Scott Roe from Corporate Risk Solutions, a solution provider at the marcus evans Generation Summit 2012, on protecting utilities from internal and external attacks. Interview with: Scott Roe, President, Corporate Risk Solutions

1. Protecting Utilities
through
Business Continuity
information flow which can put The second phase is disaster
systems at risk. This could be a recovery. This involves returning to
customers’ personal information or a state of operations, through the
information that the system relies use of redundant systems, spare
on to manage electricity. Simply parts and temporary processes.
stated, utilities must protect their
customers’ information and the The third is business resumption,
systems in place. when operations return to a normal
state. Another key goal of this
Managers should identify how the phase is to complete an After
utility is being accessed both Action Review to identify what
physically and logically. Does the occurred and what can be done in
public have any access? How is the the future to prevent it from
Interview with: information being stored? While happening again.
Scott Roe, President, Corporate typically a private network, does it
Risk Solutions use or allow public interface? What
is the remote-access capability of
the system? There must be a focus
“It is crucial for power utilities to on the access points where
be prepared for malicious attacks
and internal actions that could
information has the potential to be
leaked and how that is being Business
potentially bring down their protected from within.
organization,” says Scott Roe,
P r e s i d e nt , C or p or a t e R i sk What benefits does Business
continuity
Solutions. Organizations must
consider how the utility is being
Continuity bring?
goes beyond its
requirement
accessed and maximize security, he Security solutions and Business
adds. Continuity are risk management
t ool s that c a n a ss ist the
From a solution provider company organization in defending against
attending the marcus evans and responding to malicious
Generation Summit 2012, in San attacks. While utilities are used to
Antonio, Texas, February 7-8, Roe handling impacts and risks related Any final comments?
discusses the three primary phases to severe weather, outages, etc.,
organizations must go through they are not as adept at handling Utilities have a reputation for
when responding to an attack on a the recovery processes surrounding engineering just about everything,
utility. malicious events, such as cyber yet with Security, they often treat
attacks or internal actions that this as an “add-on”.
Why must there be more focus could potentially bring down the
on the protection of utilities? organization. To ensure effective regulatory
compliance and, more importantly,
The reliability of the electricity What are the three primary to enhance their risk management
sector is paramount. Most of the phases for responding to an program, Security and Business
nation’s critical infrastructures, attack on a utility? Continuity should be “engineered”
such as telecommunications, into their processes. They must
banking and finance, and The first is incident response. This consider how security can be
transportation are dependent upon typically includes containing or ma ximi zed mor e efficientl y,
reliable power to operate. Every isolating the event to reduce total including whether it can be built
process and operation in the impact and to limit continual into the operations and structures
energy industry requires dynamic collateral impact. themselves.

2. About the Generation Summit 2012
The Energy Network -
This unique forum will take place at The Westin La Cantera Resort, San Antonio,
marcus evans Summits group
Texas, February 7-8, 2012. Offering much more than any conference, exhibition or
delivers peer-to-peer information
trade show, this exclusive meeting will bring together esteemed industry thought
on strategic matters, professional
leaders and solution providers to a highly focused and interactive networking event.
trends and breakthrough
The Summit includes presentations on meeting future energy demands whilst
innovations.
advancing clean air objectives, revolutionizing the energy mix and preparing for
regulations which lie ahead.
www.generationsummit.com
Contact
Stacey Melvin, Journalist, marcus evans, Summits Division
Please note that the Summit is a
closed business event and the
Tel: + 357 22 849 400
number of participants strictly Email: press@marcusevanscy.com
limited.
For more information please send an email to info@marcusevanscy.com
All rights reserved. The above content may be republished or reproduced. Kindly
inform us by sending an email to press@marcusevanscy.com
About Corporate Risk Solutions
Corporate Risk Solutions, Inc. (CRSI) is a wholly owned subsidiary security consulting firm of Corporate Enterprise Security, Inc.
that specializes in NERC operational and CIP Compliance (693 and 706) as well as cyber and physical security solutions to the
energy and government sectors. CRSI has provided consulting services to more than 100 electric utilities across all eight (8) NERC
regions and is also under contract by multiple NERC Regional Entities for Audit Support.
www.corprisk.net
About marcus evans Summits
marcus evans Summits are high level business forums for the world’s leading decision-makers to meet, learn and discuss
strategies and solutions. Held at exclusive locations around the world, these events provide attendees with a unique opportunity to
individually tailor their schedules of keynote presentations, think tanks, seminars and one-on-one business meetings.
For more information, please visit: www.marcusevans.com
Upcoming Events
Distribution Technology & Innovation Summit - www.dti-summit.com
Power Generation APAC Summit - www.apacpowergen.com
Transmission & Distribution Summit - www.t-dsummit.com
To view the web version, please click here: www.generationsummit.com/Scott Roe