About the conference:

The Herzliya Conference, the flagship event of the Institute for Policy and Strategy at IDC Herzliya, is a year-long work cycle consisting of the following phases: 

• Preliminary research and analysis conducted by the Herzliya Taskforces and commissioned experts; 
• The Conference, at which major policy statements and initiatives are delivered, and Herzliya Roundtables are held, followed by deliberations and the presentation of specially commissioned reports and studies; 
• Executive Herzliya Reports presented to key policy-makers, summarizing the Conference’s proceedings, findings, and major policy recommendations.  

Conference links:

Conference Website

About the conference:

The U.S. Nuclear Regulatory Commission has approved the Cyber Security Plans and Implementation Schedules for all currently operating commercial nuclear power reactors in the United States.  The NEI Cyber Security Implementation Workshop will assist licensees in implementing the requirements of the Plan and in meeting the milestones in the Implementation Schedule. 

Attendance at day one of the Workshop is restricted to employees of nuclear power plant utilities.  Others will not be permitted to register or attend.  Day one will focus on the activities associated with implementing milestones from the Implementation Schedule that are due to be completed by December 31, 2012. The format will be small break-out sessions that will focus on each of the seven milestones.  Session leaders will facilitate in-depth discussion regarding milestone implementation strategies, acceptance criteria, guidance for conducting audits and assessments, and preparing for inspections of the program. 

Days two and three will be open for general attendance, and will include presentations, panel discussions, and exhibitor fire-talks. 

Conference links: 

Conference Website

Registration

About the conference:

Securing the End-to-End Smart Grid Ecosystem

In the year since Stuxnet first struck, cyber security has become of critical concern for utilities. Securing the emerging smart grid must be an end-to-end, architectural undertaking built into all facets of IT, OT, ICS, communications and infrastructure. Introducing intelligence and two-way communication into the utility network means opening the door to vulnerability, and utilities must proceed with caution.

Organized by The Smart Grid Observer, the one day, 100% online Smart Grid Cyber Security Virtual Summit features a series of in-depth presentations designed to examine the very latest technologies, deployment strategies, best practices, and lessons learned in making smart grid security a reality. Critical questions addressed include:

• Where are the most significant weak points in the smart grid’s security? How should we address them?
• What is the current nature of the cyber security threat? What do we need to worry about?
• What are the latest NERC CIP requirements and how best to comply?
• What are the key technology enablers and advances for smart grid cyber security?
• What are the best practices and strategies for securing AMI?
• How can utilities effectively go about securing software and embedded devices designed for the smart grid?

Topics to be addressed include:

– Securing the end-to-end smart grid ecosystem — the big picture
– Safeguarding customer data and privacy
– Security systems integration and interoperability
– Evaluating, measuring, and testing smart grid security systems
– Standards update and trends
– Lessons from the trenches: utility cyber security case studies
– Managing potential security exposure — determining limits
– HAN security
– Latest vendor offerings and components
– Regulatory trends, developments, and expectations
– Crossing organizational silos to ensure smart grid security
– Network monitoring and anomaly detection

Conference links: 

Conference Website 

Registration

About the conference:

CyberSec, the international information cyber security conference, interacts companies, organizations and governmental bodies with cyber security experts to discuss latest developments in protecting enterprises from upcoming threats.

Topics:

-New techniques in enterprises cyber protection
-Avoiding APT best practices
-Meeting social attacks challenges
-Cloud cyber implications
-Israel 2012 – cyber security for business, governmental and defense segments
-Legal implications with cyber crime and cyber warfare

Conference links: 

Conference Website 

Registration

About the conference:

PennWell Corporation, publisher of WaterWorld, Industrial WaterWorld, and Water & Wastewater International magazines, will once again host its completely online water industry conference and exhibition, VirtualH₂O, on February 21, 2012 (8:00AM – 6:00PM ET).

VirtualH₂O combines virtual tradeshow exhibits and conference presenations to deliver attendees an innovative — and convenient — opportunity to network with and learn from leaders in the water and wastewater industries.

Conference Program:

VirtualH₂O offers attendees access to an expansive array of conference presenations addressing important topics in municipal drinking water, municipal wastewater, industrial water/wastewater, urban water management, and municipal water utility management.
Visitors who attend an entire presentation — even during the archive period — will receive a certificate of attendance, which can be used to apply for Professional Development Hours (PDH) with their respective state organizations.

Conference links: 

Conference Website

Registration

About the conference:

 The World Institute for Nuclear Security (WINS, Atomic Energy of Canada Limited (AECL), Bruce Power and Ontario Power Generation (OPG) are pleased to announce an International Best Practice Workshop on Security of Information Technology (IT) and Instrumentation and Control (IC) Systems.

This workshop will take place at the Delta Chelsea Hotel in Toronto, Ontario, Canada on the 27th -29th of February 2012.

Conference links: 

Conference Announcement

About the conference:

As an industry and as a nation, we must keep our sites secure and informed about the many changing threats to our critical infrastructure. The threats are diverse and increasing and could change the way refiners and petrochemical manufacturers operate. The conference presents current topics of critical importance to assist attendees in keeping themselves up to date on national critical infrastructure security issues—from terrorism to oil field crimes to DHS regulations and policies!

Don’t miss this great opportunity to meet with key government contacts, network with industry security experts and hear from national authorities on the terrorist threat the industry faces today.

Conference links: 

Conference Website

About the conference:

The Summit brings together the program managers, control systems engineers, IT security professionals and critical infrastructure protection specialists from asset owning and operating organizations along with control systems and security vendors who have innovative solutions for improving security. Along with government and research leaders, they are coming together to learn and discuss the newest and most challenging cyber security risks to control systems and the most effective defenses. The Security Summit is an action conference designed so that every attendee leaves with new tools and techniques they can put to work immediately when they return to their office.

The Summit is the place to come and interact with top SCADA experts, key government personnel, researchers and asset owners at the multiple special networking events.

In addition to the Summit, you will be able to attend technical courses led by the top SCADA experts that will provide a deep dive into how to combat the Advanced Persistent Threat.

Conference links:

Conference Website

Registration

Join us for a Webinar on January 24

Space is limited.
Reserve your Webinar seat now at: https://www3.gotomeeting.com/register/511965646

NERC has issued CAN-0024, which provides guidance to NERC-CIP auditors as to when unidirectional communications equipment or “data diodes” must be considered to facilitate “routable communications.” An increasing number of NERC entities are deploying unidirectional communications equipment, because such equipment provides stronger security to protected cyber assets than firewalls are able to provide. The CAN-0024 guidance makes it clear that some such deployments use routable protocols, and other deployments do not. In some cases, this distinction influences which cyber assets must be classified as Critical Cyber Assets. Join us as three industrial security experts explore the guidance in the CAN, and apply that guidance to Waterfall Unidirectional Security Gateways.

Andrew Ginter is the Director of Industrial Security at Waterfall Security Solutions. Andrew’s background includes 25 years of experience in the development of both control systems products and industrial cyber-security products. Waterfall Security Solutions is the market leader in unidirectional communications for industrial applications.

Mark Simon has been a senior consultant with Encari since June 2008. Prior to joining Encari, Mark practiced law for nearly 20 years in Chicago where he had his own firm and concentrated in general civil litigation.   Mark has a M.Sc., JD and is a CISSP. He was an adjunct faculty member of DePaul University’s College of Computing and Digital Media from 2005 until 2011, and is currently located in London. Encari is a focused critical infrastructure protection consulting firm, providing information and control security and NERC CIP compliance consulting services.

Joel Langill is “The SCADAhacker”.  With more than 25 years experience in designing and implementing some of the world’s largest automation solutions, Joel offers a unique approach to securing control systems for critical infrastructure by looking problems in the same manner as a knowledgeable attacker would while target a real-world industrial fac

Title: NERC Issues CAN-0024: Guidance for Unidirectional, Routable Communications

Date: Tuesday, January 24, 2012

Time: 12:00 PM – 1:00 PM EST

After registering you will receive a confirmation email containing information about joining the Webinar

System Requirements
PC-based attendees
Required: Windows® 7, Vista, XP or 2003 Server

Macintosh®-based attendees
Required: Mac OS® X 10.5 or newer

About the conference:

This year’s Symposium has some new and exciting components, including industry-leader keynote speakers; Ask the Expert, (where questions can be directed at experts in your fields of interest), and topical, detailed presentations by a panel of expert users directed at attendees’ specific areas of interest. 

Conference links: 

Conference Website 

Registration