EnergySec East *Postponed. Tentatively 6/23-6/24*

Tue, June 23 2020, 9:00 AM - Wed, June 24 2020, 3:00 PM [EST]

2350 M Street Northwest, Washington, DC, 20037, United States

REGISTER NOW

1. Select Seats

2. Review and Proceed

This event is currently not on sale, please contact the event organizer for any additional questions.

EnergySec East - Full Conference Registration Partial Approval - $575.00

Sales end on - Not on sale yet

Access to all 3-days of the event

EnergySec East - Day 1 Only - Workforce Summit Partial Approval - $95.00

Sales end on - Not on sale yet

Access to the Workforce Summit on day 1 of the conference

EnergySec East - Days 2-3 Only - Distribution Security Forum and Small Entity Forum Partial Approval - $495.00

Sales end on - Not on sale yet

This ticket provides access to all sessions on days 2 and 3 of the conference.

EnergySec East - Day 2 Only - Distribution Security Forum Partial Approval - $295.00

Sales end on - Not on sale yet

This ticket provides access to all sessions on Day 2 of the conference.

EnergySec East - Day 3 Only - Small Entity Forum Partial Approval - $295.00

Sales end on - Not on sale yet

This ticket provides access to all sessions on Day 3 of the conference.

EnergySec East - Day 3 - Webinar Only Partial Approval - $95.00

Sales end on - Not on sale yet

This ticket provides access to the live stream of all Day 3 sessions.

Enter your discount code

  • Subtotal (excluding fees and discounts)
  • Fee
  • Total amount

Event Information

Tue, June 23 2020, 9:00 AM - Wed, June 24 2020, 3:00 PM [EST]

About the Event

For the past two years, the Distribution Security Forum (DSF) held in Washington, D.C., has addressed cybersecurity issues related to electric distribution systems, advanced metering infrastructures, micro grids, distributed energy resources, and related topics.  EnergySec East expands on the DSF format with additional sessions, including a "roundtable" discussion government partners, a cybersecurity workforce summit, and a focused session addressing the specific needs of small utilities. 

Cancellation policy

Refunds available up to 30 prior to the event.

Event Location

About the Organizer

The Energy Sector Security Consortium, Inc. (EnergySec) is a United States 501(c)(3) non-profit corporation formed to support energy sector organizations with the security of their critical technology infrastructures. Through our membership program, we support collaborative initiatives and projects that help enhance the cybersecurity resiliency of these organizations. Today, our community includes more than 5000 individuals representing more than 500 organizations. The development of the EnergySec information sharing efforts and workforce development remain a key focus areas of EnergySec as it continues to develop programs and other efforts to meet the needs of the energy sector into the future.

CONTACT ORGANIZER

Event Speakers

Rodney Peterson
Director, National Initiative for Cybersecurity Education

Rodney Petersen is the director of the National Initiative for Cybersecurity Education (NICE) at the National Institute of Standards and Technology (NIST) in the U.S. Department of Commerce. He will be sharing his expertise on the NICE Cybersecurity Framework.

Marissa Morales Rodriguez
Research & Development, Oak Ridge National Labs

At Oak Ridge National Laboratory, Morales-Rodriguez manages projects related to the research and development of cyber-physical sensors with applications in the energy, defense, environmental and manufacturing industries.

Kylie McClanahan
PhD Student, University of Arkansas –Fayetteville

Kylie will address how machine learning can specifically benefit smaller utilities with few or no full-time employees dedicated to vulnerability and patch management by generating risk-informed work decisions. Her approach shows a 97% accuracy in the machine learning predictions and overall time savings of two full-time employees in small electric utilities, allowing employees with valuable knowledge and experience to focus on other priorities.

Eli King
Director of Energy Emergency Management, State of Washington Energy Office

Elizabeth King is the Energy Emergency Management Director for the State of Washington and an internationally credentialed Emergency Manager. Mrs. King facilitates and oversees the programs energy emergency planning, and coordinates restoration priorities during an energy supply disruption impacting the state.

Andy Bochman
Senior Grid Strategist, Idaho National Labs

As an INL security strategist, Andy provides strategic guidance on topics at the intersection of grid security and resilience to N&HS leadership as well as senior U.S. and international government and industry leaders.

Caitlin Durkovich
Director, Toffler Associates

Caitlin leads the security and resilience practice at Toffler Associates. A recognized expert in critical infrastructure security and resilience, including cybersecurity, Caitlin helps public and private sector clients navigate the complex operational challenges posed by an increasingly interconnected and interdependent global economy.

Kenneth "KC" Carnes
Chief Information Security Officer and VP of Critical Secure Services, New York Power Authority

In his role at NYPA, Kenneth Carnes is expected to enable the secure future of integrated power systems to meet the needs of the largest state-owned utility. KC has experience supporting all verticals of electric operations from the perspectives of security, information technology and operations technology.

Harry Regan
VP, Securicon

Harry Regan, CISSP, CISM, PSP is an information security, asset protection and systems operations professional with over 35 years of commercial, Federal and DoD experience. Mr. Regan has extensive experience in enterprise, industrial and process control systems protection, cybersecurity and physical security, and operations management in critical infrastructure implementations and for regulated industries. Mr. Regan has direct experience in defensive and offensive security techniques; technology-based countermeasures; SCADA systems; building automation and industrial infrastructure systems; NERC Critical Infrastructure Protection (NERC CIP), HIPAA, and a number of other regulatory compliance programs.

Jake Kouns
CEO & CISO, Risk Based Security

Jake is frequently interviewed as an expert in the security industry and has presented at many well-known security conferences, including RSA, Black Hat, and DEF CON. He is the co-author of Information Technology Risk Management in Enterprise Environments and The Chief Information Security Officer. He holds both a bachelor of business administration and master of business administration degree from James Madison University, with a concentration in information security. In addition, he holds a number of certifications, including: ISC2's CISSP, and ISACA's CISM, CISA and CGEIT.

Harry Perper
Chief Engineer, NIST’s National Cybersecurity Federally Funded Research & Development Center (FFRDC)

Harry Perper is the Chief Engineer at NIST’s National Cybersecurity Federally Funded Research & Development Center (FFRDC), operated by The MITRE Corporation. In his role as Chief Engineer, Harry is responsible providing quality oversight across dozens of cybersecurity lab projects and influencing the FFRDC’s forward-looking research investment opportunities. NIST’s National Cybersecurity Center of Excellence (NCCoE), a collaborative hub which identifies pressing cybersecurity challenges with industry and builds modular, end-to-end integration solutions using commercially available products to demonstrate standards-based cybersecurity. At the NCCoE, Harry helps guide more than 40 of cybersecurity engineers as they work through the development of cybersecurity reference designs and lab implementations. Prior to his support of the NCCoE, Harry worked at MITRE’s Center for National Security, leading teams focused on evaluating a range of cyber technologies for the US Department of Defense. Before his career at MITRE, Harry worked in the telecommunications industry in various capacities including operations, engineering and marketing.

The UMBC Cyberdefense Team
University of Maryland, Baltimore County

The UMBC Cyberdefense team includes graduate and undergraduate students at UMBC. Left to right: Dr. Charles Nicholas (advisor), Anna Staats, Drew Barrett, Robert Joyce, Grant Spencer, Cyrus Bonyadi, and Seamus Burke,

Richard Mroz
Senior Advisor, State and Government Relations, Protect Our Power

Richard Mroz is one of the leading advocates in securing the grid from both cyber and physical attacks. He is the immediate past President of the New Jersey Board of Public Utilities and was nominated by former Gov. Chris Christie in 2014. The nomination was unanimously approved by the New Jersey Senate. Mr. Mroz was also a member of the National Association of Regulatory Utility Commissioners (NARUC) and served as chairman of the NARUC Committee on Critical Infrastructure, which was established on a temporary basis after the Sept. 11, 2001, terrorist attacks and the now-permanent Critical Infrastructure Committee provides State regulators a forum to analyze solutions to utility infrastructure security and delivery concerns. Mr. Mroz is a thought leader on issues the Committee regularly addresses including cyber security, workforce development, and infrastructure improvements in all industries. From 1991-1993, Mr. Mroz served as the County Counsel for Camden County, N.J. In 1993 then Governor Christine Todd Whitman appointed him to the first of several senior positions in her administration. He served as Director of Authorities, Governor’s counsel, and liaison to New Jersey’s largest independent agencies. In 1998 Governor Whitman appointed him as Special Counsel. In 1999, Governor Whitman recognized Mr. Mroz’s thought leading abilities and appointed him to Chief Counsel. Mr. Mroz served as the Governor’s primary advisor for legislative affairs, judicial and prosecutorial appointments, as well as, legal, policy and management issues of the State government. Richard Mroz is a graduate of the University of Delaware and holds a J.D. from the Villanova School of Law.

Roger Rademacher
Solution Architect

Roger has over two decades of combined experience as an IT professional, Systems Engineer and self-proclaimed Cybersecurity Evangelist. He has been working to secure Department of Defense (DoD) and Critical Infrastructure using comprehensive cybersecurity management practices and is a contributing member in the development of draft security standards including ISA 99 /IEC 62443. As a member of the FoxGuard team, Roger consults with asset owners and develops cybersecurity solutions which enable compliance with cybersecurity standards and regulations. He engages local and online cybersecurity communities through speaking engagements, instruction, white papers and best practice guides. Roger volunteers within the local homeschool community to support the instruction of cybersecurity, music, history, science and fitness. He is teaching a portion of the next generation to embrace the concepts of lifelong learning, creativity, and healthy living.

Lynn Costantini
Deputy Director, Center for Partnerships & Innovation National Association of Regulatory Utility Commissioners (NARUC)

Russell Evans
DIRAP – Cybersecurity/Financial Services Lead Office of Apprenticeships

Danish Saleem
DER Cybersecurity Standards Lead, National Renewable Energy Laboratory (NREL)

Danish Saleem is the DER Cybersecurity Standards Lead in the Cyber-Physical Systems Security Group in National Renewable Energy Laboratory (NREL) where he works with the public and private sector to identify security requirements at the device and system level and leads the planning and development of cybersecurity standards for DER. He led DER security subgroup within SunSpec alliance cybersecurity working group and is now working with IEEE 1457.3 technical standards working group for DER security. He is leading $2.5M DOE CEDS funded project to develop a hardware encryption module for security of DER communication and is also leading $1.2M DOE SETO funded project to develop DER cybersecurity standards. He received his MS in Electrical Engineering from Florida International University.

Travis Smith
Principal Security Researcher, Tripwire

Travis Smith is a Principal Security Researcher at Tripwire. He has over 10 years of experience in security, holds an MBA with a concentration in information security and multiple certifications, including CISSP, GIAC GPEN and Security+. Smith specializes in integrating various technologies and processes. He has a passion for forensics and security analytics with the goal of helping customers identify and mitigate real threats.

Steve Parker
President, EnergySec

Steven Parker, CISA, CISSP, is a founding director of EnergySec. He has been engaged in critical infrastructure protection within the electric sector for more than 14 years, including eight years as a senior security staff member at a large west coast utility. He was also one of the original NERC CIP auditors for the WECC region. He has been with EnergySec full-time since 2010.

Gabe Authier
Director of Product Management, Tripwire

Gabe Authier is the Director of Product Management at Tripwire. He has over 20 years of experience in Product Management and Information Technology with certifications in Agile practices and Pragmatic Marketing methodology. Gabe has a proven track record of successfully launching multiple Industrial Cyber Security technologies and SaaS Cloud products, including executing the product launches and growing a profitable business unit.

Carter Manucy
Cyber Security Manager, Florida Municipal Power Agency

Carter Manucy is the Cyber Security Manager for Florida Municipal Power Agency, a joint-action agency in Orlando, Florida. At FMPA his responsibility is for OT cyber and physical security as well as NERC CIP compliance. While working at FMPA, Carter has held numerous roles in the IT/OT domain over the last couple of decades while maintaining a passion for cyber security. Carter holds a SANS GCIP certification, is currently the chair for the Cyber Mutual Assistance Compliance Committee, a voting member for NERC CIPC, and acts as chair/author/member/participant/contributor for numerous other committees, groups and publications in the cyber security and compliance arenas.

Event Sponsors

Event Schedule

09:00 AM

Keynote TBA

09:00 AM - 10:00 AM
10:00 AM

Energy Emergency Management: Successes and Strategies

10:00 AM - 10:30 AM
10:30 AM

BREAK

10:30 AM - 11:00 AM
11:00 AM

State-level Activities

11:00 AM - 11:30 AM
11:30 AM

Securing the IIoT: Cybersecurity for Distributed Energy Resources

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

NICE Cybersecurity Framework

01:00 PM - 01:30 PM
01:30 PM

Apprenticeships in Workforce Development

01:30 PM - 02:00 PM
02:00 PM

EnergySec Presentation

02:00 PM - 02:30 PM
02:30 PM

BREAK

02:30 PM - 03:00 PM
03:00 PM

DoE CyberForce National Champions: Lessons Learned in Cyber Competitions

03:00 PM - 04:00 PM
04:00 PM

Presentation

04:00 PM - 04:30 PM
04:30 PM

Presentation

04:30 PM - 05:00 PM
09:00 AM

Opening Remarks

09:00 AM - 09:15 AM
09:15 AM

Helping Regulators Regulate - Bringing Cyber Hygiene Basics to Those Charged with Overseeing the Distribution Grid

09:15 AM - 10:00 AM
10:00 AM

BREAK

10:00 AM - 10:30 AM
10:30 AM

Power Plants, Trains and Dishwashers: Third Party Code Is Everywhere

10:30 AM - 11:00 AM
11:00 AM

Attacks against RFID badges

11:00 AM - 11:30 AM
11:30 AM

Presentation

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

DER Cybersecurity Standards

01:00 PM - 01:30 PM
01:30 PM

Cyber Physical Security for DER

01:30 PM - 02:00 PM
02:00 PM

Presentation

02:00 PM - 02:30 PM
02:30 PM

BREAK

02:30 PM - 03:00 PM
03:00 PM

Combating ICS Threats with ATT&CK: A Deep Dive

03:00 PM - 03:30 PM
03:30 PM

Presentation

03:30 PM - 04:00 PM
04:00 PM

Supply Chain Panel

04:00 PM - 05:00 PM
05:30 PM

Evening Reception

05:30 PM - 07:00 PM
09:00 AM

A Risk-Informed Automated Vulnerability and Patch Management Solution

09:00 AM - 09:30 AM
09:30 AM

Moving the Needle in Cloud Regulation: A Call for Collaboration

09:30 AM - 10:00 AM
10:00 AM

Presentation

10:00 AM - 10:30 AM
10:30 AM

BREAK

10:30 AM - 11:00 AM
11:00 AM

Using Joint Action to stand up an assessment program for small and medium public power utilities

11:00 AM - 11:30 AM
11:30 AM

Presentation

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

An ‘All-Hands on Deck’ Approach to Enhancing Cyber Resilience in New York State

01:00 PM - 01:45 PM
01:45 PM

Presentation

01:45 PM - 02:15 PM
02:15 PM

Presentation

02:15 PM - 03:15 PM
09:00 AM

Keynote TBA

09:00 AM - 10:00 AM
10:00 AM

Energy Emergency Management: Successes and Strategies

10:00 AM - 10:30 AM
10:30 AM

BREAK

10:30 AM - 11:00 AM
11:00 AM

State-level Activities

11:00 AM - 11:30 AM
11:30 AM

Securing the IIoT: Cybersecurity for Distributed Energy Resources

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

NICE Cybersecurity Framework

01:00 PM - 01:30 PM
01:30 PM

Apprenticeships in Workforce Development

01:30 PM - 02:00 PM
02:00 PM

EnergySec Presentation

02:00 PM - 02:30 PM
02:30 PM

BREAK

02:30 PM - 03:00 PM
03:00 PM

DoE CyberForce National Champions: Lessons Learned in Cyber Competitions

03:00 PM - 04:00 PM
04:00 PM

Presentation

04:00 PM - 04:30 PM
04:30 PM

Presentation

04:30 PM - 05:00 PM
09:00 AM

Opening Remarks

09:00 AM - 09:15 AM
09:15 AM

Helping Regulators Regulate - Bringing Cyber Hygiene Basics to Those Charged with Overseeing the Distribution Grid

09:15 AM - 10:00 AM
10:00 AM

BREAK

10:00 AM - 10:30 AM
10:30 AM

Power Plants, Trains and Dishwashers: Third Party Code Is Everywhere

10:30 AM - 11:00 AM
11:00 AM

Attacks against RFID badges

11:00 AM - 11:30 AM
11:30 AM

Presentation

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

DER Cybersecurity Standards

01:00 PM - 01:30 PM
01:30 PM

Cyber Physical Security for DER

01:30 PM - 02:00 PM
02:00 PM

Presentation

02:00 PM - 02:30 PM
02:30 PM

BREAK

02:30 PM - 03:00 PM
03:00 PM

Combating ICS Threats with ATT&CK: A Deep Dive

03:00 PM - 03:30 PM
03:30 PM

Presentation

03:30 PM - 04:00 PM
04:00 PM

Supply Chain Panel

04:00 PM - 05:00 PM
05:30 PM

Evening Reception

05:30 PM - 07:00 PM
09:00 AM

A Risk-Informed Automated Vulnerability and Patch Management Solution

09:00 AM - 09:30 AM
09:30 AM

Moving the Needle in Cloud Regulation: A Call for Collaboration

09:30 AM - 10:00 AM
10:00 AM

Presentation

10:00 AM - 10:30 AM
10:30 AM

BREAK

10:30 AM - 11:00 AM
11:00 AM

Using Joint Action to stand up an assessment program for small and medium public power utilities

11:00 AM - 11:30 AM
11:30 AM

Presentation

11:30 AM - 12:00 PM
12:00 PM

LUNCH

12:00 PM - 01:00 PM
01:00 PM

An ‘All-Hands on Deck’ Approach to Enhancing Cyber Resilience in New York State

01:00 PM - 01:45 PM
01:45 PM

Presentation

01:45 PM - 02:15 PM
02:15 PM

Presentation

02:15 PM - 03:15 PM