Hi [[ session.user.profile.firstName ]]

A Risk-Based Approach to Bridging the Energy Sector Security Gap

NERC has recently partnered with the Department of Energy (DOE) to expand the Cybersecurity Risk Information Sharing Program (CRISP) to include operational technology. The program is aimed at protecting the security of the North American high voltage electric grid. However, NERC’s regulations are not expansive enough to fully prepare organizations to manage and mitigate the cyber and operational risks that come with the migration to new digital operational technology.

In this session, experts from ServiceNow and Iceberg Networks will discuss how organizations can protect themselves and mitigate disruptions to their critical services using the ServiceNow platform. You will also learn how to take a risk-based approach to mature your cyber and operational resilience programs.

What you will learn in this session:
- How organizations can minimize risk or avoid disruption of operations with a mature operational resilience program
- How to prioritize which vulnerabilities pose the greatest threat and how to prioritize and plan for remediation
- How to address the compliance hurdle that comes with new regulations to close these security gaps
- How ServiceNow can bridge the risk and security gap of digital OT devices

Hear from our subject matter experts:
Mitch Blackburn, Global Head of Energy & Utilities Industry Solutions, ServiceNow
Michael DeLoach, Solution Consultant, Iceberg Networks
Live online Jun 30 6:00 pm UTC
or after on demand 30 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Mitch Blackburn, ServiceNow; Michael DeLoach, Iceberg Networks
Presentation preview: A Risk-Based Approach to Bridging the Energy Sector Security Gap

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • A Risk-Based Approach to Bridging the Energy Sector Security Gap Jun 30 2021 6:00 pm UTC 30 mins
    Mitch Blackburn, ServiceNow; Michael DeLoach, Iceberg Networks
    NERC has recently partnered with the Department of Energy (DOE) to expand the Cybersecurity Risk Information Sharing Program (CRISP) to include operational technology. The program is aimed at protecting the security of the North American high voltage electric grid. However, NERC’s regulations are not expansive enough to fully prepare organizations to manage and mitigate the cyber and operational risks that come with the migration to new digital operational technology.

    In this session, experts from ServiceNow and Iceberg Networks will discuss how organizations can protect themselves and mitigate disruptions to their critical services using the ServiceNow platform. You will also learn how to take a risk-based approach to mature your cyber and operational resilience programs.

    What you will learn in this session:
    - How organizations can minimize risk or avoid disruption of operations with a mature operational resilience program
    - How to prioritize which vulnerabilities pose the greatest threat and how to prioritize and plan for remediation
    - How to address the compliance hurdle that comes with new regulations to close these security gaps
    - How ServiceNow can bridge the risk and security gap of digital OT devices

    Hear from our subject matter experts:
    Mitch Blackburn, Global Head of Energy & Utilities Industry Solutions, ServiceNow
    Michael DeLoach, Solution Consultant, Iceberg Networks
  • Basel Releases Principles for Operational Resilience and Operational Risk Recorded: May 5 2021 34 mins
    Michael Murphy, ServiceNow and Andrew Vesay, Iceberg Networks
    Learn about the implications and how Iceberg Networks and ServiceNow are helping firms manage risk and resilience in real time.

    In the era of pandemics, geopolitical unrest, and post-pandemic economic changes “How do we become a more resilient enterprise” is the discussion on the minds of executives across all avenues of business. This conversation has been accelerated in the financial services space with the recent release of the Basel committee guidance on Operational Resilience and Operational Risk (March 2021).

    Even if your organization doesn’t fall under the purview of Basel the principles remain applicable across jurisdictions, industries, and geographies.

    In this session we will look at the implications of Basel guidance on the following:
    • Building an ‘active’ operational resilience framework
    • Using indicators across your environment to monitor risk and resilience
    • Monitoring for macro level risk while surfacing micro level issues before they become real problems
    • Strategies for setting and adjusting risk tolerances
    • Turning your dashboards into an actionable navigation tool versus a static report

    Operational resilience is the outcome of sound risk management practices. Learn how resilient organizations manage risk and resilience by taking an end-to-end view of critical business across the enterprise. A critical component is the ability to anticipate potential operational disruptions and take actions to prevent, respond, and adapt.

    In a truly resilient enterprise, key risk indicators and scorecards are updated automatically in near real time. Risk reporting is driven by continuous monitoring of risk and controls with workflows against your established risk appetite and tolerances. The result is when risk indicators are flagged on your scorecard meaningful action is taken.

    Speakers: Michael Murphy, Global Solution Senior Director, Financial Services Compliance, ServiceNow and Andrew Vesay, Chief Strategy Officer, Iceberg Networks
  • The Vulnerability Response Management Journey Recorded: Apr 14 2021 7 mins
    Iceberg Networks
    In this video, we will show you how Iceberg Networks can guide your organization through the solid foundations of your vulnerability response journey in just 8 weeks. Through this scalable process, we will show you how to identify the information that you can trust to prioritize your vulnerability response. With the help of the ServiceNow Security Operations platform, we will enhance the information available to you, automate workflows and populate dashboards with the answers to the most prominent questions that affect the security of your organization.
  • The Future of Cyber: Maturing your Cyber Program over the Life of your Business Recorded: Mar 31 2021 52 mins
    Kirk Hogan, CIO Practice Lead Security Operations, Iceberg Networks; Bill Vollono, Enterprise Sales Engineer, Recorded Future
    The impact from the global pandemic has shed a light on the challenges that remote working has placed on organizations of all sizes globally. While the threats tied to remote work are not new, the challenge has been scaled greatly as organizations have sent the majority of their workforce to work from home and threat actors look for opportunity in the organizations who have not had the chance to ramp up their cyber programs. This particular challenge has garnered the attention of senior leadership, which presents a unique opportunity for security teams to highlight how critical it is to mature their cyber program now.

    Join us to learn:
    • Why your cyber program should be informed by threat.
    • How to choose which areas of your business to protect first.
    • How to make smart security investments that are aligned with business priorities and generate optimal results from your cyber program.
    • Why security teams will need to pivot their strategy over the life of their business to ensure a successful cyber program and how you can apply these strategies.
    • Why generating reports is ineffective and how to effectively measure your cyber program.
    • How to increase your risk and security intelligence to make more confident decisions and provide trustworthy information to the board and executives.
  • Why Taking a Risk-Based Approach to your Cybersecurity is paramount today Recorded: Mar 9 2021 53 mins
    Brenda Deugo, Consultant - Iceberg Networks and Karl Klaessig, ServiceNow
    COVID-19 is exponentially changing and propelling organizations into new business models – where digital transformation of further business processes, employees increasingly working remotely and increased cyber threats are forcing CISO’s and security leaders to mature their cyber and security programs quickly.

    We will discuss how taking a more mature and programmatic approach to a cyber risk management program will align IT with the business and as a result:
    - Gain leadership trust and buy-in for security programs
    - Give the board confidence that we are prepared for a security event and we can prevent or minimize the impact
    - Effectively communicate the business impact of the cyber risk management program to non-technical leadership
    - Prioritize which vulnerabilities pose the greatest threat to the business and how to prioritize and plan for remediation
    - Demonstrate the return on investment that a mature cyber risk management program delivers to the organization
  • Ask the Expert: How can we justify investing further in our cyber program? Recorded: Mar 4 2021 6 mins
    Kirk Hogan, CIO, Practice Lead, Security Operations, Iceberg Networks; Bill Vollono, Sales Engineer, Recorded Future
    Kirk Hogan, CIO and Practice Lead, Security Operations at Iceberg Networks and Bill Vollono, Sales Engineer at Recorded Future sat down to answer more questions about how organizations should evaluate their cyber risk programs.
  • Ask the Expert: Why is it critical that organization mature their cyber risk pro Recorded: Mar 4 2021 5 mins
    Kirk Hogan, CIO, Practice Lead, Security Operations, Iceberg Networks; Bill Vollono, Sales Engineer, Recorded Future
    Kirk Hogan, CIO and Practice Lead, Security Operations at Iceberg Networks and Bill Vollono, Sales Engineer at Recorded Future sat down to discuss how the pandemic is having an effect on cyber risk programs.
  • Managing Risk through Digital Transformation Recorded: Dec 4 2019 39 mins
    Ken McPherson, CEO, Iceberg Networks
    Calculated risk-taking is and has always been at the essence of business growth and the route to success. Rich opportunities in Digital Transformation have tempted many organizations to circumvent to their GRC program and rush into Digital Transformation projects without a clear picture of the new risks they are taking on, or without the controls needed to manage those risks. Having a strong governance, risk and compliance (GRC) program is the right tool for managing non-financial and compliance risk through digital transformation.
Discover the latest talks and videos on Risk & Security Intelligence
Iceberg Networks helps organizations make more confident and effective business decisions. We plan, deploy, and manage successful programs for Integrated Risk Management (IRM), providing organizations the framework to achieve trusted, aggregated and transparent risk & security intelligence.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: A Risk-Based Approach to Bridging the Energy Sector Security Gap
  • Live at: Jun 30 2021 6:00 pm
  • Presented by: Mitch Blackburn, ServiceNow; Michael DeLoach, Iceberg Networks
  • From:
Your email has been sent.
or close