identification and communication about a cybersecurity incident easier to manage, along with laying the groundwork for a defined step-by-step response template. This program will have significant value for small to medium sized entities that do not have the time, dollars, or head count to assign a full time cyber response unit, but still need to develop plans and train employees accordingly.

Key Takeaways

  • ICS4ICS is a growing public-private partnership between the ISA Global Cybersecurity Alliance and the Department of Homeland Security (DHS) ICS Joint Working Group (ICSJWG)
  • Leveraging FEMA's Incident Command System framework for response structure, roles, and interoperability, ICS4ICS is developing an approach to guide companies, organizations, and municipalities in their response to cyber incidents
  • This framework can help your organization prepare for and respond to cyber incidents using a planned, coordinated, proven approach that has been vetted by industry companies and subject matter experts

Speakers

Megan Samford, VP, Chief Product Security Officer for Energy Management, Schneider Electric

Megan is a security executive with focus on industrial control systems security, critical infrastructure protection, and risk analysis. Megan is responsible for driving the product security strategy and program for Schneider Electric's Energy Management business. In taking her role at Schneider Electric, Megan became the first female CPSO for a major industrial without first being a CISO, this has been recognized as a huge achievement for women in industrial control systems security.

Prior to Schneider Electric, Megan was the Global Director of Product Safety and Security for Rockwell Automation, Product Security Leader for GE Global Research and lead for the GE Product Security Incident Response Team. While in working in the public sector, she served as the Commonwealth of Virginia's Critical Infrastructure Protection Coordinator within the Governor's Offices of Tim Kaine and Bob McDonnell. Megan brings a unique perspective to the security community, based on her diverse security background, with an interest in utilizing proven concepts from traditional critical infrastructure protection and emergency management foundations, such as Incident Command System and preparedness, and applying those to cyber, in particular for industrial control systems incident response. She is currently the Chairperson for the ISA Global Cybersecurity Alliance, and she is also leading a community driven effort, known as Incident Command System for Industrial Control Systems (ICS4ICS) which seeks to establish a common language for responding to cyber incidents and provide avenues for mutual assistance between organizations.

Megan has served on numerous boards including Virginia Commonwealth University's School of Electrical and Computer Engineering (ECE), Security Analysis and Risk Management Association (SARMA) Department of Homeland Security's Control Systems Security Working Group (CSWG), Trusted Computing Group (TCG), and Virginia Aviation Security Advisory Council (VASAC). She is also a returning 2020 Program Chair for the RSA Conference, "Secure All The Things" track. She holds a bachelor's degree in homeland security and emergency preparedness as well as a master's in public administration, both from Virginia Commonwealth University.

Neal Gay, Senior Manager, Managed Defense/Industrial Control Systems, FireEye

Neal Gay leads FireEye's Managed Defense for OT SOC/Rapid Response Team and has been with FireEye since 2013. Managed Defense for OT delivers continuous threat detection, asset modeling and rapid response using world-class intelligence, technology, and proven detection methodologies.

Prior to FireEye, Neal worked with various U.S. Government agencies in various SOC, Policy, and Insider Threat roles and has been performing incident response to advanced threat groups since 2008. He started his career as a mechanical engineer wrangling PLCs on textile factory floors across the Carolinas.

Neal currently lives in North Carolina and is a Major in the US Civil Air Patrol performing air, ground, and incident command roles.

Jennifer Halsey, Director of Communications and Brand Engagement, International Society of Automation

Jennifer Halsey is the Director of Communications and Brand Engagement at the International Society of Automation. The International Society of Automation (isa.org) is a non-profit professional association founded in 1945 to create a better world through automation. The organization develops widely used global standards, including the UN-endorsed ISA/IEC 62443 series; certifies industry professionals; provides education and training; publishes books and technical articles; and hosts conferences and exhibits. ISA created the ISA Global Cybersecurity Alliance (isa.org/ISAGCA) to advance cybersecurity readiness and awareness in manufacturing and critical infrastructure facilities and processes. ISAGCA brings end-user companies, automation and control systems providers, IT infrastructure providers, services providers, system integrators, and other cybersecurity stakeholder organizations together to proactively address growing threats.