IET logo
 
cyber ics - header

Cyber Security for Industrial Control Systems

Secure solutions for cyber-physical systems

7 - 8 February 2018 | IET London: Savoy Place

IET London: Savoy Place (logo) CPD 16 hours
 

Conference programme: 8 February 2018

08:45

Registration and refreshments

09:30

Chairman’s welcome

Chair: Mike St John Green, Independent Security Consultant, IET Cyber Security Network

09:35

Keynote: Appetite for destruction: Addressing emerging threats today

This presentation showcases the attacks our infrastructure is facing today, but provides insights where partners can gain access to this intelligence, and the measures that can be used to mitigate against them.

Raj Samani, Chief Scientist & McAfee Fellow, McAfee, UK

10:05

Keynote: Cybersecurity for industrial automation and control systems in the major hazard industries - complying with the law

Cyber security is a term used to define measures taken to protect industrial automation and control systems (IACS) against threats to security through accidental circumstances, actions or events, or through deliberate attack.

This session will describe the work the Health and Safety Executive is doing and the approaches that can be used by the Operators in ensuring risks are identified and managed to ‘as low as reasonably practicable’ using a proportionate approach to comply with the requirements of the law.

Sarabjit Purewal, Head of Operations in the Chemicals sector of the Health and Safety Executive (HSE), Health and Safety Executive, UK

10:35

Q&A

10:45

Refreshments and networking

11:00

National Cyber Security Centre strategy, objectives and guidance to help improve cyber-security resilience of UK Critical National Infrastructure from cyber-physical threats

The NCSC was set up in 2016 to help protect UK’s critical services from cyber attacks, manage major incidents, and improve the underlying security of the UK Internet through technological improvement and advice to citizens and organisations.

NCSC supports the most critical organisations in the UK, the wider public sector, industry and SMEs. When incidents do occur, NCSC provides effective incident response to minimise harm to the UK, help with recovery, and learn lessons for the future.

Tony B, Operations Head of CNI Capability and ICS Tech Lead, NCSC, UK

11:30

Outcome focused regulation and self-determination – 2 sides of the same coin

This presentation will cover the evolution of Security Assessment Principles and their application to ICS.

Office for Nuclear Regulation (ONR) independently regulates nuclear safety and security at 36 nuclear licensed sites in the UK.

ONR also regulates transport and ensures that safeguards obligations for the UK are met. Its duty is to ensure that the nuclear industry controls its hazards effectively, has a culture of continuous improvement and maintains high standards.

Tom Parkhouse, Head of Nuclear Cyber Security Regulation, ‎Office for Nuclear Regulation, UK

12:00

Case study: Building cyber resilience for nuclear industry facilities

Phil Litherland, Principal Consultant Strategy and Advisory, Context, UK

12:30

Lunch and networking

13:30

Active Defence using an Operational Technology Honeypot

  • The presentation discusses research to examine the benefits of deploying a high interaction hardware Operational Technology (OT) or Industrial Control System (ICS) honeypot.
  • The OT Honeypot Project successfully demonstrated an innovative approach to implementing a situational awareness capability in an operational industrial control system environment. The approach also contributes to an organisation’s potential forensics capability for ICS systems.
  • This was achieved via a remote access platform without disrupting operations, whilst preserving vital evidence.

Richard Piggin, Chairman, IET Cyber Security Network

14:00

Design-in cyber security, lessons from The Single European Sky Air Traffic Management Research programme (SESAR)

SESAR is a bold programme to modernise the management of air traffic control. In recognition of the future security challenges a cross-cutting programme of ‘design-in’ security was established early on in the programme to define the security requirements of next generation air traffic control operations.

This talk will describe the cross industry collaborative approach taken, its evolution, aspects of the methodology and supporting tools, unsolved problems, difficult challenges and lessons learned. 

Martin Hawley, Founder, Winsland Ltd., UK
John Hird,
ATM Security Specialist, EUROCONTROL, EU

14:30

Industry 4.0: "Digitalisation changes everything"

Siemens will give an overview of Industry 4.0, how data is changing manufacturing, and security features of their IoT Operating System.

  • Drivers of the 4th Industrial revolution
  • Factories of the future
  • The big data challenge
  • IoT in the industrial environment
  • MindSphere Security

Mark McCormick, Industrial IT Security Engineering Consultant, Plant Security Services, SIEMENS, UK

15:00

Refreshments and networking

15:30

The Industrial Immune System: using machine learning for real-time threat detection across OT and IT

Andrew Tsonchev, Cyber Security & SCADA Specialist, Darktrace

16:00

Using Machine Learning to secure Industrial Control Systems

  • The anatomy of attacks on Industrial Control Systems
  • Potential attack disruption techniques
  • Deep learning and anomaly detection

Chris Hankin, Co-Director, Institute for Security Science and Technology, UK

16:30

Panel discussion: Artificial intelligence, standardisation and cyber security best practice guidance

How do we get the most of the information currently out there? Does one size fit all?

Take the opportunity to put questions to our expert panel of speakers, and share solutions with your peers to overcome the challenges you are facing in security of ICS.

  • Does the increased threat to ICS represent a game-changer or is it good enough to carry on as we are?
  • What does practical security look like in legacy ICS environments?
  • How do we certify ICS that are important to safety in the world of Industrie 4.0, with its reliance on data from multiple sources?
  • How do we assure ICS that incorporate machine-learning?

Panel:
Chris Hankin, Co-Director, Institute for Security Science and Technology
Raj Samani, Chief Scientist & McAfee Fellow, McAfee
Andrew Tsonchev,
Cyber Security & SCADA Specialist, Darktrace
Richard Piggin, Chairman, IET Cyber Security Network

17:15

Chair’s comments

17:30

Close

Programme is correct at time of publication. Topics and speakers are subject to change.

Headline sponsor

Pricing

Member - from £315

Non-member - from £395

Student / retired - from £135