Waterfall Webinars

Waterfall Webinars

Upcoming webinars and other online events

Future-Proofing Your Security Programs

Webinar Language: English

Speaker: Michael Firstenberg

Date/Time: Wednesday, July 15th, 12:00 pm CDT 

Register Free: Click Here

Abstract: Cyber attacks on industrial sites continue to become more sophisticated, with more serious physical consequences. Yesterday’s nation-state tools and techniques have been incorporated into today’s targeted ransomware, and today’s most sophisticated attacks will be tomorrow’s pervasive threat environment.

The industry world-wide is responding to this steadily-worsening threat environment with sharp increases in the strength of cyber-defensive postures. But – a security program based on constant change “to stay ahead of the bad guys” is a very expensive program, with limited effectiveness. And far too many enterprises confuse detective measures with preventive ones.

This presentation looks at the current threat environment and how it is evolving, explores principles of cyber security that will stand the test of time, and explores use cases where production sites have exploited these principles to deploy “future-proof” their security programs.

Click here for more details>>

Eight Common OT / Industrial Firewall Mistakes

Webinar Language: English

Speaker: Michael Firstenberg

Date/Time: Tuesday, July 21st, 10:30 AM EDT 

Register Free: Click Here

Abstract: Firewalls are easy to misconfigure. While the security consequences of such errors may be acceptable for some firewalls, the accumulated risks of misconfigured firewalls in a defense-in-depth OT network architecture are generally unacceptable. We explore eight common mistakes that firewall administrators make and describe how these mistakes can compromise ICS network security. The lesson here though is not stop making mistakes. The lesson is to choose appropriate technology for the need. We explore technology alternatives to OT firewalls that eliminate the potential for online attacks as a result of misconfiguration.

Click here for more details>>

Previous webinars

Addressing Cyber-Security Risks for Rail

Webinar Language: English

Speaker: Jesus Molina

Date/Time: Tuesday, June 30th, 11:00-12:00 EDT

Register: Click Here

Abstract: Join this free webinar to hear from rail industry experts about how the rail sector is reacting to challenges around cyber-security, and how advances in digital solutions and innovative technology can deliver robust cyber-security measures. 

During the webinar, experts will discuss:

– The main technological barriers regarding cyber-security

– What is the most effective cyber ‘attitude’ for an organization?

– Learning best-practice from other industries and their cyber-security approach

– Learning from previous cyber-attacks to have impacted rail.

– How advances in digital solutions and innovative technology can deliver robust cyber-security measures

About the Speaker: Jesus Molina is Waterfall’s Director of Industrial IoT. He is a security expert for the Industrial IoT with years of experience in both OT and IT security and also co-leads the Security Working Group at the Industrial Internet Consortium.

Mr. Molina started developing firmware attacks, worked in Trusted Computing and developed several patents on hardware-based intrusion detections and authentication. He published many research and articles (1732 citations and counting) and opened a consulting company working on offensive security, including kill switches for smart meters, building security infrastructure, IoT security and IIoT security, and co-organized the IoT Sandbox at the RSA conference. His research has been echoed by many publications, including Wired and The Register.

Currently focusing on manufacturing, rail and aviation OT/IT integration, Jesus holds a M.S. and a Ph.D from the University of Maryland.

What Cybersecurity Lessons Can Physical Security Learn From Industrial Control Systems?

Webinar Language: English

Speaker: Michael Firstenberg

Date/Time: Wednesday, June 17th, 9:05 am – 9:45 am Singapore Time (SGT)

Register: Click Here

Abstract: Over the past two decades, there has been a significant shift in the world of Industrial Control Systems. We have seen the migration from proprietary communications over isolated networks towards standards-based IT protocols running over connected enterprises. In the world of ICS, we quickly learned that this shift left our systems exposed to cyberattack from the entire gamut of threat actors. It is vital that we embark on an information sharing campaign today in order to avoid the stumbling blocks and flawed assumptions that led to misplaced resource deployments, extended implementation timelines, and failed execution that others have already been through. Together, we can learn from past endeavours in similar technological fields as we work towards true unified security.

Join this session as we explore the cybersecurity ramifications of network connected cyber-physical systems. Armed with the understanding of the history of cybersecurity for Industrial Control Systems, we will explore effective strategies and classes of technology that will help reduce exposure and cyber-risk for Physical Security and Building Automation systems as we continue through the path of the connected

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

For Information Technology (IT) networks, intrusion detection and security monitoring are mature disciplines. These monitoring and information management systems reach nearly 100% of endpoints, as well as the network devices connecting those endpoints. These disciplines are much less mature on Industrial Control System (ICS) and Operations Technology (OT) networks, currently reaching only a fraction of the devices on these networks in most industrial enterprises. This is a problem because much of the equipment in ICS/OT networks is arguably among the most important equipment in these enterprises – lack of visibility into the security and compliance status of industrial equipment is increasingly seen as unacceptable.

Recent innovations in industrial intrusion detection, unidirectional communications technology and SIEM capabilities are changing this situation. Increasingly, many kinds of industrial enterprises are safely extending intrusion detection and monitoring capabilities to all endpoints in the enterprise, even endpoints deep within industrial control system networks. A new “golden age” of security monitoring for industrial enterprises is dawning. This webinar reviews the industrial security monitoring problem, describes current trends, and demonstrates how these trends are combining into a new “gold standard” for universal industrial security monitoring.

 

Waterfall Security Solutions recently participated in Softprom’s first ever 3D virtual conference. Watch the video below to see how events in the industrial security wold have adapted to the new normal. In addition to a virtual booth – Waterfall’s VP Industrial Security, Andrew Ginter, presented live on “The Top 20 Cyber Attacks on ICS” and Director of Industrial Security, Michael Firstenberg spoke on “8 OT Firewall Mistakes”.

Despite necessary travel restrictions and social distancing mandates, Waterfall continues to find new ways connect with the industrial security community through webinars, virtual events, online training programs, virtual meetings, remote podcasts and more.

Follow Waterfall Security Solutions on LinkedIn, Twitter and Facebook to stay up to date on future educational opportunities and events.

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

In these challenging times of quarantines and travel restrictions, remote access has become vitally important to industrial sites.

Legacy remote access systems, such as VPNs, jump hosts and two-factor authentications systems, are problematic however, because they introduce unacceptable risks to physical operations. In this webinar, we review common attack patterns for these software-only technologies. We then compare these legacy technologies to modern, unidirectional remote access systems.

That unidirectional gateway technology can support remote access at all is a surprise to many practitioners, even more so that there are many different kinds of such remote access systems in widespread use. Register now to explore how the world’s most secure industrial enterprises use modern, hardware-enforced unidirectional solutions for remote access to their industrial operations.

What Do Really Secure OT / ICS Sites Do Differently? Webinar

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.

Webinar Language: Japanese

Speakers: Takumi Miki & Elisha Olivestone

Click here to watch the full recording

A  webinar hosted by Terilogy Co., Ltd, Nozomi Networks and Waterfall Security on OT / ICS cybersecurity. The webinar explores powerful new tools for securing industrial and manufacturing networks: Nozomi Guardian and Waterfall Unidirectional Gateways.

Webinar Language: English

Speaker: Andrew Ginter

Click here to watch the full recording

Recording of the live EnergySec webinar – Failures of Imagination: Smart Grid Threats and Modern Mitigations with industrial security expert Andrew Ginter