April 1st, a federal grand jury indicted PG&E on 12 counts of knowingly and willfully violating the federal Pipeline Safety Act leading to the San Bruno pipeline rupture. As San Bruno was a control system cyber incident, the cyber security implications include the following.
I will be speaking April 1st at the Palo Alto Networks Ignite Conference on “Addressing the Most Pervasive Challenges in ICS Cyber Security”.
The March 2014 issue of ASME’s Mechanical Engineering magazine had an article entitled "The Internet of Very Big Things". The article focused on the productivity and safety benefits of connectivity, including to the Internet. The discussion on security was either not correct or misleading. This is not the first time...
Joe Weiss believes there is a significant need for a cybersecurity conference from the perspective of the control systems engineer that focuses on the impacts of electronic communications on system performance, reliability and safety.
I have been invited to give a lecture on ICS Cyber Security at the Naval Post Graduate School April 3rd in Monterey on control system cyber security. The presentation will be similar to my presentation at West Point.
I reviewed the Bipartisan Policy report and then had a chance to meet with one of the project leads to discuss some of my concerns. The concern about cyber security of the electric grid is grid reliability.
I have been invited to give a lecture on ICS Cyber security at West Point April 8th on control system cyber security. The presentation will address what is control system cyber security, how is it different than IT security, what has actually occurred recently, and examples of what is being...
According to an article in BBC, underwriters at Lloyds’ of London say they have seen a "huge increase" in demand for cover from energy firms. But surveyor assessments of the cyber-defenses in place concluded the cyber defenses were inadequate. Now, compare this to the US electric industry.
The14th ICS Cyber Security Conference (sometimes known as "Weisscon") will be held October 20-23, 2014 at Georgia Tech. Based on record attendance from last year's conference, please consider making your registration early to assure a space. Registration for the conference will be open to the general public soon.
The recently issued NIST Framework on CIP is a good basic top level document. It directly addresses ICS which is a great step forward and I am very happy to see IEC (ISA)-62443 liberally addressed. I believe the shortcoming is the lack of any actual requirements.