C4I Center



     MENU

   Symposium 2014 Home

   Registration

   2014 Agenda

   C4I Home










George Mason University




GMU C4I Center-AFCEA Symposium
May 20-21, 2014




SESSION 4: SCADA System and Technology Issues

_____________________


Environmental Issues in SCADA


Jeffrey Rosen
President
Corona Environmental Consultants
Senior Scientist and Statistician at Tetra Tech

May 21, 2014 at 10:30

ABSTRACT

The operation of a drinking water utility is often integrated through a SCADA system. The SCADA supports infrastructure operation and is the brain center of the current status of unit processes and water quality in the source water, the treatment process and the distribution system. It is often the vehicle that controls the operations of the system and is the brain center for data about system settings and the quality of the water. This paper discusses how SCADA systems have been integrated into event detection for both malevolent attacks and treatment failures. Challenges in the use of sensors will be presented. Recent contamination events in West Virginia are leading the way towards the integration of more sophisticated sensors into SCADA to support early detection of contaminants. These new systems will be calibrated and optimized to identify specific chemicals that are stored upstream of water utility raw water intakes. Such early warning systems may help reduce the risks of contamination event such as the spill of crude MCHM into the Elk River.

link to BIO

_____________________


SCADA Threats and Industry Mitigation Strategies

Brian Isle
CEO, (ret)
founder, Adventium Labs
University of Minnesota Technology Leadership Institute (TLI)

May 21, 2014 at 10:30

ABSTRACT

The use of computers to automate and control everything from generating power to heating and cooling a hospital has revolutionized our lives. This broad range of automation is often lumped into a category referred to as SCADA. The history-making revelation of STUXNET woke the general population and legislators to the serious nature of SCADA vulnerabilities. This presentation will provide a brief review of SCADA vulnerabilities and an overview of industry's response and progress in securing SCADA vulnerabilities.

BIO

BRIAN ISLE is the co-founder and former CEO of Adventium Labs. Brian is a Senior Fellow at TLI teaching courses in information assurance and risk assessment, including red teaming methodology. Brian continues his research at Adventium with focus on assessment of critical infrastructure safety and security. Brian is currently supporting the DOE NESCOR program to improve the cyber security readiness of the next generation power grid.

Brian held key roles on several security-related research programs including a DoD program focused on vulnerability assessment for force protection and a Department of Homeland Security program to apply advanced cyber protection technology to control systems for critical infrastructure. Brian is on the Board of Directors of the Minnesota chapter of the FBI sponsored InfraGard, on the Board of Advisors for UMN's Engineering and Computer Engineering department, a member of the National Classification Management Society, a trained Facility Security Officer, and a professional engineer registered in Minnesota.

_____________________


SCADA Operations

Joe Klein
Disrupt6
Founder and CEO

May 21, 2014 at 10:30

ABSTRACT

BIO

JOE KLEIN has more than 30 years of experience in the Information Technology, Information Assurance, blue and red cell engagements. He is well respected in DoD, Civilian government and commercial sectors for his deep and wide Information Assurance and Network Security expertise. He is routinely requested to speak at professional security venues and is invited to participate in high-level government and standards working groups. His current defensive research is focused on applying Information Assurance; network resilience and defense practices. Offensive research includes IPv6, cloud environments, Software Defined Networks, OSINT, mobile and the Internet of Things (IoT). Recent red team engagements include SCADA ICS, automobiles, building controls, Health IT, and web applications.

_____________________


Chair      

Craig McComb
University of Dayton

BIO

CRAIG M. MCCOMB is presently employed at the University of Dayton, Student Development Division as business Analyst. Elicit, analyze, specify, and validate the business needs with Student Development departments of project stakeholders to identify requirements. Conduct interviews with stakeholders and gathering and compiling user requirements to convey to development teams throughout the software lifecycle. Analyzes business process issues, assists with the implementation of procedural change, and manages software solutions for efficient business practices. Work closely with representatives of the Departments within Student Development, Center for Competitive Change, University of Dayton Information Technology/University CIO to develop and/or improve sustainable and efficient processes and maximize information technology solutions. Collaborative partner with the UD Center for Competitive Change as the focal point within Student Development (Greenbelt) so as to integrate Student Development process improvement projects with the University Lean Six Sigma framework.

Prior to current position, retired October 2013 from U.S. Government after 37 years of service. Last position, AFMC Deputy Chief Information Officer for the Air Force Life Cycle Management Center, Wright-Patterson AFB (Feb 2006 - October 2013. Responsible for the planning and execution of the consolidation of five Center IT functions into AFLCMC in a distributed collaborative governance structure, including establishing the key processes for the CIO operations through an integrated process team. Provided leadership and direction over information technology, PfM/resources management, information systems Cyber Security, and business process management/automation and information services and support to over 26,000 users at over 70 geographically dispersed locations.

Previous to the position with AFLCMC, he was the Deputy Director for Transformation, HQ U.S. Air Force Material Command (HQ AFMC), and prior was the Technical Director for HQ AFMC Information Technology Directorate. McComb came to AFMC from Western Area Power Administration where he served in capacities as the CISO, Agency Contingency Program Manager and his initial role as the Agency Enterprise Resource Planning program manager responsible for the transformation and optimization of the Federal Financials ERP and the Maintenance, Repair and Overhaul ERP systems.

Craig has over 36 years' experience in the field of information technology, information resources management, leadership and management. His career responsibilities include managing and executing annual budgets exceeding $70 million and support to small (1700) to large (exceeding 26,000 plus) sized organizations in a variety of organizations core mission areas (DOD and non DOD Agencies). Mr. McComb holds a BS in Decision Science/MIS from George Mason University and an MS in Management Information Systems from the University of Phoenix, graduate of the NDU iCollege Advanced Management Program (APM 6); Defense Resources Management Course (Naval Post Graduate School/DRMI). Craig is married and has three children.





Last updated: 05/19/2014