Conference

2019 Southeast Regional Municipal Utility Cybersecurity Summit

The Summit will provide education on the tools, technologies and resources available to municipal utilities to establish and maintain a successful cybersecurity program, no matter what the size of your utility.
July 10 - 11, 2019
Orlando, Florida

Description

The Summit will provide education on the tools, technologies and resources available to municipal utilities to establish and maintain a successful cybersecurity program, no matter what the size of your utility.  The Summit will also provide networking and information sharing opportunities so that attendees can learn from each other. All utility executives, managers and engineers with cybersecurity as part of your responsibility will benefit from attending this important event.

Please register using this link or the button in the banner above.

Speakers

The Summit list of speakers can be viewed here.

Agenda

The Summit agenda with speaker bios can be viewed here.

Day One

9:00 am Welcome and Opening Remarks
Jacob Williams, CEO, Florida Municipal Power Agency

9:10 am Panel Discussion: Elements of a Successful Public Power Cybersecurity Program.

  • Cybersecurity in your supply chain. Paying attention to the threats and risks lurking in your vendors, devices, and systems.
    • Michael Rovnan, Technical Director, National Security Agency (NSA)
  • Cybersecurity challenges facing public power - what is being done?
    • Carter Manucy, Cybersecurity Manager, Florida Municipal Power Agency
  • Cybersecurity for Energy Delivery Systems. Tools and resources available from the American Public Power Association
    • Nathan Mitchell, P.E, Senior Director, Cyber and Physical Security Services, American Public Power Association
  • Information sharing resources contribute to resilience and help prepare for responses
    • Bill Lawrence, PMP, Director, Electricity Information Sharing and Analysis Center (E-ISAC); Vice President and Chief Security Officer, North American Electric Reliability Corporation
    • Eugene Kipniss, Program Manager, Multi-State Information Sharing and Analysis Center (MS-ISAC)

10:30 am Relocation Break

10:45 am Breakout Sessions

  • Breakout A: Management Track
    • Moderator: Peggy Welsh, Principal, Welsh Energy Consulting, LLC
    • 10:50 am Public Power Cybersecurity Scorecard - an overview for managers
      • Jason Christopher, Chief Technology Officer, Axio
    • 11:20 am Reviewing a real-world exercise, Rapid Attack Detention, Isolation and Characterizations Systems (RADICS) experience with repowering a grid with malware on OT
      • Michael Toecker, Owner/Engineer, Context Industrial Security
    • 12:00 pm Peer to Peer Discussion: Workforce, staff, and resources. Who is responsible for cybersecurity?
  • Breakout B: Operations Track
    • Moderator: Christopher Kelley, PMP, Vice President, Beam Reach Consulting Group
    • 10:50 am How to plan for and execute successful incident response policies and procedures 
      • Mark McKinney, Director of Cybersecurity, Acumen Engineered Solutions International, Inc. (AESI)
    • 11:20 am Tools and Research in Cybersecurity - resources for security professionals
      • Dr. Osama A. Mohammed, Distinguished Professor, College of Engineering and Computing, Florida International University
      • Ernie Ferraresso, Associate Program Director, Cyber Florida: The Florida Center for Cybersecurity
    • 12:00 pm Peer to Peer Discussion: Workforce development, training, and learning resources. Strengthening skills through peer training

12:30 pm Breakout Table Debrief

12:45 pm Networking Lunch

1:30 pm Continue Breakout Sessions

  • Breakout A: Management Track
    • Moderator: Christopher Kelley, PMP, Vice President, Beam Reach Consulting Group
    • 1:35 pm Frameworks for good cybersecurity hygiene. The importance of incident response.
      • Mark McKinney, Director of Cybersecurity, Acumen Engineered Solutions International, Inc. (AESI)
    • 2:05 pm Public Power Cybersecurity Roadmap - culture changes needed to support cybersecurity
      • Christopher Kelley, PMP, Vice President, Beam Reach Consulting Group
    • 2:35 pm Tools and Research in cybersecurity - resources for managers
      • Dr. Osama A. Mohammed, Distinguished Professor, College of Engineering and Computing, Florida International University
      • Ernie Ferraresso, Associate Program Director, Cyber Florida: The Florida Center for Cybersecurity
  • Breakout B: Operations Track
    • Moderator: Peggy Welsh, Principal, Welsh Energy Consulting, LLC
    • 1:35 pm Prepare for and conduct a successful cybersecurity assessment. What technical resources and information is needed?
      • Jason Christopher, Chief Technology Officer, Axio
    • 2:05 pm Reviewing a real-world exercise. Rapid Attack Detention, Isolation and Characterizations Systems (RADICS) experience with repowering a grid with malware on OT.
      • Michael Toecker, Owner/Engineer, Context Industrial Security
    • 2:35 pm Information sharing resources. Tools for incident response and how to use them at your organization
      • Bill Lawrence, PMP, Director, Electricity Information Sharing and Analysis Center (E-ISAC); Vice President and Chief Security Officer, North American Electric Reliability Corporation
      • Eugene Kipniss, Program Manager, Multi-State Information Sharing and Analysis Center (MS-ISAC)

3:15 pm Breakout Table Debrief

3:30 pm Networking and Relocation break

4:00 pm Open Source Intelligence Discussion
Joe Gray, Enterprise Security Consultant

5:00 pm Group report-out and Roundtable Discussion. Table Speakers report from Management and Operations Tracks

5:45 pm Closing Remarks
Carter Manucy, Cybersecurity Manager, Florida Municipal Power Agency

6:00 pm Close

Day Two

8:00 am Welcome and opening remarks
Nathan Mitchell, P.E., Senior Director, Cyber and Physical Security Services, American Public Power Association

8:15 am Neighborhood Keeper Program: collaborative threat detection for small to medium sized public power utilities
Matt Bodman, Advisor, Dragos

8:45 am The Public Power Incident Response Playbook: Deep dive into the tool
Lindsay Kishter, Director, Nexight Group

9:45 am Networking Break

10:15 am Social engineering development and exercises
Joe Gray, Enterprise Security Consultant

12:00 pm Networking Lunch

12:45 pm Completing the Public Power Cybersecurity Scorecard, from preparation to assessment
Jason Christopher, Chief Technology Officer, Axio

1:45 pm Taking the next steps - following the Public Power Cybersecurity Roadmap to success
Christopher Kelley, PMP, Vice President, Beam Reach Consulting Group

2:15 pm IT Roundtable - open discussion forum
Moderators: Isaac Barbosa, Information Security Analyst and Carter Manucy, Cybersecurity Manager, Florida Municipal Power Agency

3:30 pm Closing Remarks
Nathan Mitchell, P.E., Senior Director, Cyber and Physical Security Services, American Public Power Association and Carter Manucy, Cybersecurity Manager, Florida Municipal Power Agency

Registration

  • $100 for members and non-members.

Please register using this link or the button in the banner above.

Summit Location & Hotel

All summit events will take place at the Hilton Orlando Buena Vista Palace.

A contemporary oasis steps from Disney Springs. The lake front resort features stylish, modern guest room, a collection of new restaurants and lounges, and the addition of two large pools with zero-entry Float Lagoon and private cabanas.

Hilton Orlando Buena Vista Palace
1900 E Buena Vista Drive
Lake Buena Vista, FL 32830
(407) 827-2727

Group Rates: Available Sunday-Friday at a rate of $139 (single/double) per night (plus 12.5% state and local taxes)
Attendees from co-ops are also welcome to use the group rate.

Check-in: 4 pm

Check-out: 11 am

Parking: Valet Parking: ($30/day); Self Parking: ($22/day)

Internet Access: wireless high-speed internet connection in sleeping rooms

Reservation Cut-off Date: June 17, 2019

Reservation Telephone: 1-855-757-4984

Group Code: 2019 Regional Summit Meeting

Online Reservation Link: https://book.passkey.com/e/49935227

Hotel Reservations and Cancellation Policy

The cut-off date to receive the APPA group rate (plus tax) is Monday, June 17, 2019. If rooms remain in the block after the cut-ff date, the group rate will be honored. If not, you may be charged a higher rate. The room block may sell out before June 17, 2019, so early reservations are encouraged. For individual reservations call 1-855-757-4984 and reference "APPA" or "Regional Summit Meeting." You can also make your reservation online at https://book.passkey.com/e/49935227 The Hilton Orlando Buena Vista Palace should receive all reservations no later than June 17, 2019. Cancelled reservations that are not resold may become a financial liability for the Association, so please make your reservations thoughtfully.

Assistance

If you require additional assistance with housing, please contact Meeting Services at (202) 467-2941 or [email protected] 

Dress Code

The attire for the summit is business casual.

2019 Southeast Regional Cybersecurity Summit Presentations

Final Program

Jason Christopher, Axio Research, LLC - Public Power Cybersecurity Scorecard - Cyber Readiness: What's the Score?

Jason Christopher, Axio Research, LLC - Public Power Cybersecurity Scorecard - Welcome to Stage 2: Evolving from a 45-minute self-assessment to a culture of security

Mark McKinney, Acumen Engineered Solutions International, Inc. (AESI) - How to plan for and execute successful incident response policies and procedures

Michael Toecker, Context Industrial Security - Reviewing a real-world exercise: Rapid Attack Detention, Isolation, and Characterizations Systems (RADICS) experience with blackstart after a simulated cyber attack on OT systems

Dr. Osama A. Mohammed, Florida International University - Tools and Research in Cybersecurity - Security Aware Microgrids: Securing Goose Messages against Cyberattacks

Ernest Ferraresso, Cyber Florida: The Florida Center for Cybersecurity - Tools and Research in Cybersecurity

Mark McKinney, Acumen Engineered Solutions International, Inc. (AESI) - Frameworks for good cybersecurity hygiene. The importance of incident response

Christopher Kelley, Beam Reach Consulting Group - Public Power Cybersecurity Roadmap: culture changes needed to support cybersecurity

Day One Reflections

Matt Bodman, Dragos Inc. - Neighborhood Keeper Program: collaborative threat detection for small to medium sized public power utilities

Lindsey Kishter, Nexight Group - Can your Utility Survive a Cyber AttacK? The Public Power Incident Response Playbook: Deep dive into the tool

Christopher Kelley, Beam Reach Consulting Group - Taking the next steps - following the Public Power Cybersecurity Roadmap to success