Were we just hacked? Applying digital forensic techniques for your industrial control systems

Thursday, January 30, 2014, at 11 a.m. PT /1 p.m. CT/2 p.m. ET
One (1) RCEP / ACEC Certified Professional Development Hour (PDH) available for all attendees.

Click here to register.

Companies that have had their industrial networks attacked from the outside usually don’t realize it at all, or if they do, that knowledge probably comes a year or more after the initial incident. Why? Companies don’t understand their own networks well enough to know when something is happening that shouldn’t be happening. There is no practical way to apply concepts of digital forensic investigation if you don’t understand your own networks. Robert M. Lee and Matthew E. Luallen will discuss how you can analyze and document your systems well enough to perform incident response and learn from those attacks. Your ability to know every detail about your systems is the biggest advantage you have when trying to secure your systems. Put that knowledge to work.

Speakers: Robert M. Lee and Matthew E. Luallen

  • Robert M. Lee is a Co-Founder of Dragos Security LLC, a cyber security company that develops tools and research to enable the Industrial Control System community. He is also an active-duty U.S. Air Force Cyberspace Operations Officer. Robert received his B.S. from the United States Air Force Academy and his M.S. in Cyber Security – Digital Forensics from Utica College where he now teaches as an Adjunct Lecturer. He is the author of “SCADA and Me” and is currently pursuing his PhD at Kings College London with research in control systems cyber security.

  • Matthew E. Luallen is a Co-Founder of Dragos Security LLC, a cyber security company that develops tools and research to enable the Industrial Control System community.   Matthew is also Co-Founder of CYBATI providing control system cybersecurity hands-on training kits and instructor-led education.  He also is adjunct faculty at DePaul University and a SANS Institute and Cisco Systems certified instructor.  Prior to incorporating CYBATI and Dragos Security, Mr. Luallen was a co-founder of Encari, a NERC CIP cybersecurity-consulting firm.  Mr. Luallen also served as an Information Security Network Engineer and Architect at Argonne National Laboratory.

Moderator: Peter Welander, Control Engineering and CFE Media, LLC