This 1-day workshop will provide cybersecurity professionals the knowledge and skills needed to understand what critical infrastructure protection is, the nature of the physical, cyber, and human (insider) threats to them, who is involved, what their roles and responsibilities are, and the tools and resources available to help them better protect our Nation’s Critical Infrastructure. Specific topics to be addressed include:
Sessions will include:
9:00 AM – 10:00 AM: Introduction/Overview and Opening Keynote
10:00 AM – 11:00 AM: What is Critical infrastructure and What Threats does it Face?
Speaker: Andrew Sekela, Special Agent, Federal Bureau of Investigation
Utilities, industrial plants, and other facilities are vulnerable to a number of different types of threats, both physical and virtual in nature. This presentation describes what critical infrastructure is, the threats they can face, and discusses two specific incidents in which critical infrastructure was targeted. It offers suggestions on how to mitigate the threats, including minimizing control system exposure and implementing cyber-physical safety systems. It also discusses some of the resources that are available to help protect facilities, including government bulletins and other publications.
11:00 AM – 11:15 AM: Morning Break
11:15 AM – 12:15 PM: Student Activity: Critical Infrastructure Protection Self-Assessment
Speaker: Vikas Bhatia, InfraGard National Members Alliance CISO Cross Sector Council
Students be asked to complete a self-assessment of their agency/organization’s critical infrastructure protection program, looking across physical, cyber, and human threats, the partnerships currently in place, and the tools and resources currently employed.
12:15 PM – 1:15 PM: Lunch
1:15 PM – 2:15 PM: How did Homeland Security and Critical Infrastructure Protection come about?
Speaker: Billy Sasser, Supervisory Protective Security Advisor (SPSA)
• U.S. Code Title 18, Chapters 113B and 2339B, defines terrorism and material support to terrorists
• Presidential Decision Directive (PDD), PDD-63 and infrastructure protection pre-Department of Homeland Security (DHS) – establishment of the FBI National Infrastructure Protection Center (NIPC) (May 1998)
• 9/11 Attacks and Establishment of the Department of Homeland Security (Nov 2002)
• Homeland Security Presidential Directive 7 (HSPD-7), Under George W. Bush, the directive establishes a national policy for Federal departments and agencies to identify and prioritize United States critical infrastructure and key resources. (December 2003)
• Presidential Policy Directive (PPD-21) (February 2013), revokes HSPD-7
• DHS National Infrastructure Protection Plan, https://www.cisa.gov/national-infrastructure-protection-plan
• Guide to Critical Infrastructure Security and Resilience, November 2019
2:15 PM – 3:15 PM: Who is Involved in Critical infrastructure Protection and Who Should I have Partnerships with to Protect the Infrastructure(s) I am Responsible for?
Speaker: Billy Sasser, Supervisory Protective Security Advisor (SPSA)
Understand the Federal, State, Municipal, and Tribal agencies involved in protecting critical infrastructure, their roles and responsibilities, and the nature of relationships/partnerships you should have to help protect your critical infrastructure.
3:15 PM – 3:30 PM: Afternoon Break
3:30 PM – 4:30 PM: What Tools and Resources are Available to me to Help me Better Protect the Infrastructures I am Responsible for?
Speaker: Jason Burt, DHS Cyber Security Advisor (CSA); Billy Sasser, Supervisory Protective Security Agency (SPSA)
Gain awareness of the tools and resources available to you as a partner in critical infrastructure protection.
4:30 PM – 5:00 PM: Closing Remarks
Speaker: Bill Banks, President, Tallahassee InfraGard Chapter
** InfraGard members, be sure to use your discount code for significant savings – chuck your INMA email for the code.