​MRO Security Advisory Council-sponsored webinars are listed below. Click the webinar link to access detailed information about the event.  
  
  
Notes
10/31/2018MRO SAC Webinar Physical Perimeter Hardening in the Electric Sector
(Upcoming) MRO Security Advisory Council (SAC) is pleased to announce that it is hosting a webinar on Physical Perimeter Hardening in the Electric Sector. This presentation is a high level look at perimeter physical security planning and products. Discussed will be Site Planning, Layers of Security (Standoff Blast Mitigation) as well as four principles of security (Deny, Deter, Delay, Detect). Presenters will cover the old DOS Ratings (K-Ratings) as well as the origin of the new United States Army Corp of Engineers ASTM 2656-07 standards. A brief look at vehicle and personnel access control as well as a look at options pertaining to perimeter active and passive barriers.
During the webinar presenters will offer lessons learned surrounding implementation of physical hardening.  Beyond vulnerability risk assessments, accounting for design limitations and partnership with stakeholders such as local ordinances and operational requirements while looking for creative solutions.  Partners such as AMICO will review a robust set of solutions, because there is not a one size fits all nor should it, if your mitigation is to be successful. 
8/29/2018MRO SAC Webinar Secure SCADA Protocol for the 21st Century (SSP-21)
(Recorded) MRO Security Advisory Council (SAC) is pleased to announce that it will be hosting a webinar on Secure SCADA Protocol for the 21st Century (SSP-21). The Secure SCADA Protocol for the 21st century (SSP-21) offers network operators the promise of secure communications facilities, even in environments with varying reliability, latency and bandwidth limitations. In this webinar we will introduce SSP-21, and discuss the problem space addressed by this innovative protocol. We will cover the current state of SSP-21 and look ahead to proposed future developments. Finally, we will discuss a new effort funded by the Department of Energy Office of Electrical Delivery and Energy Reliability (DOE OE) that looks to leverage Lawrence Livermore Nationals Laboratories extensive experience with modelling and simulation to provide an independent verification and validation of SSP-21’s operational capabilities.
8/22/2018MRO SAC Webinar Lessons Learned from FERC-Led CIP Reliability Audits
(Not Recorded) MRO Security Advisory Council (SAC) is pleased to announce that it will be hosting a webinar on Lessons Learned from FERC-LED CIP Reliability Audits. David DeFalaise, will provide further insight of the Lessons Learned from FERC-Led CIP Reliability Audits and the 2017 Commission staff report on lessons learned from those audits. In addition, an update about the plan for future FERC-Led CIP reliability audits will be provided. There will be time allocated at the end of the webinar for detailed Q&A. To aid in the preparation of questions you can review the 2017 Commission staff report located here:  https://www.ferc.gov/legal/staff-reports/2017/10-06-17-CIP-audits-report.pdf
5/8/2018GridEx Lessons Learned
(Recorded) This webinar provides lessons learned from the North American Electric Reliability Corporation’s biennial grid security exercise GridEx. GridEx is designed to simulate a cyber/physical attack on electric and other critical infrastructures across North America. This hour-long webinar will be presented by representatives from a diverse group of entities, including a small vertically-integrated utility (Lincoln Electric System), a Regional Transmission Organization (Southwest Power Pool) and two government agencies (Department of Homeland Security and North Dakota Emergency Services).
10/30/2017Physical Security Assessment
(Recorded- please email estee.kolles@mro.net for link) This webinar provided an in depth look at the DHS IST tool and a brief overview of a similar tool used by Public Safety Canada.
9/6/2017Intelligence 101: Establishing and Maturing an Effective Threat Intelligence Program
(Recorded) This webinar provides a common understanding of security and risk intelligence, discusses the foundational aspects of an intelligence program, and explores use cases that can be implemented to establish or mature intelligence functions without requiring complex projects or expensive feeds.
8/29/2017GridEx IV: Benefits of Participation
(Recorded) This webinar offers guidance on utility company participation in NERC's biennial grid security exercise, GridEx IV. GridEx provides an opportunity for utilities to demonstrate their abilities to respond and recover from a simulated coordinated cyber and physical attack on the bulk electric system.
6/2/2017Exploring the Unknown ICS Landscape
(Not Recorded) This webinar will be a discussion regarding unique research on industrial control system soft-ware, malware, and the consequences of poor operations security. The premise for this project is the belief that there is a wealth of information surrounding Industrial Control Systems that is unrec-ognized by the traditional IT cybersecurity industry. Robert M. Lee will walk through proven methodology, and show real-world findings and conclusions of what this means in our space.