Unsure about how to navigate the new NERC CIP-003-9 requirements and how to approach implementation of vendor electronic remote access security controls to your low impact BES cyber systems? Whether you have experience applying these at higher impact BES sites or are entering this terrain for the first time, the complexity of addressing these requirements across the vast low impact landscape can be daunting. With a variety of steps to undertake—from planning outages and procuring solutions, to coordinating across departments—time is a critical factor. The earlier you start, the better equipped you'll be.

This in-depth webinar features leading experts from Industrial Defender, TDi Technologies, and EnergySec. Our panel will offer practical advice on how to approach the NERC CIP-003-9 requirements and effectively extend remote access controls across all bulk electric cyber systems.

In this session, we cover the following topics:

• Unraveling the NERC-CIP Language: We break down the complex regulatory language into actionable, practical terms. Discover what these regulations imply during a real-world audit, and gain clarity on the legal nuances involved.
• Strategic Planning Considerations: Get a handle on the critical elements in your planning process, including strategizing for outages, navigating approval timelines, and managing procurement effectively.
• Implementation Strategy: Learn to craft a comprehensive technical strategy, design your solution architecture, and implement these security controls successfully.
• Compliance Maintenance and Reporting: Understand how to maintain compliance over time and effectively and efficiently collect robust evidence for audits and reporting

About our presenters:

• Steven Parker, President & Chairman of the Board, EnergySec. Steven, a CISA, CISSP, and founding director of EnergySec, has been involved in critical infrastructure protection within the electric sector for more than 14 years. This includes eight years as a senior security staff member at a large west coast utility and time as one of the original NERC CIP auditors for the WECC region. EnergySec under his leadership has developed robust relationships across the electric sector, connecting with utilities of all sizes, numerous industry vendors, government agencies, state regulators, national labs, and multiple trade organizations.
• Kyle Hussey, VP of Critical Infrastructure Protection, TDi Technologies. With two decades of experience in IT/OT business solutions and a 12-year tenure in various roles such as cybersecurity architect, engineer, auditor, and manager, Kyle brings a wealth of expertise to this discussion. As a leader at TDi Technologies, the company behind ConsoleWorks, a premier cybersecurity and operations platform for Privileged Access Users, Kyle will breakdown a solutions-oriented approach to the new NERC CIP requirements that aligns technical, operational and business objectives.
• Aaron Crow, CTO, Industrial Defender. Aaron has over 25 years’ experience working in IT and cybersecurity, with more than 15 of those focused on critical infrastructure and power utilities. He has worked hands-on to secure industrial environments at energy and utility organizations, building out multiple, large scale OT cybersecurity programs that reached across hundreds of sites, multiple states and different entities. Aaron brings valuable industry knowledge from his time as an asset owner and as a consultant advising and guiding large multiyear programs.
  

This webinar is a great opportunity to equip yourself with the knowledge and strategies needed to address the NERC CIP-003-9 requirements with confidence and efficacy.