The challenge with industrial cyber security is no longer about convincing stakeholders they need to be concerned – cyber security is now a mainstream topic. While as of 2013 a majority of firms have held breaches at bay, there is recognition among executives that more must be done. Companies can best address cyber security through collaboration – especially from lessons learned across your community of interest. This presentation will briefly highlight insight garnered from OSIsoft customers and trusted advisors with emphasis on what you can do next to learn more.
Bryan Owen is the cyber security manager for OSIsoft LLC. Bryan first helped pioneer use of the Pl System for plant optimization across a large integrated facility in 1985. His career at OSIsoft started in 1996 as an application engineer performing field services. He travelled globally to commission new systems and fleet wide deployment for driving enhanced decision support capability based on real time information. This was ‘big data’ for industry in an age before the buzz word was cool. Bryan later managed OSIsoft engineering services for the Oceania region before returning the United States to focus full time on cyber security. Company direction on industrial cyber security was forged through research with Idaho National Lab (INL) in 2005 under Bryan’s leadership. INL resources delivered advanced cyber security training and follow up engagements that led to formation of our own software security team. Similarly, a close partnership with Microsoft helped bootstrap formal security development lifecycle process and practices at OSIsoft. Bryan is Microsoft certified and a State of Washington Professional Engineer holding a Bachelor of Science in Chemical Engineering from Oregon State University (1981). His cyber security outreach activities include the American Fuel & Petrochemical Manufacturers cyber security committee, US Department of Homeland Security Industrial Control System Joint Working Group, and International Society of Automation standards initiatives. He also works to advance the industrial security research community and participates in defensive efforts such as Microsoft BlueHat. Bryan is active with social media and publishes a blog on PI system security for the greater OSIsoft community. In recognition that traditional cyber defenses are no longer adequate for today’s threat environment, the OSIsoft security theme for 2013 is about assisting you with ‘New Technologies for Cyber Security’. These topics will be highlighted during the day 0 events, presented in depth at the theme session on day 1, and reinforced in a hands-on PI System Security Workshop held on product evaluation day.