2012 - Users Conference - San Francisco
Have You Done Enough for Cyber Security?
Security assurance for information and control systems is a rising global concern. This presentation will start with a demonstration of Metasploit to highlight modern security testing and illustrate common cyber attack patterns. We will follow with a discussion of related network architecture and Active Directory considerations for the PI System. Practices for DMZ network segregation between corporate information and automation networks will be emphasized. In addition, the discussion will include a comparison of single sign-on approaches. While there may not be a one-size-fits-all approach, we will offer recommendations based on using Active Directory to secure access to the PI System.
Bryan Owen is a PI System veteran with more than thirty years of experience on advanced process control and information systems. Bryan manages the cyber security development lifecycle for OSIsoft. Now more than ever, cyber security for us is about protecting critical infrastructure. OSIsoft developers work closely with Idaho National Lab, Microsoft and other industry security leaders. He is Microsoft-certified and a State of Washington Professional Engineer holding a B.S.Ch.E from Oregon State University.
Joel Langill has worked for nearly thirty years exclusively in the industrial automation and control industry. His expertise was developed through in-depth, comprehensive industrial control systems architecture, product development, implementation and system migration in a variety of roles covering manufacturing of consumer products, oil and gas including petroleum refining, automation solution sales and development and system engineering.