CIP COMPLIANCE – UPDATES, ENFORCEMENT AND PRACTICAL IMPLEMENTATION
This webinar event originally broadcast live on April 25, 2019.
In this webinar we will discuss the topic of NERC CIP compliance, what it means for utilities of all sizes and recent events from an enforcement standpoint that highlight where most organizations should be focusing their compliance efforts, and where some recent violations have missed the mark. We will also provide a preview of changes coming such as NERC CIP 013 for Supply Chain Risk Management that will affect everyone responsible for NERC CIP compliance. Lastly, these programs are very complex to build, run and coordinate with auditor pressure. We will cover approaches to operationalize the standards in a practical way and utilize data-driven methods to contextualize assets to vendors to improve power reliability, reduce the risk of life safety related events and achieve NERC CIP compliance at the same time.
Who should attend:
CIOs, Plant Managers, IT, Operations & Supply Chain managers from:
Utility and Independent Power Producers
Original Equipment Manufacturer (OEM)
Refineries & Petrochemical plants
A&E & EPC Firms
- Tony has helped hundreds of companies with strategic and tactical approaches to solving information security challenges. He has extensive experience in helping customers across Information Technology, Operational Technology and Business Process boundaries. As the global head of Application Security for a Fortune 150 and senior security executive in Air Travel, Manufacturing, Energy, Government, Retail and Insurance, as well as over 25 years of consulting and operations experience, he brings a diverse skill set that includes Security Program Development, Business Continuity, Compliance, Incident Response, Penetration Testing, Vulnerability Management, Security Architecture and Network and Application Security. Tony is a frequent speaker at industry conferences such as SANS, B-Sides, DerbyCon, ISSA, ISACA and others, and is a mainstay of the FL information security community, having founded several security groups and conferences. He holds a B.S. from Hodges University and over 20 security certifications such as CISSP, CISA, GCIH, GCIA, OPSE and many others.
- Eric J. Belardo is Vice President of Security Operations of Fortress Information Security. Eric Brings over 28 years of Cyber Security & Risk Experience across many industry domains including Government, DoD, International, Financial, and Civilian markets. Eric has served in Information Assurance positions in Governmental Organizations such as the Department of Energy and many Critical infrastructure sectors such as Pharmaceutical, Healthcare, Power and Energy, and Defense. Eric’s experience in the cyber security field encompasses the areas of Digital Forensics, Incident Response, Disaster Recovery, Certification and Accreditation, Enterprise Security Architecture, and Security M&A. Eric has supported countless organizations in the US and in over 25 countries. With his Military Intelligence and Information Security background, Eric specializes in developing solutions to our client’s biggest challenges in Emerging Risk and Vulnerability Management to identify, mitigate, and remediate threats from supply chain, IT, and OT environments.