Presentation is loading. Please wait.

Presentation is loading. Please wait.

2 OVERVIEW Cybersecurity initiative launched in July 2015 to create a trusted environment to address Cybersecurity -- Focus on the security needs of operators.

Published byEthan Copeland Modified over 5 years ago

Similar presentations

Presentation on theme: "2 OVERVIEW Cybersecurity initiative launched in July 2015 to create a trusted environment to address Cybersecurity -- Focus on the security needs of operators."— Presentation transcript:

1 2 OVERVIEW Cybersecurity initiative launched in July 2015 to create a trusted environment to address Cybersecurity -- Focus on the security needs of operators Phase 1 completed early 2016 Phase 2 underway

2 3 PHASE 1: Overview Develop Application Tools and Share Standards for Use in Complex Organizations NIST Framework Application Focus on Tools and Processes to enable effective Cybersecurity Risk Management Cybersecurity Risk Mgmt. Toolkit Emerging Threat Analysis Characterize Emerging Threats and Identify Tools to Address Them

3 PHASE 1: NIST Framework Application Tools
4 PHASE 1: NIST Framework Application Tools Telecom Industry Best Practices and Standards for Framework Core Elements Application in large organizations with complex supply chains Target Profile impacts as movement to SDN, NFV, Cloud Architectures occurs, etc.

4 PHASE 1: Emerging Threats Analysis
5 PHASE 1: Emerging Threats Analysis SDN/NFV Based Networks/End-User Controlled Networks Back-office and IT infrastructure attacks Specific IoT and M2M Threats

5 NIST FRAMEWORK RFI: ATIS Response
6 NIST FRAMEWORK RFI: ATIS Response RFI Purpose – NIST seeking comments on: Effectiveness of Version 1 Framework Suggestions for improvement of the Framework Options for longer-term ownership Key points of response include: Current Version 1 Framework is effective for ICT sector; should remain voluntary Standardization of measurements is discouraged -- would discourage ICT companies from enhancing use of the Framework and associated company process specific metrics Encouraged NIST to retain long-term ownership of the Framework Recommended removing profile related elements as their application is highly company specific

6 CYBERSECURITY PHASE 2 “Architect and Design for Security” toolkit:
7 CYBERSECURITY PHASE 2 “Architect and Design for Security” toolkit: Standards, practices and other recommendations to assist in development of secure solutions include SDN/NFV and Cloud Create an Information Sharing and Analysis Center (ISAC) Forum roadmap for ICT; survey existing ISAC fora relative to coverage of emerging threats

7 ARCHITECT AND DESIGN FOR SECURITY: Threat Modelling
8 ARCHITECT AND DESIGN FOR SECURITY: Threat Modelling Development processes can wait until the end of the development cycle to address security. Try to test security flaws out. At the end, we see if security requirements are satisfied. With Architectural Risk Analysis applied early in the development cycle, we begin to design security into the product. At the beginning, we intentionally aim for strong security. Did we hit anything? Aiming for the right target

8 9 COMMUNICATION Balance value of information dissemination with sensitivities Information management processes established Enable broader external publication and use of group’s output with selective protection of sensitive elements. Planning to target portion of Phase 2 work for external publication Maintain trusted and active environment to address cybersecurity

Download ppt "2 OVERVIEW Cybersecurity initiative launched in July 2015 to create a trusted environment to address Cybersecurity -- Focus on the security needs of operators."

Similar presentations

NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholde r to insert your own image. Cybersecurity.

NOTE: To change the image on this slide, select the picture and delete it. Then click the Pictures icon in the placeholde r to insert your own image. Cybersecurity.
Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.
Improving Cybersecurity Through Research & Innovation Dr. Steve Purser Head of Technical Competence Department European Network and Information Security.

Improving Cybersecurity Through Research & Innovation Dr. Steve Purser Head of Technical Competence Department European Network and Information Security.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Systems Engineering in a System of Systems Context

Systems Engineering in a System of Systems Context
ATIS SOFTWARE-DEFINED NETWORKING/ NETWORK FUNCTIONS VIRTUALIZATION Mark Lipford, Director Global Standards and Ecosystem Development, Sprint GSC-18 Meeting,

ATIS SOFTWARE-DEFINED NETWORKING/ NETWORK FUNCTIONS VIRTUALIZATION Mark Lipford, Director Global Standards and Ecosystem Development, Sprint GSC-18 Meeting,
Standards for Shared ICT Jeju, 13 – 16 May 2013 Gale Lightfoot Senior Staff Program Manager, Office of the CTO, SPB Cisco ATIS Cybersecurity Standards.

Standards for Shared ICT Jeju, 13 – 16 May 2013 Gale Lightfoot Senior Staff Program Manager, Office of the CTO, SPB Cisco ATIS Cybersecurity Standards.
Framework for Improving Critical Infrastructure Cybersecurity Overview and Status Executive Order 13636 “Improving Critical Infrastructure Cybersecurity”

Framework for Improving Critical Infrastructure Cybersecurity Overview and Status Executive Order “Improving Critical Infrastructure Cybersecurity”
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
Lean and (Prepared for) Mean: Application Security Program Essentials Philip J. Beyer - Texas Education Agency John B. Dickson.

Lean and (Prepared for) Mean: Application Security Program Essentials Philip J. Beyer - Texas Education Agency John B. Dickson.
Jeju, 13 – 16 May 2013Standards for Shared ICT CYBERSECURITY-RELATED STANDARDS ACTIVITY IN THE TELECOMMUNICATIONS INDUSTRY ASSOCIATION Eric Barnhart, Fellow.

Jeju, 13 – 16 May 2013Standards for Shared ICT CYBERSECURITY-RELATED STANDARDS ACTIVITY IN THE TELECOMMUNICATIONS INDUSTRY ASSOCIATION Eric Barnhart, Fellow.
National Institute of Standards and Technology Information Technology Laboratory 1 USG Cloud Computing Technology Roadmap Next Steps NIST Mission: To promote.

National Institute of Standards and Technology Information Technology Laboratory 1 USG Cloud Computing Technology Roadmap Next Steps NIST Mission: To promote.
Jerry Cochran Principal Security Strategist Trustworthy Computing Group Microsoft Corporation.

Jerry Cochran Principal Security Strategist Trustworthy Computing Group Microsoft Corporation.
Larry Clinton Operations Officer Internet Security Alliance 703-907-7028 202-236-0001.

Larry Clinton Operations Officer Internet Security Alliance
Jackie Voss Manager, Global Standards Development ATIS All-IP Transition Initiatives September 30, 2015.

Jackie Voss Manager, Global Standards Development ATIS All-IP Transition Initiatives September 30, 2015.
1 1 Cybersecurity : Optimal Approach for PSAPs FCC Task Force on Optimal PSAP Architecture Working Group 1 Final Report December 10 th, 2015.

1 1 Cybersecurity : Optimal Approach for PSAPs FCC Task Force on Optimal PSAP Architecture Working Group 1 Final Report December 10 th, 2015.
NIST HIPAA Security Rule Toolkit Kevin Stine Computer Security Division Information Technology Laboratory National Institute of Standards and Technology.

NIST HIPAA Security Rule Toolkit Kevin Stine Computer Security Division Information Technology Laboratory National Institute of Standards and Technology.
Ian Collier, STFC, Romain Wartel, CERN Maintaining Traceability in an Evolving Distributed Computing Environment Introduction Security.

Ian Collier, STFC, Romain Wartel, CERN Maintaining Traceability in an Evolving Distributed Computing Environment Introduction Security.
The Strategy Map Presentation Templates

The Strategy Map Presentation Templates
Kick Off Meeting Largs, Scotland

Kick Off Meeting Largs, Scotland

Similar presentations

Ads by Google