Changing the Game: The Impact of TRISIS (TRITON) on Defending ICS/SCADA/IIoT

Presented at NolaCon 2018, May 19, 2018, 5:30 p.m. (Unknown duration)

In recent years, we as practitioners have experienced an explosion of threats and exploits targeting ICS/SCADA/IIoT systems, and those threats have become more and more complex as the nature of the adversary has been become more sophisticated. Attacks by nation state actors, as well as common cyber criminals are beginning to show impact, as there are multiple motives at play: damage/disruption, AND financial gain. Just when we thought that ransomware was the coup de guar enter TRISIS (or TRITON), which flips on its edge the common defensive strategies and mechanisms by which we protect critical processes and subsequently the systems that help to prevent the loss of human life. In this talk, we will discuss a) what TRISIS/TRITON is, b) What it does/is capable of, and c) why is this such a game changer in the defense of ICS/SCADA/IIoT systems and the critical processes they support.


Presenters:

  • Paul W. Brager Jr M.Sci, CISSP, GICSP, CISM
    Mr. Paul W. Brager, Jr has been a contributing member of the cyber security community for over twenty-three (23) years, with expert level knowledge of security architecture and defense-in-depth design, critical infrastructure/industrial cyber, IoT, and IIoT. He has extensive cyber experience in the oil and gas, manufacturing, power utility, chemical, banking and telecommunications sector. In his current capacity as a Technical Product Security Leader, Digital Technology with Baker Hughes, a GE Company, Paul works closely with oil and gas, energy, and internal clients to integrate cyber security capabilities and strategies into their critical manufacturing and operating infrastructure lifecycles. His efforts enable customers and internal clients to weave defense-in-depth cyber strategies into the overall design of products and solutions, thereby contributing to the oil and gas industry's ability to have a more defensible posture against some of the world's most complex adversaries. Paul holds a Bachelor of Science degree from Texas A&M University in Political Science, with a minor in Business, a Master's of Science in Administration of Justice and Security (Criminal Justice/Cyber fusion) from the University of Phoenix, and is an Alpha Phi Sigma (National Criminal Justice Honor Society) inductee since 2009. Mr. Brager is CISSP, GICSP and CISM certified, in addition to serving as an adjunct professor with the University of Phoenix, teaching cyber security courses within the IS&T program, and providing course module support to a number of education bodies, and other related endeavors. He is currently involved as a non-voting board member of ISSA (South Houston Chapter), ISA-99 Working Committee member, ICSJWG committee member and contributor, ISA, InfraGard (O&G and Power Utility SIGs), OWASP, ISACA, ISC2, NSBE and various other focus groups and cyber-focused organizations. Twitter: @ProfBrager

Links:

Similar Presentations: