Future threats and impact on organizations and operations – An Overview (TB 796)
Thu, Oct 15, 2020 1:30 PM - 2:30 PM CEST
This tutorial describes a systems engineering approach to assess and mitigate future cyber-physical security (CPS) risks from advanced persistent threats (APTs). The finding include the need to improve three elements of maturity: people skills, processes, and technical control solutions.
This tutorial describes the security requirements to mitigate future cyber-physical security (CPS) risks from advanced persistent threats (APTs) that employ sophisticated time-on-target attack doctrine. A model-based system engineering methodology based on Zachman’s lifecycle framework is used to assess the risks and potential means to mitigate these risks. The tutorial stresses the need to combine role-based and attribute-based access control to protect the integrity and confidentiality of the sensitive data. If sensitive data is compromised, a trusted platform is needed to securely collect and safeguard the evidence needed for forensic analysis. In response to APTs employing the time-on-target attack doctrine, electric power utilities (EPUs) need to standup a center of excellence, commonly called an integrated security operations center (ISOC). This tutorial describes the advanced personnel skills and supporting analytical technologies needed to enable the ISOC to discover and trap the adversary’s reconnaissance in the early stage of the kill chain.
This webinar is presented by Dennis K. HOLSTEIN, of CIGRE Working Group D2.46, "Future threats and impact on electric power utility organizations and operations”, that published the Technical Brochure 796 (available from www.e-cigre.org), in 2020.
The registration to this webinar is free for all, CIGRE members and non-members. Technical Brochures can be freely downloaded by CIGRE members. If you are not a CIGRE member, join us on https://www.cigre.org/GB/join/how-to-join.
To register: https://register.gotowebinar.com/register/3565072300751223821