Monday, 17 June

17 June
08:30-17:00
Savoy Place
Flowers Room

Onsite/In-person delivery.

(Separate Registration Fees Apply)

WORKSHOP

Incident Command System for Industrial Control Systems

Brian-PetersonInstructor
Brian Peterson, ICS4ICS Program Manager, ISA

Incident Command System for Industrial Control Systems (ICS4ICS) is designed to improve cybersecurity incident response efforts that impact the industry by combining three capabilities that already exist in most companies:

  1. 1. Incident Command System is a proven process for managing various types of incidents
  2. 2. Cybersecurity teams leverage Computer Incident Response processes to investigate cyber
  3. 3. Industrial Control System/Operational Technology experts manage the technical aspects of many types of incidents

This session will help participants learn how ICS4ICS is the emergency cyber response for workforce development.

17 June
13:00
Strand Palace
Exeter Suite

WORKSHOP

Volunteer Workshop

This custom-designed workshop crafts plans for mission-focused, vibrant and successful sections and divisions. Current and aspiring volunteers will leave this workshop with a plan, with energy, with knowledge and with an expanded network of other volunteers who believe in and want to shape ISA’s future.

Separate registration is required. Click here to register.

17 June
17:00
Strand Palace
Haxell's Private Dining Room

RECEPTION

Young Professionals Reception

17 June
18:30-20:30
Oche | The Strand

105 Strand, London
WC2R 0AA, United Kingdom

RECEPTION

ISA OT Cybersecurity Summit Kick-off Reception sponsored by Black & Veatch Corporation

Join us at Oche | The Strand for a reception to kick off the ISA OT Cybersecurity Summit! We'll be gathering at a unique venue in the heart of London, for an evening of networking and fun. Don't miss this opportunity to connect with fellow cybersecurity professionals in a casual setting.

Tuesday, 18 June

08:00
Savoy Place
Maxwell Library

BREAK

Morning Tea

08:30
Savoy Place
Kelvin Theatre

KEYNOTE

Security by Design — A Communication Problem?

Sarah-FluchsSarah Fluchs, CTO, admeritia GmbH

For a long time, cybersecurity regulation has mainly addressed critical infrastructure operators. This year, the focus has shifted to product manufacturers with regulations like EU’s Cyber Resilience Act (CRA) the UK Product Security and Telecommunications Infrastructure Act (PSTI) or UNECE R155/156 for cars. In addition, national security authorities from dozens of countries, led by US CISA, are pushing security by design globally through joint recommendations, and many countries are introducing cybersecurity labels for IoT products.

If everybody wants Security by Design – then why is it still not done? Maybe it’s not the technology. Maybe not even the money. Maybe the problem we need to solve is a communication problem between product manufacturers and operators / users. Sarah substantiates this point by summarizing what the above regulations require from manufacturers and shows new approaches for communicating cybersecurity – during design as well as after design, between engineers as well as towards management and an interested public.

09:15
Savoy Place
Siemens Ballroom

20-minute duration

Onsite/In-person delivery 

(Separate Registration Fees Apply)

SPECIAL EVENT

Cyber Escape Room

Join us in our immersive OT cyber escape room. Using the latest shared immersive technology, we have created a realistic OT environment in a virtual space.

Imagine you are on an offshore oil and gas floating production unit. In the control room, a ransomware message pops up on a control system console. Now your marine team has no visibility or control over the mooring and buoyancy systems. Your team has 15 minutes to solve the challenges our AI engine presents before the facility experiences a loss of stability and capsizes. Can you succeed before the clock runs out? Who will complete the challenge, and who will be the fastest to reach the goal?

Neon-Escape-Room-Graphic-ISA-OTCS

09:30
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Intro to Intelligence Evolution

Megan SamfordMegan Samford, VP, Chief Security Officer, US National Security Agreements & US Federal Business, Schneider Electric

In this introduction to intelligence evolution, our expert presenter will provide an overview of the latest advancements in artificial intelligence, machine learning and data analytics while exploring how these technologies are transforming the way we understand and interact with the world around us.

09:30
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

The Growing Cyber Threat and Need to Respond in the OT Space

Brian-Holliday Brian Holliday, Managing Director, Siemens, Co-Chair Made Smarter Commission, Made Smarter UK

In this introductory session, Brian Holliday will talk about his experience with Made Smarter UK and provide a comprehensive overview of the fundamentals of cybersecurity. Attendees will gain a solid understanding of the key concepts, strategies and best practices for protecting digital assets and mitigating risk in today's interconnected world. Don't miss this opportunity to lay the foundation for a stronger, more secure digital future!

10:15
Savoy Place
Kelvin Theatre

TECH DEMO

See and Secure Every Device and Connection in the Industrial Environments

Sponsored by Armis

Nick MorganNick Morgan, Solution Architect, Armis

A lot of challenges faced in today's Operational Technology (OT) environments stem from the ever-evolving attack surface. Given the growing reliance on interconnected assets and cloud services, operators in manufacturing and critical infrastructure processes are more vulnerable than ever to attack. This session will demonstrate how organizations can see, protect, and manage their OT infrastructure with Armix Centrix™, the cyber exposure management platform.

10:45
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Leveraging an Outcomes-based Approach with International Standards to Mitigate Cyber Risks

Mohammed-Zumla Mohammed Zumla, Managing Consultant, Cyber ICS

Operators of essential services, regulators, government, vendors and consultancies have been navigating their way through compliance. Although the spirit of NIS regulations is to uplift the overall level of cyber resilience for critical national infrastructure, the journey has been complex and often misunderstood by many. This presentation helps all those concerned to focus on this spirit and develop a staged approach to both satisfy compliance requirements and be resilient against the ever-evolving threats.

10:45
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Secure by Design

Rob-BarnesRob Barnes, Security Systems Architect, Rolls-Royce SMR Ltd.

In this informative session, Rob Barnes will delve into the core principles of Secure by Design, a critical approach to developing secure software and systems from the ground up. Attendees will learn about best practices for incorporating security into the entire development lifecycle, from design and coding to deployment and maintenance. This talk is designed for anyone looking to enhance their understanding of how to build security into the foundation of digital products and services.

11:15
Savoy Place
Maxwell Library

BREAK

Lunch Break I

11:30
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Practical Experience with NIS2 Directive Implementation Leveraging ISA/IEC 62443

Ilja-DavidIlja David, CEO & Security Manager and Architect, Iron OT

This presentation will explore practical insights from implementing the NIS2 Directive using mainly ISA/IEC 62443 in two large enterprises from the chemical & pharmaceutical industry and from healthcare. It will detail the identification of OT systems within the NIS2 scope, insight into the Czech transposition of NIS2, and steps taken to achieve compliance with NIS2, ISA/IEC 62443 and ISO 27001 together in these organizations. This session aims to equip attendees with actionable steps that might serve as a basis for their own implementations or inspire them on how to do it on their own. 

12:00
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Impact of New Tech in Standards

Cindy Segond von BanchetCindy Segond von Banchet, OT Cybersecurity Lead, Yokogawa Europe

Join us as we discuss the complex interplay between new technology standards in the rapidly evolving world of cybersecurity. Attendees will learn how emerging technologies, such as AI, IoT and cloud computing, are shaping the development and enforcement of security standards. The talk will explore the challenges and opportunities presented by this intersection, as well as the implications for the future of cybersecurity. This session is designed for anyone seeking to enhance their understanding of how new technologies are transforming the standards landscape and how to effectively navigate these changes to maintain a strong security posture.

12:15
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Fireside Chat: Understanding the Hardware Side of Supply Chain Risk and Protecting It

JC Herz-1JC Herz, Senior Vice President, Cyber Supply Chain, Exiger

 

 

Cassie-Crossley-Cassie Crossley, Vice President, Supply Chain Security, Cybersecurity & Product Security, Governance, Schneider Electric

During this fireside chat, our speakers will explore the dynamic relationship between the hardware side of supply chain risk and how to protect it. Our panel of industry experts will discuss the unique challenges and opportunities, offering valuable insights on how to leverage intelligence to identify and mitigate risks in the hardware supply chain industry. Attendees will learn about the latest trends and best practices for securing their hardware infrastructure and gain practical advice on how to stay ahead of emerging threats.

12:30
Savoy Place
Maxwell Library

BREAK

Lunch Break II

12:45
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Supply Chain Intelligence Sharing

Chris-Blask Chris Blask, Vice President of Strategy, Cybeats

The CISA SBOM sharing working group recently published a document defining three key roles in SBOM sharing: author, distributor and consumer. In this session, the group's co-chair will discuss the current and future state of supply chain intelligence networks, and provide actionable steps for attendees in any of these roles.

13:30
Savoy Place
Kelvin Theatre

PANEL DISCUSSION

Linking Hardware and Software

Steve_Mustard-125x125Moderator: Steve Mustard, President & CEO, National Automation, Inc.

 

 

Megan Samford
Megan Samford, VP, Chief Security Officer, US National Security Agreements & US Federal Business, Schneider Electric

 

 

Paul HingleyPaul Hingley, Business Manager, Industrial Security and Safety Services, Siemens

 

 

Anna-Burrell_DeloitteAnna Burrell, Cyber Security for Industrials, OT SME, Director, Deloitte

 

 

Sarah-Fluchs
Sarah Fluchs, CTO, admeritia GmbH

In this informative panel discussion, we will explore the critical link between hardware and software in securing our digital world. Listen as our panelists talk about the intersection of these two crucial components of cybersecurity, discussing the latest trends, challenges and opportunities in securing both hardware and software systems. Learn about the importance of implementing a holistic approach to cybersecurity, as well as practical strategies for enhancing the security of both hardware and software infrastructure.

14:30
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Securing Your Networks with the Addition of 5G Technology

greig-paul_360
 Greig Paul, Research Engineer, Electronic and Electrical Engineering, University of Strathclyde

As technology continues to evolve, so do the threats to our network. The addition of 5G technology brings new challenges and opportunities for securing our networks. During this session, we will explore the latest developments in 5G technology and its impact on network security. Our expert speaker will discuss the intelligence evolution and how it affects the security of our networks. Attendees will gain insights into the best practices for securing 5G networks and learn about emerging threats and mitigation strategies.

14:30
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Ensuring IIoT Device Security Through Certification and the ISA Secure Standard

Patrick OBrienPatrick O'Brien, Cybersecurity Team Leader, exida

As the Industrial Internet of Things (IIoT) continues to expand, ensuring the security of connected devices has become a critical concern for organizations. This technical presentation will delve into the importance of IIoT device certification and the role of the ISA Secure standard in addressing these challenges.

15:00
Savoy Place
Maxwell Library

BREAK

Afternoon Tea Break

15:15
Savoy Place
Kelvin Theatre

TECH DEMO

Assessment and Certification Strategy for OT-security

Sponsored by UL Solutions

Alexander-KoehlerAlexander Koehler, Principal Security Advisor, UL Solutions

Learn how to comply with a multitude of regulations and standards globally, in an efficient and sustainable way.

15:15
Savoy Place
Turing Theatre

TECH DEMO

Mitigating Risks in Operational Technology: Best Practices and Innovations

Sponsored by Claroty

David-Van-CroutDavid Van Crout, Senior Director, Europe, Claroty

Many organizations are struggling to move forward with their risk management program. This session delves deeper into how companies are moving to a pragmatic approach and how this has helped them to adopt frameworks such as NIST, 62443, OG86, CAF, and more. Learn practical examples of how other organizations have leveraged the data found through exposure management and how you can leverage this as part of an overall OT Cyber management system. 

15:45
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Brave New World: How Do We Start the Quantum Migration?

Andersen-ChengAndersen Cheng, Founder, Post-Quantum

When the Quantum Computing Cybersecurity Preparedness Act became law in the United States in December 2022, quantum migration became a reality. Adoption began with U.S. federal agencies and was closely followed by other nation states. Critical nation infrastructures and highly-automated sectors have been identified as particularly vulnerable, and action needs to be taken now.

15:45
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Cybersecurity in Action: Real-World Applications of ISA/IEC 62443 in Energy Storage Systems

SZ-Lin SZ Lin, Chief Cybersecurity Expert, Bureau Veritas

This presentation explores the integration of cybersecurity measures in energy storage systems (ESS), a vital aspect in the increasingly interconnected and digitalized energy sector. It focuses on the practical application of the ISA/IEC 62443 standard, an essential framework for industrial cybersecurity, especially within the context of ESS. The session highlights common challenges faced by organizations in the energy sector during the implementation of these standards and pinpoints crucial areas requiring attention for a robust cybersecurity posture.

18:00
Savoy Place
Riverside Terrace

RECEPTION

ISAGCA/ISASecure Welcome Reception

Wednesday, 19 June

08:00
Savoy Place
Maxwell Library

BREAK

Morning Tea

08:30
Savoy Place
Kelvin Theatre

KEYNOTE

The Intersection of Sustainability and Cybersecurity

Simon-Hodgkinson Simon Hodgkinson, Former CISO, BP

As the world becomes increasingly digitized, the importance of cybersecurity is greater than ever. At the same time, the growing awareness of the environmental impact of technology has made sustainability a crucial consideration. In this keynote, we will explore the intersection of these two critical issues and discuss how organizations can balance security and sustainability in their digital strategies.

Attendees will gain a deeper understanding of the relationship between cybersecurity and sustainability and learn practical strategies for building a secure and environmentally responsible digital future.

09:15
Savoy Place
Siemens Ballroom

20-minute duration

Onsite/In-person delivery 

(Separate Registration Fees Apply)

SPECIAL EVENT

Cyber Escape Room

Join us in our immersive OT cyber escape room. Using the latest shared immersive technology, we have created a realistic OT environment in a virtual space.

Imagine you are on an offshore oil and gas floating production unit. In the control room, a ransomware message pops up on a control system console. Now your marine team has no visibility or control over the mooring and buoyancy systems. Your team has 15 minutes to solve the challenges our AI engine presents before the facility experiences a loss of stability and capsizes. Can you succeed before the clock runs out? Who will complete the challenge, and who will be the fastest to reach the goal?

Neon-Escape-Room-Graphic-ISA-OTCS

09:30
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Cybersecurity and Sustainability: Partners to Drive Growth and Governance

Prabhu-Soundarrajan Prabhu Soundarrajan, President, ISA

Cybersecurity and sustainability are two sides of the same coin, working together to drive business growth and corporate governance alike. Both cybersecurity and sustainability are driven by regulatory, reporting and standards frameworks that help shareholders, the general public and regulatory bodies to develop trust and understand how an enterprise operates. This presentation will cover how cybersecurity, sustainability and automation act in partnership to accelerate growth and safety. 

09:30
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Clean Energy Cybersecurity

Emma-StewartEmma Stewart, Chief Power Grid Scientist & Research Strategist, Idaho National Laboratory

As the world transitions to clean energy sources, the cybersecurity of these systems becomes increasingly critical. This session will explore the unique challenges and opportunities of securing clean energy infrastructure, from solar panels to electric vehicle charging stations.

Attendees will learn about the latest cybersecurity threats and trends in the clean energy sector, as well as strategies for protecting against them.

10:15
Savoy Place
Kelvin Theatre

TECH DEMO

Simplifying Deployment by Preparing in Advance

Sponsored by Dragos

Neil-BrownNeil Brown, Senior Solutions Architect, Dragos

Need to monitor your OT networks, but worried about how long it will take and paranoid about breaking something? Like anything, good planning and preparation can help smooth the journey. Here, we will talk about some steps you can take to plan how you will implement a monitoring solution, gaining quality visibility without causing any unwanted impact.

10:15
Savoy Place
Turing Theatre

TECH DEMO

Enabling Secure and Simple Privileged Remote Access to OT 

Sponsored by Cyolo

Ian-CuthbertsonIan Cuthbertson, Sales Engineer, Cyolo

In this session, you will learn how Cyolo can enable simple to use and secure remote access for your OT environment such as providing a reduced attack surface, greater visibility and control and practical controls like segmentation, encryption, identity, and privilege management. As a highly flexible solution for on premises, hybrid and cloud connect environments, you will understand how Cyolo can meet the demands of all enterprises, replacing insecure and complex to manage VPN connectivity

 

10:45
Savoy Place
Kelvin Theater

INTELLIGENCE EVOLUTION TRACK

Critical Infrastructure and Threat Intelligence

Carolyn SwinneyCarolyn Swinney, Executive Fellow, University of Essex

Critical infrastructure, such as energy, transportation, and communications systems, are essential for the functioning of our society. However, these systems are also vulnerable to cyber-attacks, which can have severe consequences. In this session, we will discuss the importance of threat intelligence in protecting critical infrastructure and share strategies for identifying and mitigating emerging threats.

10:45
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

Navigating the Complexities of Maritime Cybersecurity: Challenges, Controls and Collaboration

Christopher-Stein Christopher Stein, Lead Engineer, Maritime Cybersecurity, Royal Caribbean Group

The maritime industry is rapidly digitizing, making cybersecurity a critical concern. Join us as we explore the unique challenges of cybersecurity in maritime environments, including the need to balance safety and security and the challenges of applying traditional Industrial Control Systems (ICS) security measures. Learn about the key cybersecurity controls for the maritime industry — such as asset management, multi-factor authentication and risk assessment – and come to understand the importance of collaboration between maritime stakeholders, including shipowners, equipment manufacturers and cybersecurity experts, to develop effective cybersecurity strategies and mitigate risks. Drawing on real-world examples from companies like Royal Caribbean, Christopher Stein will provide insights into how the maritime industry can navigate the complexities of cybersecurity and ensure the safety and security of its operations.

11:15
Savoy Place
Maxwell Library

BREAK

Lunch Break I

11:30
Savoy Place
Turing Theatre

IoT CYBERSECURITY TRACK

Exploring the Security Impacts of GenAI in IT and OT

Andrew-Rogoyski Dr. Andrew Rogoyski, Director of Innovation, Surrey Institute for People-Centered AI

Generative AI (GenAI) has emerged as a transformative technology with numerous applications across industries. While GenAI presents exciting opportunities for innovation, it also introduces new security challenges in both Information Technology (IT) and Operational Technology (OT) environments. This technical presentation will explore the security impacts of Generative AI in IT and OT.

12:00
Savoy Place
Turing Theatre

IOT CYBERSECURITY TRACK

ISA Cybersecurity Programs and Initiatives

Andre-Ristaino--LandingPg Andre Ristaino, Managing Director, Global Consortia, Conformity Assessment, ISA

Join us for an overview of ISA cybersecurity programs and initiatives, including our industry-leading consortia. In this session, we will delve into the details of the ISA/IEC 62443 Cybersecurity Certificate Program, which provides training and knowledge-based recognition in industrial cybersecurity based on the world's only consensus-based series of standards.

12:15
Savoy Place
Kelvin Theatre

IOT CYBERSECURITY TRACK

Where Conflict and Adversaries Collide Within the Cyber Supply Chain

JC-HerzJC Herz, Senior Vice President, Cyber Supply Chain, Exiger

Geopolitical conflict and the geopolitical fault lines in critical industries have made cybersecurity into a higher-dimension intelligence problem: product vulnerabilities, exploitability and targeting are more effectively prioritized and managed with an overlay of supplier risks that are not present or detectable with code scans. These risks can be detected and managed by combining operational transparency with geopolitical risk data metrics on devices, software and upstream service providers and software suppliers. Attendees will walk away with:

  • An overview of the intersection of cybersecurity and intelligence
  • Positioning of the supply chain challenges relating to threats not simply found through tools
  • Non-obvious threats in the software and firmware ecosystem
  • How these threats can be detected and managed through a comprehensive program that can be tailored to your risk appetite and regulatory obligations

12:30
Savoy Place
Maxwell Library

BREAK

Lunch Break II

12:45
Savoy Place
Kelvin Theatre

INTELLIGENCE EVOLUTION TRACK

Defining an Incidence Response Plan on a National Level

Ivan MonforteIvan Monforte Fugarolas, Head of Communication, Ecosystem and Cybersecurity Culture, Cybersecurity Agency of Catalonia

As cyber threats continue to evolve and become more sophisticated, having a robust incident response plan is essential for minimizing damage and ensuring a quick recovery. This session will explore the challenges and best practices for defining and implementing an incident response plan on a national level in Spain, with a focus on coordination between government agencies, critical infrastructure operators and other stakeholders.

13:30
Savoy Place
Kelvin Theatre

PANEL DISCUSSION

Evolving Threat Landscape

Scott_ReynoldsModerator: Scott Reynolds, Security Engineering Manager - ITD, Johns Manville
 
 
JC-HerzJC Herz, Senior Vice President, Cyber Supply Chain, Exiger

 

 

Jack-DuffieldJack Duffield, Royal Air Force

 

 
Johnny-AwadJohnny Awad, Cyber Leader for Energy and Renewables, Strategy & Transformation, Deloitte

 


Phil-TonkinPhil Tonkin, Field Chief Technology Officer, Dragos

This panel discussion will bring together experts in the field of threat intelligence to share their experiences, strategies, and best practices. Our panelists will discuss the current state of threat intelligence, including the latest trends, challenges, and opportunities. Attendees will learn about cyber threat intelligence, addressing and identifying the threats, and emerging risk.

14:30
Savoy Place
Kelvin Theatre

TECH DEMO

Evidencing Zones and Conduits 

Sponsored by Fortinet

Stefan-LiversidgeStefan Liversidge, OT SE & Subject Matter Expert, Fortinet
 
 
Ben-WhiteBen White, UKI OT Business Development Manager, Fortinet

Fortinet will present an application of ISA/IEC 62443 Zones and Conduits in the context of simple PID loop environment in Operational Technology. The Demo will show how FortiGate and FortiSwitch can perform Segmentation and Protocol Inspection. We will summarize this demo by then showing Foundational Requirements alignment.

15:00
Savoy Place
Maxwell Library

BREAK

Afternoon Tea

15:15
Savoy Place
Turing Theatre

WORKSHOP

Standards Workshop: Empowering Global Automation with ISA's International Standards Program

Charley RobinsonCharley Robinson, Senior Director, ISA Standards

ISA’s international standards play a vital role in promoting safety, cybersecurity, and efficiency across global industry. This workshop will provide an overview of ISA’s international standards program and its relationship to and collaboration with the International Electrotechnical Commission (IEC). A panel of experts representing standards stakeholders will then answer questions from the audience.

16:00
Savoy Place
Kelvin Theatre

PANEL DISCUSSION

Applying Standards to Industry

Thursday, 20 June

08:30-17:00
Strand Place
Exeter Suite

ISA TRAINING COURSE

SOLD OUT! Using the ISA/IEC 62443 Standards to Secure Your Control Systems (IC32)

Instructor
Carlos Montes Portela, ISA/IEC 62443 Trainer, Senior OT/ICS Cybersecurity Manager

Separate registration fees apply

  • Onsite/in-person delivery
  • Course Dates: 20-21 June 2024
  • CEU Credits: 1.4
  • A certificate of completion indicating the total number of CEUs earned will be provided upon successful completion of the entire two-day course.
Description

The move to using Ethernet, TCP/IP, and web technologies in supervisory control and data acquisition (SCADA) and process control networks has exposed these systems to the same cyberattacks that have wreaked havoc on corporate information systems. This course provides a detailed look at how the ISA/IEC 62443 standards framework can be used to protect critical control systems. It also explores the procedural and technical differences between the security for traditional IT environments and those solutions appropriate for SCADA or plant floor environments.

  • Discuss the principles behind creating an effective long term program security
  • Interpret the ISA/IEC 62443 industrial security framework and apply them to your operation
  • Define the basics of risk and vulnerability analysis methodologies
  • Describe the principles of security policy development
  • Explain the concepts of defense in depth and zone/conduit models of security
  • Analyze the current trends in industrial security incidents and methods hackers use to attack a system
  • Define the principles behind the key risk mitigation techniques, including anti-virus and patch management, firewalls, and virtual private networks
Topics Covered
  • Understanding the Current Industrial Security Environment: What is Electronic Security for Industrial Automation and Control Systems? | How IT and the Plant Floor are Different and How They are the Same
  • How Cyberattacks Happen: Understanding the Threat Sources | The Steps to Successful Cyberattacks
  • Creating A Security Program:  Critical Factors for Success/Understanding the ANSI/ISA-62443-2-1 (ANSI/ISA-99.02.01-2009)- Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program
  • Risk Analysis:  Business Rationale | Risk Identification, Classification, and Assessment 
  • Addressing Risk with Security Policy, Organization, and Awareness: Cyber Security Management System Scope | Organizational Security | Staff Training and Security Awareness
  • Addressing Risk with Selected Security Counter Measures: Personnel Security | Physical and Environmental Security | Network Segmentation | Access Control
  • Addressing Risk with Implementation Measures: Risk Management and Implementation | System Development and Maintenance | Information and Document Management
  • Monitoring and Improving the CSMS: Compliance and Review | Improve and Maintain the CSMS
  • Validating or Verifying the Security of Systems: What is being done? | Developing Secure Products and Systems
Classroom/Laboratory Demo
  • PCAP Live Capture Analysis
Includes ISA Standards
  • ANSI/ISA-62443-1-1 (ANSI/ISA-99.00.01-2007), Security for Industrial Automation and Control Systems Part 1: Terminology, Concepts & Models
  • ANSI/ISA-62443-2-1 (ANSI/ISA-99.02.01-2009), Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program
  • ANSI/ISA-62443-3-3, Security for industrial automation and control systems: System security requirements and security levels

Note: Training course registration fees are separate from conference registration. To register for a course, select it on the "Training Registration Options" drop-down list within the event registration form. If applicable, discount code only applies to training course registration when conference registration is also selected.

08:30-17:00
Savoy Place

Day 1
Wedmore Boardroom

Day 2
Mountbatten Exhibition Room

ISA TRAINING COURSE

Assessing the Cybersecurity of New Existing IACS Systems (IC33)

Instructor
Prashanth AC, Cybersecurity Strategy and Program, IEC 62443 Expert, Implementer and Trainer

Separate registration fees apply

  • Onsite/in-person delivery
  • Course Dates: 20-21 June 2024
  • CEU Credits: 1.4
  • A certificate of completion indicating the total number of CEUs earned will be provided upon successful completion of the entire two-day course.
Learning Objectives
  • Identify and document the scope of the IACS under assessment
  • Specify, gather, or generate the cybersecurity information required to perform the assessment
  • Identify or discover cybersecurity vulnerabilities inherent in the IACS products or system design
  • Interpret the results of a Process Hazard Analysis (PHA)
  • Organize and facilitate a cybersecurity risk assessment for an IACS
  • Identify and evaluate realistic threat scenarios
  • Identify and assess the effectiveness of existing countermeasures
  • Identify gaps in existing policies, procedures, and standards
  • Evaluate the cost, complexity, and effectiveness of new countermeasures to make meaningful recommendations
  • Establish and document security zones and conduits
  • Develop a Cybersecurity Requirements Specification (CRS)
Topics Covered
  • Preparing for an Assessment
  • Security lifecycle
  • Scope
  • System architecture diagrams
  • Network diagrams
  • Asset inventory
  • Cyber criticality assessment
Cybersecurity Vulnerability Assessment
  • Risk
  • Types of cybersecurity vulnerability assessments
  • High-level assessments
  • Passive and active assessments
  • Penetration testing
  • Conducting high-level assessments
  • Assessment tools
  • Cyber Security Evaluation Tool (CSET)

Note: Training course registration fees are separate from conference registration. To register for a course, select it on the "Training Registration Options" drop-down list within the event registration form. If applicable, discount code only applies to training course registration when conference registration is also selected.

Program Committee

Steve_Mustard-125x125-min
Steve Mustard, Chair

Chris_Blask-125x125-min
Chris Blask, Member

Scott_Pepper-125x125-min
Scott Pepper, Member

Allan_Friedman-125x125-min
Allan Friedman, PhD, Member

Scott_Reynolds-125x125-min
Scott Reynolds, Member

Scott_Waugh-125x125-min
Scott Waugh, Member

Mark_Weatherford-125x125-min
Mark Weatherford, Member

View by Topic

View by Track

View by Day

Leadership Workshop: Valued at Work

Lauren Neal , Project Manager , BP, UK

Topic(s): Leadership Career Skills

Type(s): Threat Intelligence - Track 1 Securing the Supply Chain - Track 2

Show more
Lauren NEal-rev
Lauren Neal Project Manager BP, UK

Lauren, a strong advocate for gender equity and career advancement in STEM fields, is the founder and chief program creator at Valued at Work. This consultancy focuses on fostering workplace cultures in traditionally male-dominated sectors, creating an environment no one wants to leave. Lauren is a certified ICAgile team facilitator and coach, specializing in improving team dynamics.

After earning her master's degree in electronic and electrical engineering, Lauren has worked as an engineer and project manager in the energy sector since 2005, contributing to multimillion- dollar global projects both offshore and onshore.

Chartered through the Institution of Engineering and Technology (IET) and the Association of Project Management (APM), Lauren is a highly sought-after speaker, writer, and consultant. She advocates for career advancement within STEM fields and promotes inclusive workplace cultures that extend beyond demographic boundaries.

Released in October 2023, Lauren’s book – “Valued at Work: Shining a Light on Bias to Engage, Enable, and Retain Women in STEM,” has become an Amazon #1 best-seller and was selected as a finalist for the 2024 Business Book Awards.

*International Consortia for Agile

Keynote: Protecting Capital Assets with a Robust Cybersecurity Plan

Lauren Neal , Project Manager , BP, UK

Topic(s): Cybersecurity Threat Intelligence Risk Management OT Security Incident Response Securing the Supply Chain

Type(s): Securing the Supply Chain - Track 2 Threat Intelligence - Track 1

Show more

In this session, Lauren will explore practical strategies to protect capital assets in the energy sector from cyberattacks, with a focus on preventing disruptions to energy supply.

Using real-world examples, including the Colonial Pipeline attack, she will discuss key threats facing the sector, such as ransomware, phishing and insider risks. Participants will learn how to:

  • Develop a defense-in-depth cybersecurity strategy tailored to the energy sector.
  • Implement practical measures such as employee training, network segmentation and incident response planning.
  • Evaluate vulnerabilities and take immediate action to enhance security.
Lauren NEal-rev
Lauren Neal Project Manager BP, UK

Lauren, a strong advocate for gender equity and career advancement in STEM fields, is the founder and chief program creator at Valued at Work. This consultancy focuses on fostering workplace cultures in traditionally male-dominated sectors, creating an environment no one wants to leave. Lauren is a certified ICAgile team facilitator and coach, specializing in improving team dynamics.

After earning her master's degree in electronic and electrical engineering, Lauren has worked as an engineer and project manager in the energy sector since 2005, contributing to multimillion- dollar global projects both offshore and onshore.

Chartered through the Institution of Engineering and Technology (IET) and the Association of Project Management (APM), Lauren is a highly sought-after speaker, writer, and consultant. She advocates for career advancement within STEM fields and promotes inclusive workplace cultures that extend beyond demographic boundaries.

Released in October 2023, Lauren’s book – “Valued at Work: Shining a Light on Bias to Engage, Enable, and Retain Women in STEM,” has become an Amazon #1 best-seller and was selected as a finalist for the 2024 Business Book Awards.

*International Consortia for Agile

Threat Intelligence Landscape in Europe

Topic(s): Threat Intelligence OT Security Cybersecurity

Type(s): Threat Intelligence - Track 1

Addressing Supply Chain Issues with ISA/IEC 62443

Alfredo Santos , Principal Product Strategist , Senhasegura

Topic(s): Securing the Supply Chain ISA/IEC 62443 Standards and Regulations Secure by Design OT Security Cybersecurity

Type(s): Securing the Supply Chain - Track 2

Show more
generic head shot icon
Alfredo Santos Principal Product Strategist Senhasegura

Mind Games in ICS: Turning PLCs into Honeypots with SDN

Dr. Sam Maesschalck , Senior Security Engineer , Nexover, European Space Agency Centre of Excellence (SCCoE)

Topic(s): Threat Intelligence Industrial Control Systems (ICS) Incident Response OT Security Cybersecurity

Type(s): Threat Intelligence - Track 1

Show more
Sam Maesschalck
Dr. Sam Maesschalck Senior Security Engineer Nexover, European Space Agency Centre of Excellence (SCCoE)

Sam is a cybersecurity expert and educator specializing in critical infrastructure protection, focusing on industrial control systems (ICS) and space systems. As a Lead Cyber Security Engineer for Operational Technology at Immersive Labs, he is dedicated to developing innovative training solutions that empower organizations to bolster the security of their OT environments. By leveraging his expertise, he aims to enhance organizational cyber resilience and improve collaboration between OT and IT teams, ensuring critical infrastructure remains secure against evolving cyber threats. As part of his professional role, Sam actively contributes to research in cybersecurity for critical infrastructure.

Previously, Sam was a Senior Security Engineer at Nexova Group, leading the Cyber Awareness and Training initiative for the European Space Agency's Cybersecurity Centre of Excellence (SCCoE). He holds a PhD in computer science from Lancaster University, where his research focused on ICS security, honeypots, and defense-in-depth strategies. During his doctoral studies, he also served as a senior teaching associate, delivering modules on penetration testing, computer networking and software development while mentoring students at various levels.

Sam is a published author in journals such as the International Journal of Critical Infrastructure Protection and Computers & Security and a frequent speaker at conferences. His professional credentials include CISSP certification and participation in key cybersecurity communities, including the UK ICS Community of Interest and the Chartered Institute of Information Security.

With his expertise and passion for cybersecurity, Sam aims to bridge the gap between academic research and practical application within the critical infrastructure sector.

Enterprise Third-Party Risks in IT and OT Domains

Magda Chelly

Topic(s): OT Security Risk Management Incident Response Risk Assessment Cybersecurity Securing the Supply Chain

Type(s): Securing the Supply Chain - Track 2

Show more
generic head shot icon
Magda Chelly

Fireside Chat: NIS2: How to Use 62443-2-1 Integration with ISO27001 to Improve Compliance

Sam Van Hauwaert , OT Consultant , Freelance

Jelle Verbeek , Co-Founder , Defend OT

Topic(s): NIS2 ISA/IEC 62443 Standards and Regulations Incident Response OT Security Cybersecurity Securing the Supply Chain

Type(s): Securing the Supply Chain - Track 2

Show more
generic head shot icon
Sam Van Hauwaert OT Consultant Freelance
generic head shot icon
Jelle Verbeek Co-Founder Defend OT

Applying ISA/IEC 62443-4-1 and 62443-4-2 for Industrial Resilience

Brett Seals , Senior Architect, Industrial Cybersecurity , 1898 & Co.

Pascal Ackerman , Senior Global OT/ICS Threat Protection and Response Engineer , 1898 & Co.

Topic(s): ISA/IEC 62443 Cybersecurity OT Security Standards and Regulations Incident Response Securing the Supply Chain

Type(s): Securing the Supply Chain - Track 2

Show more
generic head shot icon
Brett Seals Senior Architect, Industrial Cybersecurity 1898 & Co.
generic head shot icon
Pascal Ackerman Senior Global OT/ICS Threat Protection and Response Engineer 1898 & Co.

ISASecure ISA/IEC 62443 Industrial Automation Control System Security Assurance Program (ACSSA)

Topic(s): ISA/IEC 62443 Standards and Regulations OT Security Cybersecurity Incident Response Risk Assessment Threat Intelligence

Type(s): Threat Intelligence - Track 1

Protecting Renewable Energy

Topic(s): Threat Intelligence Standards and Regulations OT Security Cybersecurity

Type(s): Threat Intelligence - Track 1

Panel Discussion: Securing Operations and Building Resilience in Critical Infrastructure

Topic(s): Risk Assessment Risk Management Standards and Regulations ISA/IEC 62443 OT Security Cybersecurity

Type(s): Threat Intelligence - Track 1 Securing the Supply Chain - Track 2

Belgium - Cybersecurity Overview

Topic(s): OT Security Cybersecurity Threat Intelligence

Type(s): Threat Intelligence - Track 1

Process Safety Around Security in OT - Safety Instrumented Systems

Topic(s): OT Security Cybersecurity Securing the Supply Chain Safety Instrumented Systems

Type(s): Securing the Supply Chain - Track 2

7 Steps to an OT Program

Topic(s): OT Security Cybersecurity ISA/IEC 62443 Risk Assessment Risk Management Industrial Control Systems (ICS) Threat Intelligence

Type(s): Threat Intelligence - Track 1

EU Cyber Resilience Act (CRA) - Challenges for a Secure Product Development Lifecycle

Lukasz Kister , Global Product Cyber Security Expert , Woodward, Inc.

Topic(s): CRA Standards and Regulations OT Security Cybersecurity Securing the Supply Chain

Type(s): Securing the Supply Chain - Track 2

Show more

The new European Union (EU) regulation on product security has officially come into effect. To continue supplying products with digital elements to the EU market, product suppliers must ensure that the processes of designing, manufacturing and supporting these products comply with cybersecurity requirements.

Many public comments have primarily focused on technical requirements, while the Cyber Resilience Act (CRA) takes a comprehensive approach to the entire product lifecycle, addressing aspects such as:

  • Risk assessment
  • Vulnerability management
  • Technical documentation
  • Information and instructions to the end user
  • End-user security support

This presentation highlights the key challenges posed by the EU CRA, referencing the results of the ISA/IEC JT-62443-4-1 EU CRA Working Subgroup, as well as the European Commission's planned implementation legislation and guidance. The focus is particularly on the impact of industrial automation products.

generic head shot icon
Lukasz Kister Global Product Cyber Security Expert Woodward, Inc.

Keynote: Proven Resilience: Trusting in OT's Own Path to Cybersecurity

John Fitzpatrick , Founder , Lab 359

Topic(s): Cybersecurity OT Security Risk Management Securing the Supply Chain Threat Intelligence

Type(s): Threat Intelligence - Track 1 Securing the Supply Chain - Track 2

Show more

As the interconnectivity between operational technology (OT) and information technology (IT) environments increases, OT networks are facing greater scrutiny regarding cybersecurity. While it's essential to address these concerns, we must consider whether we should adopt the same security measures used in IT networks, which are currently experiencing record-breaking rates of cyber incidents. Are we truly ready to define success as shutting down our facilities weekly to apply patches, or is there a more effective way to move forward?

In this keynote, we will share firsthand lessons learned from defending critical infrastructure, such as fuel terminals and other essential systems, against cyber threats. We will discuss how zero-day vulnerabilities can be leveraged to your advantage, explain why patching may not always be the solution, and explore security testing within operational technology (OT) networks.

We will also examine why “insecure” systems often pose minimal risk in OT contexts and how enhancing detection capabilities can ensure resilience. By relying on OT’s established strategies, we can effectively protect critical infrastructure from modern threats while maintaining the core principles that define OT security.

John Fitzpatrick
John Fitzpatrick Founder Lab 359

John has dedicated many years to leading some of the world's most formidable offensive and defensive cyber teams. While he is currently focused on securing downstream oil infrastructure, his career spans critical industries from finance to defense.

With a passion for uncovering vulnerabilities in supercomputers, John is drawn to exploring emerging and unconventional technologies and continually seeks to evolve cybersecurity practices.

In his free time, he tracks adversaries to disrupt their operations, focusing on Adversary-in-The-Middle (AiTM) attacks.

Beyond Game Over: Levelling Up Operational Technology Penetration Testing

Ric Derbyshire , Senior Security Researcher , Orange Cyberdefense

Topic(s): Threat Intelligence OT Security Cybersecurity Industrial Control Systems (ICS)

Type(s): Threat Intelligence - Track 1

Show more

Operational technology (OT) connects the physical and cyber realms in critical sectors. As a result, it is understandable that asset owners seek assurance regarding their OT security. A typical method for ensuring IT security is penetration testing, which aims to replicate the tactics, techniques and procedures (TTPs) used by real adversaries. However, like many OT security measures, penetration testing cannot be directly applied from IT to OT.

A recent study involving practitioners and procurers of operational technology (OT) services highlighted the current methods used for OT penetration testing. We will outline these approaches, identify the challenges associated with penetration testing in an OT environment, and discuss common flaws in existing methods, especially when compared to modern OT attacks.

A significant limitation in OT penetration testing is the failure to replicate real OT attacks, particularly the crucial tactic of process comprehension. Many OT penetration tests conclude once they reach the OT system, declaring "game over," without recognizing that understanding the processes involved is essential for effective testing. In this discussion, we will illustrate how the real challenge is just beginning. We'll show that common perceptions of complex OT attacks are often exaggerated and that a comprehensive understanding of processes is necessary for these attacks to become a reality.

We will show how process comprehension can be safely integrated into current operational technology (OT) penetration testing practices. We will explain when it should be applied during an engagement and address common concerns that asset owners may have regarding its use. Finally, we will highlight the value that process comprehension brings by demonstrating that it not only enhances understanding of vulnerabilities within processes but also clarifies potential threat scenarios and their impacts.

 

Ric Derbyshire
Ric Derbyshire Senior Security Researcher Orange Cyberdefense

Ric is a principal security researcher at Orange Cyberdefense, an honorary researcher at Imperial College London and a fellow at the Research Institute in Trustworthy Inter-connected Cyber-physical Systems (RITICS). He holds a Ph.D. in computer science from Lancaster University. His research takes a pragmatic and practical approach to both offensive and defensive aspects of cybersecurity, focusing on operational technology, critical national infrastructure, novel attack techniques and quantitative risk assessment.

Improving Cybersecurity Posture with New Regulations and Conformity Assessments

Scott Reynolds , President , ISA

Topic(s): OT Security Cybersecurity ISA/IEC 62443 Secure by Design Securing the Supply Chain Standards and Regulations Risk Management

Type(s): Securing the Supply Chain - Track 2

Show more
Scott Reynolds - 100x100
Scott Reynolds President ISA

Fences Don't Stop Radio Waves: Analyzing & Breaking TETRA for OT

Jos Wetzels , Founding Partner , Midnight Blue

Topic(s): OT Security Threat Intelligence Cybersecurity Secure by Design Industrial Control Systems (ICS)

Type(s): Threat Intelligence - Track 1

Show more

This session will provide an overview of vulnerabilities identified in the TETRA: BURST system related to the TETRA-trunked radio standard and the implications for operational technologies (OT). TETRA is a radio communication standard used globally by law enforcement and critical infrastructure for voice communications in locations such as harbors and airports. Additionally, it plays a role in supervisory control and data acquisition (SCADA) for telecontrol tasks in sectors such as oil rigs, pipelines, transportation and utilities for electricity and water.

The TETRA: BURST vulnerabilities uncovered by Midnight Blue stem from the first public examination of the standard's proprietary cryptography. This analysis revealed both passive and active attack scenarios that could allow for interception, manipulation and injection of network traffic. This poses significant concerns for TETRA users in critical infrastructure. In these cases, radio-based SCADA wide area networks (WANs), which utilize protocols such as IEC-101/104, DNP3 or Modbus, typically span large geographic areas. Consequently, an attacker equipped with software-defined radio (SDR) could potentially infiltrate the TETRA network from outside the physical perimeter of a substation or facility, gaining direct access to the operational technology (OT) network.

This session will discuss several relevant attack scenarios on TETRA SCADA networks and the corresponding hardening and mitigation advice. It will also briefly cover recent evolutions of the standard, the state of TETRA equipment security posture and security parallels with other radio standards used in OT WAN networks. 

generic head shot icon
Jos Wetzels Founding Partner Midnight Blue

Jos, a co-founding partner at Midnight Blue, has provided consulting services to government agencies, grid operators and Fortune 500 companies around the world. He played a key role in the first-ever public analysis of the TETRA radio standard, which is used by police and critical infrastructure globally, revealing several critical vulnerabilities.

His research involved reverse engineering, vulnerability research and exploit development across various domains, such as industrial systems, automotive technologies, IoT, networking equipment and deeply embedded systems on chips (SoCs). He discovered zero-day vulnerabilities across tech stacks, including bootloaders, real-time operating systems (RTOS) and proprietary protocol implementations.

Before founding Midnight Blue, Jos worked as a security researcher and reverse engineer at Forescout, where he developed advanced intrusion detection capabilities for operational technology (OT) environments. He is also an accomplished conference speaker, having presented at notable events such as Black Hat, DEF CON, Chaos Communication Congress (CCC), Usenix, Hack In The Box (HITB), OffensiveCon, ReCon, EkoParty and many others.

PAEMD: An MAIT Security Demonstrator for Manufacturing

Peter Hagstrom , European Space Agency Centre of Excellence (SCCoE)

Topic(s): Securing the Supply Chain OT Security Cybersecurity Safety Instrumented Systems

Type(s): Securing the Supply Chain - Track 2

Show more

The escalating threat of cyberattacks targeting the exchange and management of manufacturing data within the supply chain necessitates innovative solutions to protect critical processes.

This presentation introduces a cybersecurity demonstrator designed to simulate cyber threats and strengthen security strategies across the interconnected stages of the manufacturing, assembly, integration and testing (MAIT) supply chain. With its modular architecture and user-centered design, the demonstrator caters to both technical cybersecurity specialists and strategic decision-makers.

Through a real-world case study, it demonstrates the capability to identify vulnerabilities in product lifecycle management (PLM) data and additive manufacturing slicing processes—critical touchpoints in modern supply chains—highlighting risks that could compromise mission-critical components.

The demonstrator identifies breaches in data confidentiality and integrity, offering actionable insights to mitigate these risks and improve resilience across the entire supply chain. By connecting simulation capabilities with practical applications, this tool aims to help ensure reliability, safety and security throughout the manufacturing lifecycle.

generic head shot icon
Peter Hagstrom European Space Agency Centre of Excellence (SCCoE)

Study on High Impact Scenarios with European Society of Intensive Care Medicine (ESCIM)

Maite Carli García , Communication Manager & General European Coordinator , Industrial Cybersecurity Center

Topic(s): Securing the Supply Chain OT Security Cybersecurity Incident Response

Type(s): Securing the Supply Chain - Track 2

Show more
Maite Carli García
Maite Carli García Communication Manager & General European Coordinator Industrial Cybersecurity Center

Maite is the communication manager and general European coordinator at the Industrial Cybersecurity Center. After completing several advanced courses and earning her master's degree, she settled in the United Kingdom and has spent the last nine years developing her professional career.

Maite specializes in network and communications administration, industrial critical infrastructures, Industry 4.0 and data analysis technologies within both the healthcare and industrial cybersecurity sectors. She has been invited to speak at and moderate multiple international events.

Unveiling the Persistent Risk of Connected Medical Devices

Daniel dos Santos , Sr. Director, Security Research , Forescout Technologies, Inc.

Topic(s): OT Security Cybersecurity Threat Intelligence Risk Assessment Risk Management Industrial Control Systems (ICS) Incident Response

Type(s): Threat Intelligence - Track 1

Show more
generic head shot icon
Daniel dos Santos Sr. Director, Security Research Forescout Technologies, Inc.

Addressing Guidance Gaps for Small and Medium Businesses

Adam Gauci , Cybersecurity Program Manager , Schneider Electric

Topic(s): Threat Intelligence OT Security Cybersecurity Industrial Control Systems (ICS) Incident Response ISA/IEC 62443 Standards and Regulations

Type(s): Threat Intelligence - Track 1

Show more

Small and medium-sized businesses, especially those leveraging IoT and cloud technologies, are facing growing cybersecurity challenges. Addressing the guidance gap related to cloud usage, referencing standards such as ISA/IEC 62443-4-3, is essential.

In this session, Adam will review specific use cases, including those related to building management systems (BMS), with insights and guidance from an integrator.

generic head shot icon
Adam Gauci Cybersecurity Program Manager Schneider Electric

Panel Discussion: IT/OT Convergence

Ric Derbyshire , Senior Security Researcher , Orange Cyberdefense

Jos Wetzels , Founding Partner , Midnight Blue

Salem Al- Elwi , Manager ICS-OT Cybersecurity , Saudi Aramco

Topic(s): OT Security Cybersecurity Securing the Supply Chain Threat Intelligence Secure by Design

Type(s): Securing the Supply Chain - Track 2 Threat Intelligence - Track 1

Show more
Ric Derbyshire
Ric Derbyshire Senior Security Researcher Orange Cyberdefense

Ric is a principal security researcher at Orange Cyberdefense, an honorary researcher at Imperial College London and a fellow at the Research Institute in Trustworthy Inter-connected Cyber-physical Systems (RITICS). He holds a Ph.D. in computer science from Lancaster University. His research takes a pragmatic and practical approach to both offensive and defensive aspects of cybersecurity, focusing on operational technology, critical national infrastructure, novel attack techniques and quantitative risk assessment.

generic head shot icon
Jos Wetzels Founding Partner Midnight Blue

Jos, a co-founding partner at Midnight Blue, has provided consulting services to government agencies, grid operators and Fortune 500 companies around the world. He played a key role in the first-ever public analysis of the TETRA radio standard, which is used by police and critical infrastructure globally, revealing several critical vulnerabilities.

His research involved reverse engineering, vulnerability research and exploit development across various domains, such as industrial systems, automotive technologies, IoT, networking equipment and deeply embedded systems on chips (SoCs). He discovered zero-day vulnerabilities across tech stacks, including bootloaders, real-time operating systems (RTOS) and proprietary protocol implementations.

Before founding Midnight Blue, Jos worked as a security researcher and reverse engineer at Forescout, where he developed advanced intrusion detection capabilities for operational technology (OT) environments. He is also an accomplished conference speaker, having presented at notable events such as Black Hat, DEF CON, Chaos Communication Congress (CCC), Usenix, Hack In The Box (HITB), OffensiveCon, ReCon, EkoParty and many others.

generic head shot icon
Salem Al- Elwi Manager ICS-OT Cybersecurity Saudi Aramco

Panel Discussion: Navigating Legal and Regulatory Cybersecurity Requirements with Standards – NIS2, Radio Equipment Directive, Machinery Act, CRA, etc.

Lukasz Kister , Global Product Cyber Security Expert , Woodward, Inc.

Eloise Ryon , Senior Manager, Europe Digital Policy , Schneider Electric

Steve Fergeson , Senior Director of Advocacy , ISA

Topic(s): ISA/IEC 62443 NIS2 CRA OT Security Standards and Regulations Cybersecurity

Type(s): Securing the Supply Chain - Track 2 Threat Intelligence - Track 1

Show more
generic head shot icon
Lukasz Kister Global Product Cyber Security Expert Woodward, Inc.
generic head shot icon
Eloise Ryon Senior Manager, Europe Digital Policy Schneider Electric
generic head shot icon
Steve Fergeson Senior Director of Advocacy ISA

ISAGCA Advisory Board Meeting

Program Agenda

This program track is under development.

Subscribe to ISA events emails to get the latest updates.

Looking to get involved? Apply for the program committee today.
Contact events@isa.org for more information.