|MRO Security Advisory Council to Host Upcoming Webinar Enhancing Resiliency via Federated Real-time Secure Messaging|
MRO Security Advisory Council (SAC) is pleased to announce that it is hosting a webinar on encrypting messaging. After recommending utilities adopt encrypted messaging in 2014, the E-ISAC published their must-have capabilities to help members evaluate a secure messenger. Soon after the peer-based Cyber Threat Intelligence Group published their own set of requirements with a more technical focus.
In 2017, the E-ISAC selected ArmorText secure messaging for its ability to satisfy both the E-ISAC’s requirements and the CTIG’s security requirements while also providing an industry-first federation capability.
The E-ISAC is now offering federated Trust Relationships among its asset owner and operator members for truly secure real time information exchange and incident response coordination.
Join the CEO of ArmorText, Navroop Mitter as he discusses why this initiative is so timely and why real time federation with organizations like the E-ISAC is more important to energy security than ever before.
|MRO Security Advisory Council to Host Upcoming Webinar Learning from Cyber Security Close Calls|
(Recorded - Please email email@example.com
for the webinar link) MRO Security Advisory Council (SAC) is pleased to announce that it is hosting a webinar on Learning from Cyber Security Close Calls. Our co-workers in safety have well-vetted processes to analyze close calls in order to improve safety. This presentation will discuss taking that concept in conjunction with the Cyber Kill Chain to learn from Cyber Security Close Calls. This presentation will show how we can use such cases to determine what improvements can be made to help detect the attacks earlier in the Cyber Kill Chain. This presentation will also show how a slight modification to a close call could bypass existing security, allowing us to determine what can be done to detect and prevent similar attacks that might come in the future.
It can be unnerving to watch an attack get past security measures designed to protect an organization, but what can be learned from these exercises is invaluable. They can help the entire organization understand the importance of having multiple layers of security and tuning different layers to mitigate weaknesses in others to avoid close calls and successful attacks.
|MRO SAC Webinar Physical Perimeter Hardening in the Electric Sector|
(Recorded) MRO Security Advisory Council (SAC) is pleased to announce that it is hosting a webinar on Physical Perimeter Hardening in the Electric Sector. This presentation is a high level look at perimeter physical security planning and products. Discussed will be Site Planning, Layers of Security (Standoff Blast Mitigation) as well as four principles of security (Deny, Deter, Delay, Detect). Presenters will cover the old DOS Ratings (K-Ratings) as well as the origin of the new United States Army Corp of Engineers ASTM 2656-07 standards. A brief look at vehicle and personnel access control as well as a look at options pertaining to perimeter active and passive barriers.
During the webinar presenters will offer lessons learned surrounding implementation of physical hardening. Beyond vulnerability risk assessments, accounting for design limitations and partnership with stakeholders such as local ordinances and operational requirements while looking for creative solutions. Partners such as AMICO will review a robust set of solutions, because there is not a one size fits all nor should it, if your mitigation is to be successful.
|GridEx IV: Benefits of Participation|
This MRO Security Advisory Council (SAC) sponsored webinar presented on August 29, 2017, offers guidance on utility company participation in NERC's biennial grid security exercise, GridEx IV.
|Intelligence 101: Establishing and Maturing an Effective Threat Intelligence Program|
The MRO Security Advisory Council (SAC) hosted a webinar on September 6, 2017, on establishing and maturing an effective threat intelligence program.
|MRO SAC Webinar Secure SCADA Protocol for the 21st Century (SSP-21)|
The MRO Security Advisory Council (SAC) hosted a webinar on August 29, 2018, regarding a Secure SCADA Protocol for the 21st Century (SSP-21).
|GridEx Lessons Learned Webinar|
This hour-long webinar presented on May 8, 2018, focuses on lessons learned from the North American Electric Reliability Corporation’s biennial grid security exercise, GridEx.
|Best Practices for Self-Reporting|
MRO Principal Risk Assessment & Mitigation Engineer Bill Steiner discusses best practices for Self-Reports.
|MRO's Stakeholder Outreach Video Library|
Video recordings from MRO conferences and events
|MRO CIP Version 5 Webinar June 15, 2016|
MRO Webinar presented on June 15, 2016 regarding entity questions about NERC CIP Standards.
|TFE webCDMS Process Webinar |
MRO webinar presented on March 26, 2015, regarding the webCDMS Revisions Appendix 4D - TFE Process Changes.
|MRO CIP V3 to V5 Webinar|
This webinar provides Registered Entities in the MRO Region with up-to-date information on the transition from version 3 to version 5 of the NERC CIP Standards. Speakers include NERC and MRO staff.