Industrial control systems virtual meeting to take place April 26-27

The Industrial Control Systems Joint Working Group (ICSJWG) will hold its Spring 2022 Virtual Meeting on April 26–27.

ICSJWG meetings facilitate relationship-building among critical infrastructure stakeholders and owners/operators of industrial control systems, idea exchanges regarding critical issues affecting industrial control systems (ICS) cybersecurity, and information sharing to reduce the security risk to industrial control systems.

The ICSJWG Spring 2022 Virtual Meeting will feature two full days of presentations, technical workshop presentations, and an ICS Training overview of Cyber-CHAMP. Meeting highlights include:

The 2022 Spring Meeting kicks off on April 26, 2022, with an overview by Nitin Natarajan, Deputy Director of CISA, covering current CISA initiatives to collaborate with our private partners in “Public & Private Partnerships in ICS – A Unified Effort.” The day then continues with an agenda filled with informative presentations.
A ‘Capture the Flag’ activity is available from Saturday, April 23, starting at 10 a.m., through noon on Wednesday, April 27. The CTF exposes analysts to hunting across ICS networks for malicious behavior, with puzzles appropriate for beginners and experienced analysts. Challenges include artifacts generated from IT/OT host forensic data, network data (from both Bro logs and PCAP), and OT equipment actively exploited by a threat actor.
The CISA ICS Training updated overview will be provided on April 27. The Cyber-CHAMP model has been created to help both IT and OT practitioners by synthesizing industry standards such as the NICE NIST Cybersecurity Workforce Framework.
The Technical Workshop returns April 27 with presentation topics, including Case Studies of Cyber Attack Precursors in the OT Environment, Ransomware Considerations for OT Environments, and ATT&CK in the CELR.

ICSJWG meetings are open to all interested and are free for all attendees. Visit the ICSJWG website or the ICSJWG Spring 2022 Virtual Meeting website to register or learn more.

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe.

In today's rapidly evolving security landscape, organizations face an ever-growing array of disruptive events, security threats and risks. Traditional reactive approaches to security intelligence often leave businesses vulnerable and ill-prepared to anticipate and mitigate emerging threats that could impact the safety of their people, facilities or operations.