The Scoop on Ransomware
Wednesday, June 15, 2022
SERC is committed to providing training and non-binding guidance to industry stakeholders regarding emerging and revised Reliability Standards. However, compliance depends on a number of factors including the precise language of the Standard, the specific facts and circumstances, and the quality of evidence.
Purpose: The focus of this event is to create awareness on Ransomware as a major risk to all critical infrastructure as well as the electric utility industry. Objectives: Raise awareness and encourage a deeper understanding of Ransomware as a risk to the electric utility industry Encourage cyber and physical security professionals to incorporate Ransomware mitigation strategies into existing security programs Present examples of good practices from registered entities within the SERC region who have implemented Ransomware Programs Target Audience This event will be of interest to those responsible for cyber and physical security within their company as well as Risk Managers, Human Resources, Legal and others who may want to learn more about the threats of Ransomware to the electric utility industry
WebEx Logon Useful Links Questions for SERC Speaker Bios
Theagendaallows timefor Q&Aafter eachpresentation.Therefore,timeslisted mayvary.
Agenda
Wednesday, June 15, 2022
WebEx Logon Useful Links Questions for SERC Speaker Bios
Chris Holmquest – SERC Senior Reliability and Security Advisor
9:00a.m.
Introduction and Logistics
Eric Howell – SERC Program Manager of Critical Infrastructure Protection
The Business of Ransomware
9:10a.m.
Ransomware in the Electricity Sector: A Timeline of Events Ransomware Threats from a FBI Perspective
9:30a.m.
Lauren Cirillo - E-ISAC Cyber Threat Intelligence Analyst
10:15a.m.
Jessica N ye – FBI Supervisory Special Agent
11:00a.m.
Break
11:10a.m.
Preparing for a Ransomware Attack
Justin Pascale – Dragos Principal Industrial Consultant
12:00 p.m.
Ransomware Resources
Patrick Stier –SERC Senior Reliability and Security Advisor
Agenda
Wednesday, June 15, 2022
WebEx Logon Useful Links Questions for SERC Speaker Bios
12:15 p.m.
Questions
Chris Holmquest – SERC Senior Reliability and Security Advisor
12:25 p.m.
Wrap – Up
12:30 p.m.
Adjourn
WebEx Logon
The WebExsessionwillbe recorded.The recordingwillbe postedto theSERC website and will, therefore, become public .
WebEx Logon Useful Links Questions for SERC Speaker Bios
WebExlogin informationwill be senttoregisteredattendeesby Tuesday, 14July ,2022 Joinby phone1-408-792-6300Call-in toll number(US/Canada)
Participants will be muted upon entry to eliminate background noise. Please send questions through the Chat feature.
IMPORTANT NOTICE: Please note that this WebEx service allows audio and other information sent during the session to be recorded, which may be discoverable in a legal matter. By joining this session, you automatically consent to such recordings. If you do not consent to being recorded, discuss your concerns with the host or do not join the session.
Slido Information SERC will be making use of slido to encourage Audience engagement as well as the Event Feedback Survey. Please scan the QR code below or go to slido.com #SERC
Useful Links
WebEx Logon Useful Links Questions for SERC Speaker Bios
Topic
Purpose
Registered Entity Forum CIP REF Steering Committee Members O&PREF SteeringCommitteeMembers
If you have a question you would like to submit anonymously, you may do so by contacting one of the Registered Entity Forum Steering Committee members.
Resource Library Newsroom
eLearning Modules, COVID-19, Hurricane and Cold Weather Preparedness, Supply Chain Resources. Past and present newsletters.
Events Calendar
Register for SERC’s upcoming outreach events
Acronym List
IndustryAcronym Reference Index
Questions for SERC
• Q&A Process • Entity Assistance Topic
WebEx Logon Useful Links Questions for SERC Speaker Bios
• General inquiries / FAQ • Seminar & W ebinar Topic Suggestions • Media inquiries
Support@serc1.org
• SERC Membership • SERC Committees • SERC Compliance& CommitteePortal/Committeerelated issues
• Registration and Certification Issues • Compliance monitoringmethods: o Self-Certification o Self-Report submittals o Compliance data submittals • Enforcement and Mitigation o Mitigation Plan submittals • SERC Compliance & Committee Portal-Compliance related issues
SERCComply@serc1.org
• Reliability Assessmentdata reporting • Reliability Assessmentforms • Annual Voting Rights • Reliability Data Reporting Portal
RAStaff@serc1.org
• Industry Subject Matter Expert (ISME) Program • Submitting an ISME application
ISME@serc1.org
• Situational Awareness • Events Analysis
SAEA@serc1.org
Speaker Biographies
Eric Howell - SERC Eric Howell is the SERC Program Manager, Critical Infrastructure Protection, responsible for the SERC CIPC including the Physical Security Subcommittee and the CIP Tools Working Group. Eric came to SERC from Georgia Systems Operation (GASOC) where he was responsible for designing and supporting the CIP infrastructure and compliance that encompassed the Energy Management Systems (EMS) monitoring and controlling the grid resources for Georgia Transmission, Oglethorpe Power and their member coops. He has also designed and implemented interfacing and communications for GE turbines around the world allowing them to communicate with the Monitoring and Diagnostic Center in Atlanta, GA. Over his career he has had the opportunity to work in many industries including teaching the hardware, software and physics of Magnetic Resonance Imaging. He designing and implementing network and computer infrastructures for financial processing companies, heavy equipment manufacturing companies, communications companies, and international governments. Throughout his career Eric has had the opportunity to work with and interact with people and cultures around the world as he brought technology to organizations and taught the skills to maintain this technology. During his time in the control center. Chris spent several years as an Energy Management Systems (EMS) Engineer and later joined the newly formed NERC Compliance and Training group as a System Operator training engineer. During that time Chris became NERC certified as a Reliability Coordinator (RC) as he built and delivered training programs for operations personnel. Chris was instrumental in starting and building his company’s CIP compliance program and became the manager of CIP Compliance in its new NERC Compliance and Operations Technology group. Chris was also the manager of his company’s NERC Training Department through the PER-005 compliance implementation effort, as well as the manager of both the EMS and Applications teams and the CIP Compliance group. Chris Holmquest - SERC Chris Holmquest joined SERC in July 2019 as a Senior Reliability and Security Advisor. Prior to joining SERC, Chris was with the Florida Reliability Coordinating Council (FRCC) Regional Entity. He joined FRCC RE as a CIP Compliance Auditor in 2013, and was promoted to Manager, Risk Assessment and Mitigation in 2014, as part of the new NERC initiative for Risk-Based Compliance Monitoring and Enforcement. Chris was the FRCC RE representative on the CIP V5 Transition Study, where he worked with the SERC representative and the two SERC utilities selected for the study. Chris has 37 years of electric utility experience, serving over 30 years with a medium-sized electric utility before joining FRCC RE. Chris spent eight years in fossil generation and 23 years at the transmission and generation control center.
Speaker Biographies
Jessica Nye – FBI Supervisory Special Agent Jessica Nye is the current Supervisor of the FBI Cyber Squad in Raleigh, NC. Prior to her arrival in North Carolina in 2015, SSA Nye spent eight years working in the Baltimore Field Office on their Cyber Squad and two years at FBI Cyber Division Headquarters in Washington DC. She has significant experience working cyber-related matters including computer intrusion investigations, intellectual property (IP) rights violations, theft of trade secrets, economic espionage and other investigations.
Lauren Cirillo - E-ISAC Lauren Cirillo is a Cyber Threat Intelligence Analyst, specializing in identifying and analyzing threats to the electricity sector. She is passionately dedicated to sharing timely, actionable information, and is a frequent presenter for the E-ISAC’s monthly briefing series, and other electricity sector briefings. Last year, Lauren also created the cyber content for the largest grid security exercise in North America, Gridex.
Speaker Biographies
Justin Pascale – Dragos Justin Pascale is a Principal Industrial Consultant at Dragos, Inc. where he helps asset owners and business leaders better understand and enhance their OT cybersecurity capabilities. Justin believes in working with customers to identify tailored cybersecurity solutions that align with and support business objectives and operational practices. Prior to joining Dragos, Justin worked as a cybersecurity consultant for General Electric. In this role he was responsible for leading cybersecurity risk assessments and risk treatment initiatives. Justin began his career in the United States Army as a Military Intelligence Officer tasked with supporting intelligence deliverables through cyber threat analysis.
Patrick Stier – SERC Patrick Stier is a Senior Reliability and Security Advisor at SERC Reliability Corporation. Mr. Stier has 34 years in the security industry as a National Security leader, specializing in high-profile technical security, risk management, financial leadership, operational efficiency, and crisis management. Prior to joining SERC, Mr. Stier served in the U.S. Navy and the U.S. Secret Service, providing physical and technical security for numerous U.S. Presidents and Foreign Heads of State to include over 1200 different protected venues and National Special Security Events. Mr. Stier has a Bachelor of Arts in Criminal Justice/Law Enforcement Administration. He also holds Board Certifications in Certified Information Security Manager (CISM), Certified Protection Professional (CPP), Physical Security Professional (PSP), Professional Certified Investigator (PCI), Enterprise Security Risk Management (ESRM), Certified Technical Investigator (CTI), Network Intrusion Investigator (NITRO) and Enterprise and Broadband Network Administration .
ThankYou
ADDITIONAL INFORMATION Questions concerning registration and meeting content - Lynn Black
Follow for updates
Page 1 Page 2 Page 3 Page 4 Page 5 Page 6 Page 7 Page 8 Page 9 Page 10 Page 11Made with FlippingBook - Online magazine maker