Upload File

osisoft corporate powerpoint template...– 2013/2015 sdl for security champions – 2013/2014/2015...

  • Home
  • Documents
  • OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security
45
REGIONAL SEMINAR

Upload: others

Post on 27-Sep-2020

3 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 2: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 3: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 4: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 5: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Gartner Symposium IT Expo 2015

Page 6: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 7: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

IBM Infographic for IoT and Sensors

Page 8: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 9: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 10: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Requires participation from IT &

OT with full support of

Executives

The PI System serves as the

infrastructure that creates a secure

“bridge” between IT and OT

Page 11: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 12: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 13: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 14: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 15: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 16: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 17: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Restricted Network Plant Information DMZ Business Network

PI, PI3, WCF

. . . . .

. . . .

PI3, WCF

Page 18: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Restricted Network Plant Information DMZ Business Network

PI, PI3, WCF

. . . . .

. . . .

PI3, WCF

PI, PI3PI, PI3

PI3, WCF

Page 19: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 20: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Saudi Aramco Restores Network

After Shamoon Malware Attack

Hacktivist-launched virus takes out 75% of state-

owned oil company’s workstations, signals the

growing power of attackers with social or political

agendas.

Matthew J. Schwartz

Updated: 12:22 p.m. August 27, 2012

Confirmation of a Coordinated Attack

on the Ukrainian Power Grid

After analyzing the information that has been made

available by affected power companies, researchers,

and the media it is clear that cyber attacks were

directly responsible for power outages in Ukraine.

Michael J. Assante, January 9, 2016

Page 21: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

“32% indicated their control system

assets or networks had been

infiltrated or infected at some point”-The State of Security in Control Systems Today, SANS Institute, June 2015

Page 22: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 23: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 24: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 25: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

1. Use Whitelisting Techniques

2. Upgrade Your Software

4. Reduce Your Attack Surface

3. Implement Least Privileges

Page 26: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

All Applications: A, B, C

Blacklist: Allow All, Deny A, C

Whitelist: Deny All, Allow B

All Applications: A, B, C, D, E, F, G, H, I,

J, K, L, M, N, O, P, …

Blacklist: Allow All, Deny A, C, E, F, G, H,

I, J, K, L, M, N, O, P, …

Whitelist: Deny All, Allow B, D

Page 27: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

• Run only approved files

– By user or group

• Rules based on:

– Publisher

– Path

– File hash

• Action modes

– Audit only

– Enforce allow or deny

Page 28: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 29: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

• Idaho National Lab

– 2005 Assessment

– 2008 vCampus Live!

– 2009 vCampus Live!

– 2011 Cooperative Research

– 2012 vCampus Live! “Detect & Defend”

• US Army NetCom

– 2009 CoN #201006618

– 2013 CoN (recertified)

• US NRC

– 2010 DISA, NIST

• SAP QBS Certification

– 2012 Veracode

– 2013 Veracode

• Windows Logo Certification

– 2008 Windows 2008 Server Core

– 2011 Windows 2008 R2 Server Core

– 2012 Windows 2012 Server Core

• Azure Penetration Testing

– 2014 PI Cloud Connect (Utility Partner)

– 2014 PI Cloud Access (IOActive)

• Microsoft Information Security Consulting

– 2009 PI Server

– 2010 PI Agent

– 2011 PI Coresight

– 2011 PI AF

– 2012 PI ProcessBook

– 2012 Products in Design (3)

– 2013 Engineering Management

– 2013 Products in Design (3)

– 2013/2015 SDL for Security Champions

– 2013/2014/2015 Defensive Programming (Cigital)

– 2015 PI Connectors

– 2015 PI Transport Security (IOActive)

– 2015 PI System Security Review

– 2015 Advanced Tools provided by Microsoft

Page 30: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 31: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

https://ics-cert.us-cert.gov/advisories

https://ics-cert.us-cert.gov/advisories
Page 32: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 33: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Only the latest version of software contains

the sum of all development efforts.

Page 34: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 35: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

GUI is add/remove feature as of Windows Server 2012

Eg. Add the management GUI without full desktop:

Install-WindowsFeature -name Server-Gui-Mgmt-Infra

Page 36: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 37: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 38: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Process Read Access Write Access

Interface (No

Output)

PIPoint, PtSecurity None

Interface

(Output)

PIPoint, PtSecurity,

DataSecurity

(output source points)

None

Buffering PIPoint, PtSecurity,

DataSecurity

DataSecurity

Page 39: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 40: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Restricted Network Plant Information DMZ Business Network

PI, PI3, WCF

. . . . .

. . . .

PI3, WCF

PI, PI3PI, PI3

PI3, WCF

Page 41: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 42: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

Page 43: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

OSIsoft Resources

Integrating OT and IT with the Modern PI System

Integrating IIoT Sensors with Industrial Data Ecosystems

PI System Cyber Security Page

KB00994 - Whitelisting with AppLocker

KB01160 – Securing PI Interfaces with Service Hardening

KB01092 - PI System and Data Encryption

Configure PI Security Youtube Playlist

Other Resources

SANS Institute:

The State of Security in Control Systems Today: A SANS Survey

ICS-CERT:

Seven Steps to Defend Industrial Control Systems

NSA:

Application Whitelisting Using Microsoft AppLocker

http://www.osisoft.com/enterprise-intelligence/otit.html
http://www.osisoft.com/enterprise-intelligence/iiot.html
https://techsupport.osisoft.com/Troubleshooting/PI-System-Cyber-Security
https://techsupport.osisoft.com/Troubleshooting/KB/KB00994
https://techsupport.osisoft.com/Troubleshooting/KB/KB01160
https://techsupport.osisoft.com/Troubleshooting/KB/KB01092
https://www.youtube.com/playlist?list=PLMcG1Hs2JbcsDxzkxPbocAKKA3JvRe5Lo
https://www.sans.org/reading-room/whitepapers/analyst/state-security-control-systems-today-36042
https://ics-cert.us-cert.gov/sites/default/files/documents/Seven Steps to Effectively Defend Industrial Control Systems_S508C.pdf
https://www.nsa.gov/ia/_files/app/Application_Whitelisting_Using_Microsoft_AppLocker_FINAL.pdf
Page 44: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR

mailto:[email protected]
mailto:[email protected]
Page 45: OSIsoft Corporate PowerPoint Template...– 2013/2015 SDL for Security Champions – 2013/2014/2015 Defensive Programming (Cigital) – 2015 PI Connectors – 2015 PI Transport Security

REGIONAL SEMINAR


Build community engagement oct 2015 webinar pi updated

G1 -PI Rationament Logic Subiecte 2015

Pi Magazine February 2015

Catalog IK PI 2015, English - Siemens Global Websitew3app.siemens.com/mcms/infocenter/dokumentencenter/sc/ic/Docum… · Catalog IK PI Edition 2015 ... Medium-voltage switchgear and

2015 PI Product Catalog - Embolization · PI-319605-AA 2015 PI Catalog JUN 2015 UPN / Order Code Catalog No. GTIN Total Length (cm) Tip Length (cm) Proximal/ Distal OD (in) Tip Shape

Raspberry Pi Bake Off 2015

Suction Filter Pi 200 - BIBUS7265 Suction Filter Pi 200 up to NG 90 6 8. Technical specifications Design: in-line suction filter Nominal pressure: Pi 2005 - 2011 Pi 2015 - 2045 63

SMK PI NewsLetter oct 2015

Pi pi pi day

Pi Magazine March 2015

Catalog IK PI 2015, English - w3app.siemens.com IK PI · 2015 9 9/2 Abbreviations, ... automatically negotiate a transmission mode ... Message, with which data

Web: Email: info@sisconet · PI ProcessBook PI DataLink PI WebParts PI Coresight PI Data PI Manual Logger Archive PI Interfaces & PI Connectors PI Visualization PI Server PI AF PI

2015 FOR GLOBAL ACTIOn FOR PEOPLE Pi-AnETilo.org/wcmsp5/groups/public/---asia/---ro-bangkok/... · 2015. 2. 20. · 2015 FOR GLOBAL ACTIOn FOR PEOPLE Pi-AnET . Created Date: 2/20/2015

When Mobile Code and Smart Cards Meet: Java Card Security Gary McGraw, Ph.D. Vice President, Corporate Technology Cigital

Analog-to-Dii Cigital Converterskxc104/class/cse577/11s/lec/S08ADC.pdfAnalog-to-Dii Cigital Converters Jaehyun Lim, Kyusun Choi ... High Speed ADC Architecture Pipelined ADC-multi-stage

2015 PI Product Catalog - CTO/Crossing Devices€¦ · PI-319605-AA 2015 PI Catalog JUN 2015 UPN / Order Code Catalog No. GTIN Description Length (cm) Guidewire Diameter (in) Sheath

Buku PI Dan Mentoring UP3AI Unsyiah 2015

NUS-ISS Learning Day 2015 - IoT with Pi

AppSec Current State The Big 5 Activities€¦ · Copyright © 2016, Cigital SANS: Who *tests* app sec? 19 SANS 2015 State of . Title: Please Read Author: Joel Scambray Created Date:

Sarau do PI III 2015 - Literatura de Periferia

PI 24 2017:PI 08 2015 - rssalute.it

SOCOM Army National...(Audio Transcription) for Investigation of the I O March 2015, Class A Accident, UH-60M, 13- 20624, Case No. 20150310 2022 13-20624. PI CEI CE2 PI CE2 PI PI PI

Sarau do PI - Literatura Erótica. Abril/2015

Skema Ps2 Pi t5 2015

PI 27 2018 PI 08 2015 - g18-27

Pi Day MCTM 2015

PI Training July 2015

Java Security Meets Smart Cards Gary McGraw, Ph.D. Vice President, Corporate Technology Cigital

Audi A1 PI 3-doormicrosites.audi.co.za/_assets/pricing/2015/may/a1_model_pricelist.pdf · Audi A1 PI 3-door Audi A1 PI Sportback Price and options list May 2015. 02 Fuel consumption

2015 PI Product Catalog - Guide Catheters · 2015 Peripheral Interventions Product Catalog ... M001197960 19-796 08714729403951 7 55 0.081 RDC 1 C1887 ... 2015 PI Product Catalog

Raspberry Pi Foundation · 2020-05-19 · Raspberry Pi Foundation UK registered charity 1129409. International Collaboration. Tim Peake. Flight Safety Certificate. 2015 Astro Pi Competition

Investigator Responsibility Briefings 8/26/2015 · 2015. 8. 26. · Investigator Responsibility Briefings 8/26/2015 Roster of PIs who have Completed Training PI/Co-PI Name Completion

PI Dashboard - OSP Round Table Dec 2015 · 2019-06-25 · Product Managerfor thePIDashboard. DECEMBER21, 2015. Agenda 2 • PI dashboard background • Purpose ... RA Dashboards

PI Magazine January 2015

PI;m PI;m  · 2019-06-26 · PI;m PI;m . Created Date: 7/15/2015 2:51:32 PM