SlideShare a Scribd company logo

THE STATE OF THE ICS CYBERSECURITY THREAT LANDSCAPE FOR DIGITAL OILFIELDS

I
iQHub

Michael Holcomb FLUOR

Business
1 of 16
Classification: The State of Control Systems Cyber Security 2022 for Digital Oilfields 1 Michael Holcomb, Fellow – Cyber Security, CISSP, GRID, GICSP, ISA/IEC 62443 michael.holcomb@fluor.com
Classification: General Why Are We Here? Examples of Real-World ICS Attacks What Are We Protecting In Cyber Security? Who, What, Where and Why Protecting Our Sites So Why Does it Matter? GV20181311-004 2 Overview
Classification: General GV20181311-004 3 Why Are We Here?
Classification: General 1982: Trans-Siberian pipeline explosion 2003: SQL Slammer brings down the Davis-Besse plant 2009: Conficker infects power plants in the U.S. 2010: Stuxnet discovered 2015: Ukrainian power grid taken offline 2016: Ukrainian power grid taken offline (yes, again) 2017: Attackers compromise Safety Instrumented Systems (SIS) 2021: Major gas pipeline taken offline due to ransomware GV20181311-004 4 Examples of Real-World ICS Attacks
Classification: General 2013: Several rigs knocked offline when employees downloaded infected pirated videos to their personal laptops over the rigs’ satellite Internet connections 2020: Oil rig manufacturer taken offline by ransomware GV20181311-004 5 Examples of Real-World ICS Attacks (Oilfields)
Classification: General GV20181311-004 6 What Are We Protecting In Control Systems Cyber Security?
Classification: General GV20181311-004 7 What Are We Protecting In Control Systems Cyber Security? Health, Safety & Environment
Classification: General GV20181311-004 8 We Have to Ask… But how can we do this securely?
Classification: General Dragos, founded by Rob M. Lee, is one of the global leaders in ICS security – Rob M. Lee established the ICS monitoring group for the United States’ National Security Agency (NSA) Covers four different aspects of ICS security: – Threat Actors – Vulnerabilities – Incident Response – Industrial Cybersecurity Strategy GV20181311-004 9 Dragos’ “Year in Review” Reports Source: https://dragos.com/year-in-review/
Classification: General Information gathering and espionage Operational disruption Reputational loss Cyber terrorism Impact Safety Money GV20181311-004 10 Why Are They Attacking? Nation-State Actors Commodity Malware
Classification: General Attacks are significantly increasing in frequency and impact New nation-state and other attack groups with advanced capabilities are being identified each year Majority of control environments have operations impacted by commodity malware infections which start in the enterprise or third- party networks Most attacks leverage “Living off the Land” which bypass traditional detection means Supply chain compromises continue to be on the rise GV20181311-004 11 What and Where Are They Attacking?
Classification: General 86% of environments did not have the visibility required to effectively identify an intrusion 77% of penetration tests resulted in initial access being obtained in an easy manner 44% of networks had shared credentials between the IT network and the ICS network 70% of IR engagements involved ICS networks which were accessed from the Internet 58% of ICS facilities had a solid Incident Response Program GV20181311-004 12 ICS Environment Assessment Observations
Classification: General GV20181311-004 13 We Have to Ask… But how can we secure our environments?
Classification: General Network Segmentation – Use the Purdue Model to ensure that the control network and other network segments at the facility are properly segmented with restrictive firewalls configured to block all traffic by default Increase Detection Capabilities – Deploy passive detection capabilities which identify any abnormal activity on the control network for immediate investigation Increase Response Capabilities – Build an Incident Response program specific to the ICS environment to be able to effectively contain and eradicate incidents in a timely manner GV20181311-004 14 Protecting Our Industrial Facilities
Classification: General Conduct Risk Assessments – Leverage existing frameworks such as ISA 62443 to identify gaps in the environment’s cyber security and physical engineered controls Awareness Training – Ensure all computer-based users at a facility receive security awareness training, especially in identifying and not falling victim for phishing emails Secure Remote Access – Use Multifactor Authentication (MFA) to secure remote access. Use other security controls such as dial back and monitored jump hosts as alternatives when necessary. GV20181311-004 15 Protecting Our Industrial Facilities (cont.)
Classification: General Please reach out at any time with cyber security related questions! Michael Holcomb michael.holcomb@fluor.com 864.281.5958 linkedin.com/mikeholcomb GV20181311-004 16 Thank You!

Recommended

An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
An Approach to Closing the Gaps between Physical, Process Control, and Cybers...An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
EnergySec
 
Securing SCADA
Securing SCADA Securing SCADA
Securing SCADA
Jeffrey Wang , P.Eng
 
Securing SCADA
Securing SCADASecuring SCADA
Securing SCADA
Jeffrey Wang , P.Eng
 
Thrice Is Nice: Ukraine In Review
Thrice Is Nice: Ukraine In ReviewThrice Is Nice: Ukraine In Review
Thrice Is Nice: Ukraine In Review
Joe Slowik
 
Nozomi Fortinet Accelerate18
Nozomi Fortinet Accelerate18Nozomi Fortinet Accelerate18
Nozomi Fortinet Accelerate18
Nozomi Networks
 
Iot cyber security
Iot cyber securityIot cyber security
Iot cyber security
sajid mehmood
 
Utilization of Encryption for Security in SCADA Networks
Utilization of Encryption for Security in SCADA NetworksUtilization of Encryption for Security in SCADA Networks
Utilization of Encryption for Security in SCADA Networks
International Journal of Engineering Inventions www.ijeijournal.com
 
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Abhishek Goel
 

Recommended

An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
An Approach to Closing the Gaps between Physical, Process Control, and Cybers...An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
An Approach to Closing the Gaps between Physical, Process Control, and Cybers...
EnergySec
 
Securing SCADA
Securing SCADA Securing SCADA
Securing SCADA
Jeffrey Wang , P.Eng
 
Securing SCADA
Securing SCADASecuring SCADA
Securing SCADA
Jeffrey Wang , P.Eng
 
Thrice Is Nice: Ukraine In Review
Thrice Is Nice: Ukraine In ReviewThrice Is Nice: Ukraine In Review
Thrice Is Nice: Ukraine In Review
Joe Slowik
 
Nozomi Fortinet Accelerate18
Nozomi Fortinet Accelerate18Nozomi Fortinet Accelerate18
Nozomi Fortinet Accelerate18
Nozomi Networks
 
Iot cyber security
Iot cyber securityIot cyber security
Iot cyber security
sajid mehmood
 
Utilization of Encryption for Security in SCADA Networks
Utilization of Encryption for Security in SCADA NetworksUtilization of Encryption for Security in SCADA Networks
Utilization of Encryption for Security in SCADA Networks
International Journal of Engineering Inventions www.ijeijournal.com
 
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
Abhishek Goel
 
Cyber Security for SCADA
Cyber Security for SCADACyber Security for SCADA
Cyber Security for SCADA
Richard Umbrino
 
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
John Hamilton, DAHC,EHC,CFDAI, CPP, PSPO
 
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
qqlan
 
Encryption Security in SCADA Networks
Encryption Security in SCADA NetworksEncryption Security in SCADA Networks
Encryption Security in SCADA Networks
IJRES Journal
 
Power Plants Security Webinar Presentation
Power Plants Security Webinar PresentationPower Plants Security Webinar Presentation
Power Plants Security Webinar Presentation
Certrec
 
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
TI Safe
 
Practical analysis of the cybersecurity of European smart grids
Practical analysis of the cybersecurity of European smart gridsPractical analysis of the cybersecurity of European smart grids
Practical analysis of the cybersecurity of European smart grids
Sergey Gordeychik
 
White paper scada (2)
White paper scada (2)White paper scada (2)
White paper scada (2)
Ivan Carmona
 
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docxTonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
turveycharlyn
 
Ot ics cyberattaques dans les organisations industrielles
Ot ics cyberattaques dans les organisations industrielles Ot ics cyberattaques dans les organisations industrielles
Ot ics cyberattaques dans les organisations industrielles
Cisco Canada
 
SCADA Presentation
SCADA PresentationSCADA Presentation
SCADA Presentation
Eric Favetta
 
[GITSN] wireless data security system
[GITSN] wireless data security system[GITSN] wireless data security system
[GITSN] wireless data security system
운상 조
 
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
Dawn Yankeelov
 
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFTCyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Courtney Brock Rabon, MBA
 
10. industrial networks safety and security tom hammond
10. industrial networks safety and security tom hammond10. industrial networks safety and security tom hammond
10. industrial networks safety and security tom hammond
PROFIBUS and PROFINET InternationaI - PI UK
 
Securing Critical Iot Infrastructure, IoT Israel 2014
Securing Critical Iot Infrastructure, IoT Israel 2014Securing Critical Iot Infrastructure, IoT Israel 2014
Securing Critical Iot Infrastructure, IoT Israel 2014
iotisrael
 
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in SocietyLockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed-Martin
 
Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices
IJECEIAES
 
CPS - Week 1.pptx
CPS - Week 1.pptxCPS - Week 1.pptx
CPS - Week 1.pptx
SantiagoBrito20
 
2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation
Eric Gallant
 
ENABLING EVTOL WITH BREAKTHROUGH BATTERIES
ENABLING EVTOL WITH BREAKTHROUGH BATTERIESENABLING EVTOL WITH BREAKTHROUGH BATTERIES
ENABLING EVTOL WITH BREAKTHROUGH BATTERIES
iQHub
 
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAMCONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
iQHub
 

More Related Content

Similar to THE STATE OF THE ICS CYBERSECURITY THREAT LANDSCAPE FOR DIGITAL OILFIELDS

Cyber Security for SCADA
Cyber Security for SCADACyber Security for SCADA
Cyber Security for SCADA
Richard Umbrino
 
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
qqlan
 
Encryption Security in SCADA Networks
Encryption Security in SCADA NetworksEncryption Security in SCADA Networks
Encryption Security in SCADA Networks
IJRES Journal
 
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docxTonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
turveycharlyn
 
SCADA Presentation
SCADA PresentationSCADA Presentation
SCADA Presentation
Eric Favetta
 
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFTCyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Courtney Brock Rabon, MBA
 
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in SocietyLockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed-Martin
 
Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices
IJECEIAES
 

Similar to THE STATE OF THE ICS CYBERSECURITY THREAT LANDSCAPE FOR DIGITAL OILFIELDS (20)

Cyber Security for SCADA
Cyber Security for SCADACyber Security for SCADA
Cyber Security for SCADA
 
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
Ncma saguaro cyber security 2016 law & regulations asis phoenix dely fina...
 
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
G. Gritsai, A. Timorin, Y. Goltsev, R. Ilin, S. Gordeychik, and A. Karpin, “S...
 
Encryption Security in SCADA Networks
Encryption Security in SCADA NetworksEncryption Security in SCADA Networks
Encryption Security in SCADA Networks
 
Power Plants Security Webinar Presentation
Power Plants Security Webinar PresentationPower Plants Security Webinar Presentation
Power Plants Security Webinar Presentation
 
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
CLASS 2018 - Palestra de Shad Harris (Senior Subject Matter Expert on Securit...
 
Practical analysis of the cybersecurity of European smart grids
Practical analysis of the cybersecurity of European smart gridsPractical analysis of the cybersecurity of European smart grids
Practical analysis of the cybersecurity of European smart grids
 
White paper scada (2)
White paper scada (2)White paper scada (2)
White paper scada (2)
 
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docxTonight, March 5th – Class 7 (last class) your test” on ICS.docx
Tonight, March 5th – Class 7 (last class) your test” on ICS.docx
 
Ot ics cyberattaques dans les organisations industrielles
Ot ics cyberattaques dans les organisations industrielles Ot ics cyberattaques dans les organisations industrielles
Ot ics cyberattaques dans les organisations industrielles
 
SCADA Presentation
SCADA PresentationSCADA Presentation
SCADA Presentation
 
[GITSN] wireless data security system
[GITSN] wireless data security system[GITSN] wireless data security system
[GITSN] wireless data security system
 
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
Understanding Cyber Industrial Controls in the Manufacturing and Utilities En...
 
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFTCyber_range_whitepaper_cbr_070716_FINAL_DRAFT
Cyber_range_whitepaper_cbr_070716_FINAL_DRAFT
 
10. industrial networks safety and security tom hammond
10. industrial networks safety and security tom hammond10. industrial networks safety and security tom hammond
10. industrial networks safety and security tom hammond
 
Securing Critical Iot Infrastructure, IoT Israel 2014
Securing Critical Iot Infrastructure, IoT Israel 2014Securing Critical Iot Infrastructure, IoT Israel 2014
Securing Critical Iot Infrastructure, IoT Israel 2014
 
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in SocietyLockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
Lockheed Martin - Integrated Infrastructure: Cyber Resiliency in Society
 
Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices Augmentation of a SCADA based firewall against foreign hacking devices
Augmentation of a SCADA based firewall against foreign hacking devices
 
CPS - Week 1.pptx
CPS - Week 1.pptxCPS - Week 1.pptx
CPS - Week 1.pptx
 
2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation2012 02 14 Afcom Presentation
2012 02 14 Afcom Presentation
 

More from iQHub

CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAMCONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
iQHub
 
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSIONINNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
iQHub
 
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFTAN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
iQHub
 
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELSHYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
iQHub
 
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCELAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
iQHub
 
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTSADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
iQHub
 
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
iQHub
 
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERSBIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
iQHub
 
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTIONCLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
iQHub
 
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS... STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
iQHub
 
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAYMAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
iQHub
 
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEANGLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
iQHub
 
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT... UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
iQHub
 

More from iQHub (20)

ENABLING EVTOL WITH BREAKTHROUGH BATTERIES
ENABLING EVTOL WITH BREAKTHROUGH BATTERIESENABLING EVTOL WITH BREAKTHROUGH BATTERIES
ENABLING EVTOL WITH BREAKTHROUGH BATTERIES
 
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAMCONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
CONCEPT OF OPERATIONS: THE TRANSITION FROM CREWED TO UNCREWED UAM
 
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSIONINNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
INNOVATIVE SOLUTIONS FOR HIGH-POWER-DENSITY E-MOTORS FOR AEROSPACE PROPULSION
 
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFTAN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
AN ELECTRIC FUTURE - READYING AIRPORTS FOR ELECTRIC AIRCRAFT
 
ELECTRIFICATION OF AVIATION: HYPE OR GAME-CHANGER?
ELECTRIFICATION OF AVIATION: HYPE OR GAME-CHANGER?ELECTRIFICATION OF AVIATION: HYPE OR GAME-CHANGER?
ELECTRIFICATION OF AVIATION: HYPE OR GAME-CHANGER?
 
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELSHYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
HYBRIDIZATION IS THE MISSING LINK BETWEEN ELECTRIFICATION AND SUSTAINABLE FUELS
 
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCELAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
LAUNCHING UAM SERVICES IN A LARGE CITY: THE ROME EXPERIENCE
 
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTSADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
ADVANCED BIO-CIRCULAR MATERIALS: HIGH-PERFORMANCE AND DURABLE PRODUCTS
 
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
HOW TO CREATE A NET ZERO PLASTIC SOCIETY FROM THE CONVERTORS POINT OF VIEW?
 
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERSBIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
BIO-BASED ADDITIVES TO IMPROVE THE PERFORMANCE & PROCESSING OF BIOPOLYMERS
 
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTIONCLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
CLOSING THE LOOP ON MATERIALS COLLECTED AND SORTING: CURBSIDE COLLECTION
 
ARE "NATURAL" POLYMERS PLANT-DERIVED POLYMERS? - CONSUMERS PERSPECTIVES
ARE "NATURAL" POLYMERS PLANT-DERIVED POLYMERS? - CONSUMERS PERSPECTIVESARE "NATURAL" POLYMERS PLANT-DERIVED POLYMERS? - CONSUMERS PERSPECTIVES
ARE "NATURAL" POLYMERS PLANT-DERIVED POLYMERS? - CONSUMERS PERSPECTIVES
 
BIO-BASED ENGINEERING PLASTICS WITH SUSTAINABILITY, HIGH FUNCTIONALITY, AND ...
BIO-BASED ENGINEERING PLASTICS WITH SUSTAINABILITY, HIGH FUNCTIONALITY, AND ... BIO-BASED ENGINEERING PLASTICS WITH SUSTAINABILITY, HIGH FUNCTIONALITY, AND ...
BIO-BASED ENGINEERING PLASTICS WITH SUSTAINABILITY, HIGH FUNCTIONALITY, AND ...
 
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS... STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
STAGES OF SUSTAINABILITY: TRANSITION FROM BROAD TERMINOLOGY TO MARKET UNDERS...
 
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAYMAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
MAKING PLASTICS FULLY SUSTAINABLE, THE DECARBONIZED PLASTICS-TO-HYDROGEN PATHWAY
 
ECO-FRIENDLY AND SUSTAINABLE SOLUTIONS PROGRESSING CIRCULAR ECONOMY
ECO-FRIENDLY AND SUSTAINABLE SOLUTIONS PROGRESSING CIRCULAR ECONOMYECO-FRIENDLY AND SUSTAINABLE SOLUTIONS PROGRESSING CIRCULAR ECONOMY
ECO-FRIENDLY AND SUSTAINABLE SOLUTIONS PROGRESSING CIRCULAR ECONOMY
 
SUPPORTING SUSTAINABLE PLASTICS THROUGH ADDITIVES
SUPPORTING SUSTAINABLE PLASTICS THROUGH ADDITIVESSUPPORTING SUSTAINABLE PLASTICS THROUGH ADDITIVES
SUPPORTING SUSTAINABLE PLASTICS THROUGH ADDITIVES
 
AUTOMATED VISCOMETERS FOR MEASURING THE DIVIDING LINES AMONG RECYCLED PLASTICS
AUTOMATED VISCOMETERS FOR MEASURING THE DIVIDING LINES AMONG RECYCLED PLASTICSAUTOMATED VISCOMETERS FOR MEASURING THE DIVIDING LINES AMONG RECYCLED PLASTICS
AUTOMATED VISCOMETERS FOR MEASURING THE DIVIDING LINES AMONG RECYCLED PLASTICS
 
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEANGLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
GLOBAL EXTENDED PRODUCERS' RESPONSIBILITY DEVELOPMENTS AND WHAT THEY MEAN
 
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT... UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
UTILIZING AMI TO IDENTIFY LEAKS, IRRIGATION, AND EDUCATE CUSTOMERS ABOUT WAT...
 

Recently uploaded

👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
amitlee9823
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
dlhescort
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
dlhescort
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
Aggregage
 
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Anamikakaur10
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
lizamodels9
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
amitlee9823
 
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Dipal Arora
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
amitlee9823
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
daisycvs
 

Recently uploaded (20)

👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Falcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in indiaFalcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in india
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
 
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
Call Now ☎️🔝 9332606886🔝 Call Girls ❤ Service In Bhilwara Female Escorts Serv...
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
 
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptxB.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMAN
 
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 

THE STATE OF THE ICS CYBERSECURITY THREAT LANDSCAPE FOR DIGITAL OILFIELDS

  • 1. Classification: The State of Control Systems Cyber Security 2022 for Digital Oilfields 1 Michael Holcomb, Fellow – Cyber Security, CISSP, GRID, GICSP, ISA/IEC 62443 michael.holcomb@fluor.com
  • 2. Classification: General Why Are We Here? Examples of Real-World ICS Attacks What Are We Protecting In Cyber Security? Who, What, Where and Why Protecting Our Sites So Why Does it Matter? GV20181311-004 2 Overview
  • 4. Classification: General 1982: Trans-Siberian pipeline explosion 2003: SQL Slammer brings down the Davis-Besse plant 2009: Conficker infects power plants in the U.S. 2010: Stuxnet discovered 2015: Ukrainian power grid taken offline 2016: Ukrainian power grid taken offline (yes, again) 2017: Attackers compromise Safety Instrumented Systems (SIS) 2021: Major gas pipeline taken offline due to ransomware GV20181311-004 4 Examples of Real-World ICS Attacks
  • 5. Classification: General 2013: Several rigs knocked offline when employees downloaded infected pirated videos to their personal laptops over the rigs’ satellite Internet connections 2020: Oil rig manufacturer taken offline by ransomware GV20181311-004 5 Examples of Real-World ICS Attacks (Oilfields)
  • 6. Classification: General GV20181311-004 6 What Are We Protecting In Control Systems Cyber Security?
  • 7. Classification: General GV20181311-004 7 What Are We Protecting In Control Systems Cyber Security? Health, Safety & Environment
  • 8. Classification: General GV20181311-004 8 We Have to Ask… But how can we do this securely?
  • 9. Classification: General Dragos, founded by Rob M. Lee, is one of the global leaders in ICS security – Rob M. Lee established the ICS monitoring group for the United States’ National Security Agency (NSA) Covers four different aspects of ICS security: – Threat Actors – Vulnerabilities – Incident Response – Industrial Cybersecurity Strategy GV20181311-004 9 Dragos’ “Year in Review” Reports Source: https://dragos.com/year-in-review/
  • 10. Classification: General Information gathering and espionage Operational disruption Reputational loss Cyber terrorism Impact Safety Money GV20181311-004 10 Why Are They Attacking? Nation-State Actors Commodity Malware
  • 11. Classification: General Attacks are significantly increasing in frequency and impact New nation-state and other attack groups with advanced capabilities are being identified each year Majority of control environments have operations impacted by commodity malware infections which start in the enterprise or third- party networks Most attacks leverage “Living off the Land” which bypass traditional detection means Supply chain compromises continue to be on the rise GV20181311-004 11 What and Where Are They Attacking?
  • 12. Classification: General 86% of environments did not have the visibility required to effectively identify an intrusion 77% of penetration tests resulted in initial access being obtained in an easy manner 44% of networks had shared credentials between the IT network and the ICS network 70% of IR engagements involved ICS networks which were accessed from the Internet 58% of ICS facilities had a solid Incident Response Program GV20181311-004 12 ICS Environment Assessment Observations
  • 13. Classification: General GV20181311-004 13 We Have to Ask… But how can we secure our environments?
  • 14. Classification: General Network Segmentation – Use the Purdue Model to ensure that the control network and other network segments at the facility are properly segmented with restrictive firewalls configured to block all traffic by default Increase Detection Capabilities – Deploy passive detection capabilities which identify any abnormal activity on the control network for immediate investigation Increase Response Capabilities – Build an Incident Response program specific to the ICS environment to be able to effectively contain and eradicate incidents in a timely manner GV20181311-004 14 Protecting Our Industrial Facilities
  • 15. Classification: General Conduct Risk Assessments – Leverage existing frameworks such as ISA 62443 to identify gaps in the environment’s cyber security and physical engineered controls Awareness Training – Ensure all computer-based users at a facility receive security awareness training, especially in identifying and not falling victim for phishing emails Secure Remote Access – Use Multifactor Authentication (MFA) to secure remote access. Use other security controls such as dial back and monitored jump hosts as alternatives when necessary. GV20181311-004 15 Protecting Our Industrial Facilities (cont.)
  • 16. Classification: General Please reach out at any time with cyber security related questions! Michael Holcomb michael.holcomb@fluor.com 864.281.5958 linkedin.com/mikeholcomb GV20181311-004 16 Thank You!

Editor's Notes

  1. Don’t forget to add the classification in the footer. How to add the classification: Click “View” tab Select “Slide Master” Select the first slide (push pin will appear to the left of the master slide) Click the “Classification” text box at the bottom of the slide and add the classification Save and select “Close Master View” in the task bar at the top (far right) Data Classifications: Public – Data/ information is publicly accessible (e.g. Welcome to Fluor, who we are, what we do, job openings, etc.) General – Data available to all Fluor employees and is for internal use only (e.g. Fluor policies, job duties, login ID’s, etc.) Restricted – Data available to specific groups of Fluor employees and have increased restrictions to access (e.g. personal email address, non-confidential Client information, Fluor-developed or trademarked tools, Procurement documents, etc.) Confidential – Data available to specific individual Fluor employees and access is granted on a need-to-know basis (e.g. individual personal data (SSN, DOB, home address/phone); government issued ID’s; trade secrets; patent applications; corporate financials, pre-release; Client confidential information; contract information; etc.)
  2. How to add the classification: Click “View” tab Select “Slide Master” Select the first slide (push pin will appear to the left of the master slide) Click the “Classification” text box at the bottom of the slide and add the classification Save and select “Close Master View” in the task bar at the top Data Classifications: Public – Data/ information is publicly accessible (e.g. Welcome to Fluor, who we are, what we do, job openings, etc.) General – Data available to all Fluor employees and is for internal use only (e.g. Fluor policies, job duties, login ID’s, etc.) Restricted – Data available to specific groups of Fluor employees and have increased restrictions to access (e.g. personal email address, non-confidential Client information, Fluor-developed or trademarked tools, Procurement documents, etc.) Confidential – Data available to specific individual Fluor employees and access is granted on a need-to-know basis (e.g. individual personal data (SSN, DOB, home address/phone); government issued ID’s; trade secrets; patent applications; corporate financials, pre-release; Client confidential information; contract information; etc.)