English
Français
Español
Deutsch
日本語
한국어
中文
Upcoming webinars and other online events
August 18 & 20, 2020 | Waterfall Global Webinar – 3 Advanced Methodologies For Cyber Risk In Power Generation
Webinar Language: English
Speaker: Andrew Ginter
Dates/Times:
Tuesday, August 18, 13:00 UTC (New York)
Tuesday, August 18, 14:00 CEST (Amsterdam)
Thursday, August 20, 13:00 SGT (Singapore)
August 25 | Smart Transit – Revolutionizing Transit Through Innovation and Digitization
Webinar Language: English
Speaker: Jesus Molina
Date: August 25
Transit agencies across North America are facing similar challenges around increasing capacity and safety, meeting riders’ mobility demands, and keeping up with the rate of digital change
August 26, 2020 | Toshiba – CyberX – Waterfall Security: State-Of-Art OT Security 方向セキュリティゲートウェイ
Webinar Language: Japanese
Speaker: Elisha Olivestone
Date: Wednesday, August 26, 15:00 – 16:30 JST
Previous webinars
July 30, 2020 | MiSi – The Israel Critical Infrastructure Panel
Webinar Language: English
Speaker: Lior Frenkel
July 28, 2020 | Critical Rail Networks in the Age of Digital Transformation
Missed the webinar? Download the Rails OCC eBook >>
July 28, 2020 | The Risk to Our Water Infrastructure from Cyber Hackers
Speaker: Andrew Ginter
Missed the webinar? Click here to request a free copy of Andrew’s Book – Secure Operations Technology >>
July 27, 2020 | IQPC – Re-thinking ICS Security By Upgrading IT/OT Controls, Frameworks And Threat Monitoring For The Digital Age
Re-thinking ICS Security By Upgrading IT/OT Controls, Frameworks And Threat Monitoring For The Digital Age
Missed the webinar?
July 21, 2020 | SANS Webcasts – Eight Common OT / Industrial Firewall Mistakes
Eight Common OT / Industrial Firewall Mistakes
Click here to watch the full recording >>
Speaker: Michael Firstenberg
Abstract: Firewalls are easy to misconfigure. While the security consequences of such errors may be acceptable for some firewalls, the accumulated risks of misconfigured firewalls in a defense-in-depth OT network architecture are generally unacceptable. We explore eight common mistakes that firewall administrators make and describe how these mistakes can compromise ICS network security. The lesson here though is not stop making mistakes. The lesson is to choose appropriate technology for the need. We explore technology alternatives to OT firewalls that eliminate the potential for online attacks as a result of misconfiguration.
June 15, 2020 | OilComm – Future-Proofing Your Security Programs
Future-Proofing Your Security Programs
Speaker: Michael Firstenberg
Abstract: Cyber attacks on industrial sites continue to become more sophisticated, with more serious physical consequences. Yesterday’s nation-state tools and techniques have been incorporated into today’s targeted ransomware, and today’s most sophisticated attacks will be tomorrow’s pervasive threat environment.
The industry world-wide is responding to this steadily-worsening threat environment with sharp increases in the strength of cyber-defensive postures. But – a security program based on constant change “to stay ahead of the bad guys” is a very expensive program, with limited effectiveness. And far too many enterprises confuse detective measures with preventive ones.
This presentation looks at the current threat environment and how it is evolving, explores principles of cyber security that will stand the test of time, and explores use cases where production sites have exploited these principles to deploy “future-proof” their security programs.
June 30, 2020 | Global Railway Review
Addressing Cyber-Security Risks for Rail
Click here to download the Rails OCC eBook
Speaker: Jesus Molina
Abstract: Join this free webinar to hear from rail industry experts about how the rail sector is reacting to challenges around cyber-security, and how advances in digital solutions and innovative technology can deliver robust cyber-security measures.
During the webinar, experts will discuss:
– The main technological barriers regarding cyber-security
– What is the most effective cyber ‘attitude’ for an organization?
– Learning best-practice from other industries and their cyber-security approach
– Learning from previous cyber-attacks to have impacted rail.
– How advances in digital solutions and innovative technology can deliver robust cyber-security measures
About the Speaker: Jesus Molina is Waterfall’s Director of Industrial IoT. He is a security expert for the Industrial IoT with years of experience in both OT and IT security and also co-leads the Security Working Group at the Industrial Internet Consortium.
Mr. Molina started developing firmware attacks, worked in Trusted Computing and developed several patents on hardware-based intrusion detections and authentication. He published many research and articles (1732 citations and counting) and opened a consulting company working on offensive security, including kill switches for smart meters, building security infrastructure, IoT security and IIoT security, and co-organized the IoT Sandbox at the RSA conference. His research has been echoed by many publications, including Wired and The Register.
Currently focusing on manufacturing, rail and aviation OT/IT integration, Jesus holds a M.S. and a Ph.D from the University of Maryland.
June 17, 2020 | What Cybersecurity Lessons Can Physical Security Learn From Industrial Control Systems?
What Cybersecurity Lessons Can Physical Security Learn From Industrial Control Systems?
Speaker: Michael Firstenberg
Abstract: Over the past two decades, there has been a significant shift in the world of Industrial Control Systems. We have seen the migration from proprietary communications over isolated networks towards standards-based IT protocols running over connected enterprises. In the world of ICS, we quickly learned that this shift left our systems exposed to cyberattack from the entire gamut of threat actors. It is vital that we embark on an information sharing campaign today in order to avoid the stumbling blocks and flawed assumptions that led to misplaced resource deployments, extended implementation timelines, and failed execution that others have already been through. Together, we can learn from past endeavours in similar technological fields as we work towards true unified security.
Join this session as we explore the cybersecurity ramifications of network connected cyber-physical systems. Armed with the understanding of the history of cybersecurity for Industrial Control Systems, we will explore effective strategies and classes of technology that will help reduce exposure and cyber-risk for Physical Security and Building Automation systems as we continue through the path of the connected
June 3, 2020 | What Do Really Secure OT / ICS Sites Do Differently? Webinar (APAC)
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.
May 28, 2020 | What Do Really Secure OT / ICS Sites Do Differently? Webinar (EMEA)
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.
May 14, 2020 | SANS Webinar: Is OT security monitoring safe?
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
For Information Technology (IT) networks, intrusion detection and security monitoring are mature disciplines. These monitoring and information management systems reach nearly 100% of endpoints, as well as the network devices connecting those endpoints. These disciplines are much less mature on Industrial Control System (ICS) and Operations Technology (OT) networks, currently reaching only a fraction of the devices on these networks in most industrial enterprises. This is a problem because much of the equipment in ICS/OT networks is arguably among the most important equipment in these enterprises – lack of visibility into the security and compliance status of industrial equipment is increasingly seen as unacceptable.
Recent innovations in industrial intrusion detection, unidirectional communications technology and SIEM capabilities are changing this situation. Increasingly, many kinds of industrial enterprises are safely extending intrusion detection and monitoring capabilities to all endpoints in the enterprise, even endpoints deep within industrial control system networks. A new “golden age” of security monitoring for industrial enterprises is dawning. This webinar reviews the industrial security monitoring problem, describes current trends, and demonstrates how these trends are combining into a new “gold standard” for universal industrial security monitoring.
May 13-14, 2020 | 3DVirtualTechFair / Softprom
Waterfall Security Solutions recently participated in Softprom’s first ever 3D virtual conference. Watch the video below to see how events in the industrial security wold have adapted to the new normal. In addition to a virtual booth – Waterfall’s VP Industrial Security, Andrew Ginter, presented live on “The Top 20 Cyber Attacks on ICS” and Director of Industrial Security, Michael Firstenberg spoke on “8 OT Firewall Mistakes”.
Despite necessary travel restrictions and social distancing mandates, Waterfall continues to find new ways connect with the industrial security community through webinars, virtual events, online training programs, virtual meetings, remote podcasts and more.
Follow Waterfall Security Solutions on LinkedIn, Twitter and Facebook to stay up to date on future educational opportunities and events.
May 05, 2020 | SecurityWeek Webinar: Unidirectional Remote Access
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
In these challenging times of quarantines and travel restrictions, remote access has become vitally important to industrial sites.
Legacy remote access systems, such as VPNs, jump hosts and two-factor authentications systems, are problematic however, because they introduce unacceptable risks to physical operations. In this webinar, we review common attack patterns for these software-only technologies. We then compare these legacy technologies to modern, unidirectional remote access systems.
That unidirectional gateway technology can support remote access at all is a surprise to many practitioners, even more so that there are many different kinds of such remote access systems in widespread use. Register now to explore how the world’s most secure industrial enterprises use modern, hardware-enforced unidirectional solutions for remote access to their industrial operations.
April 30, 2020 | What Do Really Secure OT / ICS Sites Do Differently?
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
This webinar reviews what the world’s most secure industrial sites do differently – they ask different questions, they get different answers, and they apply those answers to produce very different security program designs. Given the steadily worsening threat environment, it seems clear that we all need to start exploring and deploying at least some of the cybersecurity approaches and designs that are commonplace at thoroughly-secured operations.
April 20, 2020 | Terilogy Webinar: OT / ICS Cybersecurity
Webinar Language: Japanese
Speakers: Takumi Miki & Elisha Olivestone
Click here to watch the full recording
A webinar hosted by Terilogy Co., Ltd, Nozomi Networks and Waterfall Security on OT / ICS cybersecurity. The webinar explores powerful new tools for securing industrial and manufacturing networks: Nozomi Guardian and Waterfall Unidirectional Gateways.
April 7, 2020 | EnergySec Webinar: Failures of Imagination: Smart Grid Threats and Modern Mitigations
Webinar Language: English
Speaker: Andrew Ginter
Click here to watch the full recording
Recording of the live EnergySec webinar – Failures of Imagination: Smart Grid Threats and Modern Mitigations with industrial security expert Andrew Ginter
- Ransomware Goes Nuclear – James McQuiggan | Episode #40 - July 27, 2020
- 8 Common Firewall Mistakes Webinar Recording- SANS Webinar - July 23, 2020
- IIoT for Distributed Energy Resources – James McCarthy & Don Faatz | Episode #39 - July 13, 2020