Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Copyright	©	2015	Splunk	Inc.	
Managing	SCADA	Opera>ons	and	Security	
with	Splunk	Enterprise
2	
Will	Gage	
Supervisor,	SCADA	Infrastructure	
and	Cyber	Security	
	
Enterprise	Products	Partners,	L.P.	
	
12	Years	-	Oil...
3	
Agenda	
!   About	Enterprise	Products	Partners	
!   About	the	SCADA	Infrastructure	and	Cyber	Security	Team	
!   Where	W...
4	
Enterprise	Products	Partners
5	
SCADA	Infrastructure	and	Cyber	Team
6	
How	We	Got	Started	
!   Recognizing	the	opera>onal	
differences	between	OT	and	IT	
!   Recognizing	the	technical	
simila...
7	
Splunk	Enterprise	at	EPD	
Alerts	Messages	 Metrics	 Changes	Scripts	Configura>ons	Log	Files	
Databases	Networks	 Servers...
8	
Infrastructure	Opera>ons	
Improving	SCADA	Network	Availability	and	Performance	
•  SCOM	
replacement	
•  Need	for	rapid...
9
10	
Cyber	Security	
Protec>ng	Cri>cal	Infrastructure	Against	Threats
11	
Cyber	Security	
Protec>ng	Cri>cal	Infrastructure	Against	Threats	
•  Palo-Alto	project	
•  Suppor>ng	VPN	
environments...
12
13	
Improved	SLA’s	
Adhering	to	PHMSA	requirements	with	Splunk	Enterprise	
•  Aware	of	issues	within	
30	seconds	
•  Rigor...
14	
What’s	Next
15	
Top	Takeaways	
!   OT	and	IT	are	both	similar	and	different	
!   Best	prac>ces	for	managing	opera>ons,	cyber	security	
...
Thank	You
Upcoming SlideShare
Loading in …5
×

Managing SCADA Operations and Security with Splunk Enterprise

947 views

Published on

Customer presentation by Enterprise Products Partners

Published in: Technology
  • Be the first to comment

  • Be the first to like this

Managing SCADA Operations and Security with Splunk Enterprise

  1. 1. Copyright © 2015 Splunk Inc. Managing SCADA Opera>ons and Security with Splunk Enterprise
  2. 2. 2 Will Gage Supervisor, SCADA Infrastructure and Cyber Security Enterprise Products Partners, L.P. 12 Years - Oil and Gas Industry Experience
  3. 3. 3 Agenda !   About Enterprise Products Partners !   About the SCADA Infrastructure and Cyber Security Team !   Where We Were !   Where We Are !   Where We Are Headed !   What You Can Do Too
  4. 4. 4 Enterprise Products Partners
  5. 5. 5 SCADA Infrastructure and Cyber Team
  6. 6. 6 How We Got Started !   Recognizing the opera>onal differences between OT and IT !   Recognizing the technical similari>es between OT and IT !   Suppor>ng the SCADA Systems before Splunk !   Difficul>es mee>ng SLA’s (Regulatory)
  7. 7. 7 Splunk Enterprise at EPD Alerts Messages Metrics Changes Scripts Configura>ons Log Files Databases Networks Servers Virtual Machines Custom Applica>ons Security Web Servers •  Infrastructure and Applica>ons Ops •  Cyber Security •  Improving SLAs
  8. 8. 8 Infrastructure Opera>ons Improving SCADA Network Availability and Performance •  SCOM replacement •  Need for rapid recovery •  Impacts on safety and availability
  9. 9. 9
  10. 10. 10 Cyber Security Protec>ng Cri>cal Infrastructure Against Threats
  11. 11. 11 Cyber Security Protec>ng Cri>cal Infrastructure Against Threats •  Palo-Alto project •  Suppor>ng VPN environments •  Monitoring firewalls for alarming ac>vity •  Monitoring of industrial protocols
  12. 12. 12
  13. 13. 13 Improved SLA’s Adhering to PHMSA requirements with Splunk Enterprise •  Aware of issues within 30 seconds •  Rigorous escala>ons •  Prescrip>ve aler>ng •  Resolu>on in 4 minutes or less NOW w/ This is a legal steroid for SPLUNK!
  14. 14. 14 What’s Next
  15. 15. 15 Top Takeaways !   OT and IT are both similar and different !   Best prac>ces for managing opera>ons, cyber security and SLA’s with Splunk Enterprise !   How you too can be a SCADA superhero with Splunk Enterprise
  16. 16. Thank You

×