NAVAL DISTRICT WASHINGTON SMARTSHORE CASE STUDY Jeff Johnson NDW CIO (N6)

Similar documents
NAVY SmartShore Pilot

Vulnerabilities in Process Control Networks: What Are We Protecting Against?

Frank Ignazzitto Ultra Electronics, 3eTI

Continuous protection to reduce risk and maintain production availability

Statement for the Record

Cyber Attacks & Breaches It s not if, it s When

Securing Industrial Control Systems

Security Standardization and Regulation An Industry Perspective

SIEM: Five Requirements that Solve the Bigger Business Issues

Opening Doors to Cyber and Homeland Security Careers

Business continuity management and cyber resiliency

June 2 nd, 2016 Security Awareness

Digital Wind Cyber Security from GE Renewable Energy

HOSTED SECURITY SERVICES

Cyber-Threats and Countermeasures in Financial Sector

Service. Sentry Cyber Security Gain protection against sophisticated and persistent security threats through our layered cyber defense solution

LESSONS LEARNED IN SMART GRID CYBER SECURITY

Department of Defense (DoD) Joint Federated Assurance Center (JFAC) Overview

White Paper. The North American Electric Reliability Corporation Standards for Critical Infrastructure Protection

Threat Control and Containment in Intelligent Networks. Philippe Roggeband - Product Manager, Security, Emerging Markets

Practical SCADA Cyber Security Lifecycle Steps

CA Host-Based Intrusion Prevention System r8

Perimeter Defenses T R U E N E T W O R K S E C U R I T Y DEPENDS ON MORE THAN

Securing the Internet of Things (IoT) at the U.S. Department of Veterans Affairs

playbook OpShield for NERC CIP 5 sales PlAy

Cyber (In)Security. What Business Leaders Need To Know. Roy Luebke Innovation and Growth Consultant. Presented by:

Cyber Security of Industrial Control Systems (ICSs)

Adaptive & Unified Approach to Risk Management and Compliance via CCF

Cyber Criminal Methods & Prevention Techniques. By

Keys to a more secure data environment

Cyber Threats and the. Marine Transportation. System. Homeland Security UNCLASSIFIED

An Operational Cyber Security Perspective on Emerging Challenges. Michael Misumi CIO Johns Hopkins University Applied Physics Lab (JHU/APL)

EMPOWER PEOPLE IMPROVE LIVES INSPIRE SUCCESS

Cybersecurity for the Electric Grid

Bringing cyber to the Board of Directors & C-level and keeping it there. Dirk Lybaert, Proximus September 9 th 2016

MOBILE SECURITY 2017 SPOTLIGHT REPORT. Information Security PRESENTED BY. Group Partner

CYBER SECURITY RISK ASSESSMENT: WHAT EVERY PENSION GOVERNMENTAL ENTITY NEEDS TO KNOW

Detecting breach. There are only two types of organisations in the world... Terry Greer-King Director, Cyber security, UK & Africa May 2017

Chapter 18 SaskPower Managing the Risk of Cyber Incidents 1.0 MAIN POINTS

Future Challenges and Changes in Industrial Cybersecurity. Sid Snitkin VP Cybersecurity Services ARC Advisory Group

DISTRICT OF COLUMBIA WATER AND SEWER AUTHORITY ATTACHMENT A A-1: BACKGROUND AND CONTRACTOR QUALIFICATIONS A-2: SCOPE OF WORK

STRATEGY ATIONAL. National Strategy. for Critical Infrastructure. Government

Verizon Perspectives on Smart Infrastructure. Anthony J. (Tony) DiMaso Advanced Energy Conference November 19, 2009

Solutions Technology, Inc. (STI) Corporate Capability Brief

Cybersecurity Overview

Risk Management in the Energy Sector: Evolving Cybersecurity Risks & Strategies

Cyber Risk in the Marine Transportation System

Heavy Vehicle Cyber Security Bulletin

Cyber Security. June 2015

How to Plan, Procure & Deploy a PIV-Enabled PACS

Doug Couto Texas A&M Transportation Technology Conference 2017 College Station, Texas May 4, 2017

UNCLASSIFIED R-1 ITEM NOMENCLATURE FY 2013 OCO

Balancing Compliance and Operational Security Demands. Nov 2015 Steve Winterfeld

Port Facility Cyber Security

OPERATIONS CENTER. Keep your client s data safe and business going & growing with SOC continuous protection

13th Florence Rail Forum: Cyber Security in Railways Systems. Immacolata Lamberti Andrea Pepato

Protecting Buildings Operational Technology (OT) from Evolving Cyber Threats & Vulnerabilities

Industrial Control System Cyber Security

Cybersecurity and Nonprofit

RIMS Perk Session Protecting the Crown Jewels A Risk Manager's guide to cyber security March 18, 2015

Spotlight Report. Information Security. Presented by. Group Partner

Angela McKay Director, Government Security Policy and Strategy Microsoft

Management Information Systems. B15. Managing Information Resources and IT Security

10 Cybersecurity Questions for Bank CEOs and the Board of Directors

Cybersecurity and Hospitals: A Board Perspective

Security+ Guide to Network Security Fundamentals, Fourth Edition. Chapter 1 Introduction to Security

Summary of Cyber Security Issues in the Electric Power Sector

Gujarat Forensic Sciences University

CYBER SECURITY AND MITIGATING RISKS

Cyber Security Panel Discussion Gary Hayes, SVP & CIO Technology Operations. Arkansas Joint Committee on Energy March 16, 2016

CYBER SECURITY AIR TRANSPORT IT SUMMIT

In the wrong hands it s an open invitation

THE OPEN & SHUT CASE FOR ENHANCING SECURITY IN HAZARDOUS AREAS SECURITY IN HAZARDOUS AREAS. By Doug Woodbridge PRODUCT PHOTO

align security instill confidence

Wireless Sensors for IOT s

Risk Assessment: Key to a successful risk management program

External Supplier Control Obligations. Cyber Security

An Overview of Smart Sustainable Cities and the Role of Information and Communication Technologies (ICTs)

Cyber (In)Security, The Internet of Things, and Risk Management

Software & Supply Chain Assurance: Enabling Enterprise Resilience through Security Automation, Software Assurance and Supply Chain Risk Management

THE POWER OF TECH-SAVVY BOARDS:

Data Protection in Practice

You ve Been Hacked Now What? Incident Response Tabletop Exercise

Critical Infrastructure

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

We are releasing 7 pages of responsive documents. Pursuant to FOIA, certain information has been redacted as it is exempt from release.

What is Penetration Testing?

AIRMIC ENTERPRISE RISK MANAGEMENT FORUM

Checklist: Credit Union Information Security and Privacy Policies

Cyber Security and Data Protection: Huge Penalties, Nowhere to Hide

An ICS Whitepaper Choosing the Right Security Assessment

Introduction to ICS Security

AND FINANCIAL CYBER FRAUD INSTITUTIONS FROM. Solution Brief PROTECTING BANKING

Robert Hayes Senior Director Microsoft Global Cyber Security & Data Protection Group

Location-Specific Cyber Risk

Cyber Security Brian Bostwick OSIsoft Market Principal for Cyber Security

Threat analysis. Tuomas Aura CS-C3130 Information security. Aalto University, autumn 2017

Cyber Attack: Is Your Business at Risk?

Build Your Cybersecurity Program in Minutes: Click, Copy, Modify, Implement

DIGITAL TRUST AT THE CORE

Transcription:

NAVAL DISTRICT WASHINGTON SMARTSHORE CASE STUDY Jeff Johnson NDW CIO (N6) 1

Creating Cyber Secure Enterprise Control Systems Networks Agenda US Navy, NDW Industrial Controls overview The new cyber threat landscape - hacker trends, techniques and technologies Examine costs associated with ICS-focused attacks Common critical network vulnerabilities Holistic approach to cyber security The EICS capabilities Summary and conclusions 2

Strategic Drivers & Requirements (Public Laws, Executive Orders, DoD and DoN Mandates) DoD 8500 Series Risk Management Framework 2014 Secretary of the Army Army Operational Energy Policy 2013 Public Law 111-84 National Defense Authorization Act (NDAA) FY2010 Executive Order (EO) 13514 Federal Leadership in Environ., Energy, and Economic Performance 2009 DoD Instruction 4170.11 Installation Energy Management 2009 DoD Manual 3020.45 Volume I Defense Critical Infrastructure Program (DCIP): DoD Mission-Based Critical Asset Identification Process (CAIP) Public Law 110-140 Energy Independence and Security Act of 2007 EISA07 Executive Order (EO) 13423 Strengthening Federal Environmental, Energy, & Transportation Mgt. 2007 Unified Facilities Criteria (UFC) Sustainable Development 2007 Public Law 109-58 Energy Policy Act of 2005 EPAct05 Federal Federal Information Security Management Act 2002 2008 @SAME_HQ 4

Commander, Naval Installations Command Region Naval District Washington NDW Footprint* Joint Base Anacostia Bolling (DC) NAS Patuxent River (MD) NSA Annapolis (MD) NSA Bethesda (MD) NSA South Potomac (VA) NSA Washington (DC) 25,652 acres 3,129 buildings 2,822 non-building structures 1,029 utilities locations 10 runways Total Plant Replacement Value (PRV): $14B Operations & Maintenance Budget: $500M/yr Reimbursable Budget: $15M/yr 6 hangers 44 piers-wharfs 3 small arms training 21 small boats Geographically located in multiple states to address interstate utility regulatory issues @SAME_HQ 5

Navy, Naval District Washington (NDW) Establishing a secure critical infrastructure environment for efficient shore operations Smart Shore Program REQUIREMENTS Compliance with DoD and Federal mandates Efficiency savings through automation Optimization of plant operations and processes Safe & Reliable operations Share information between stakeholders Connect equipment over an IP network Utilize open & common protocols Effective Force protection and public safety Utility critical infrastructure protection CONCERNS Unauthorized external access to networks and systems Loss of command & control or data integrity Loss or degradation of system availability Malware infection manipulating operations Cyber-attack causing physical impact Reputation loss due to publicized vulnerabilities or attacks Intentional misuse of systems or control causing physical impacts Cyber security attacks impacting normal operations @SAME_HQ 6

Catastrophic Impacts of Cyber Attacks Project Aurora: INL cyber attack on a generator caused damaging vibration Sayano-Shushenskaya power station: Turbine vibration caused violent damage 8

Growing Industrial Threats 9

Costs Associated with ICS Attacks & Failures Sanyo-Shushenskaya RusHydro shares dropped 15% Business lost $523 million Target $61 million in expenses due to breach Potentially $1 billion in fraud fines Continued impact to reputation CEO & CIO fired Maroochy Water Service $200k on security-upgrades alone Loss of reputation New York blackout 2003 $800m loss from productivity $250m in perishable goods ~$36m an hour! Safety-issues (potential harm or death) National security concerns Lost productivity Lack of confidence by shareholders and customers C-level/Board-level replacement Ongoing reputational damage Regulatory fines Environmental damage Wider economic consequences from being critical infrastructure Increased stress & operational impact on staff Why endpoint security is important. 10

Who Launches Cyber Attacks You don t need to be a hacker to hack A World Full of Hackers Nation states Criminals Activists Employees Children! Admiral Michael Rogers, Director NSA & US Cyber Command Various Motivations Money Political protest Environmental activism Espionage Retaliation Job security Fun China along with one or two other countries have the capability to successfully launch a cyber-attack that could shut down the electric grid in parts of the United States. NSA Director testimony to Congress, Nov. 2014 Unintentional Disasters An attacker doesn t even know what they are doing to cause a huge impact 11

A Growing List of Uncovered Vulnerabilities 12

Vulnerabilities External Cyber Attacks ICS Network Industrial Process Infrastructure Automation Facility Monitoring Support Network Engineering Terminal Wireless HMI External Networks Application Data/Historian SCADA Mirrored Data s Report/Alarm Enterprise Networks Remote Access Authentication An outsider/insider gains access to an external system and uses it to impact a more critical ICS network

Vulnerabilities External Cyber Attacks Unauthorized Device Connections ICS Network Industrial Process Infrastructure Automation Facility Monitoring Support Network Engineering Terminal Wireless HMI External Networks Application Data/Historian SCADA Mirrored Data s Report/Alarm Enterprise Networks Remote Access Authentication An outsider/insider introduces their own device into the network making your internal network externally accessible, and directly exploitable by the attacker

Vulnerabilities External Cyber Attacks Unauthorized Device Connections ICS Network Industrial Process Infrastructure Automation Facility Monitoring Internal Host-based /Malware Attacks Support Network Engineering Terminal Wireless HMI External Networks Application Data/Historian SCADA Mirrored Data s Report/Alarm Enterprise Networks Authentication Remote Access Malware infects the control system and causes a dangerous or malicious action

Vulnerabilities External Cyber Attacks Unauthorized Device Connections Internal Host-based /Malware Attacks ICS Network Industrial Process Infrastructure Automation Facility Monitoring Zero-day Attacks Support Network Engineering Terminal Wireless HMI External Networks Application Data/Historian SCADA Mirrored Data s Report/Alarm Enterprise Networks Remote Access Authentication Targeted malware utilizes a zero-day vulnerability to cause a specifically designed impact to the ICS network & devices

DoD and Federal mandates are driving service-level smart energy initiatives US Navy, NDW Smart Shore Program is forging the way Broad deployment of smart meters using secure wireless networks Enterprise integration of building automation systems to reduce energy consumption - 500+ buildings across 10+ bases Information Assurance accreditation in place Implementing smart security for operational technology Accredited cyber security solution for industrial controls (EICS & AMI) Physical security via accredited perimeter security solution (VPMS & NACS) Achieving energy savings Summary Shore Operations Center (ShOC) is now actively monitoring and managing operational systems US Navy is considering expanding Smart Shore Navy-wide. 26

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback