about me · 2011. 2. 22. · about me • tony flick • principal at fyrm associates • eight...
TRANSCRIPT
![Page 1: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/1.jpg)
![Page 2: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/2.jpg)
AboutMe
• TonyFlick• PrincipalatFYRMAssociates
• EightyearsintheInforma>onSecurityindustry
• Authorof“SecuringtheSmartGrid”
![Page 3: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/3.jpg)
Why?
• Whyshouldsmartgridcompaniesbeconcernedaboutsecurity?– Justlikeanyotherindustry,weneedtothinkabouttherisks/consequencesbeforewestart
– Unlikemostotherindustries,lackofsecuritycancausephysicalharm
![Page 4: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/4.jpg)
WhyNot?
• Whyarecompaniesnotimplemen>ngsecuritycontrols?– Timeconsuming– Costs– Compe>>on
– Someoneelse’sresponsibility
![Page 5: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/5.jpg)
ShortTermImplica>ons
• Gamblethatvulnerabili>eswillgounno>ced– Cheaper
• Somecustomerswillrefusetodobusinesswithyou
![Page 6: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/6.jpg)
LongTermImplica>ons
• Eventually,youwillhavetoincorporatesecuritycontrols– AQacks– Regula>ons
• Allcustomerswilleventuallyforceyou
![Page 7: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/7.jpg)
Results
• Securitywillbefarmorecomplextointegratelateron
• Canbemoreexpensive
• Canyourcompanysurvive?
![Page 8: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/8.jpg)
SecurityControls
• Integratesecuritycontrolsthroughoutthelifecycle
• Individualvulnerabili>esandthreatscanbedistrac>ng
• Focusonsecuritycontrols– Remediatetherootcauseissues
![Page 9: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/9.jpg)
SecurityControls
• Trainings• Assessments– In‐house– ThirdParty– Scanvs.Assessment
![Page 10: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/10.jpg)
SecurityMindset
• Justbecauseyoucan,doesn’tmeanyoushould– MobileApplica>ons– SocialNetworking
![Page 11: About Me · 2011. 2. 22. · About Me • Tony Flick • Principal at FYRM Associates • Eight years in the Informaon Security industry • Author of “Securing the Smart Grid”](https://reader036.vdocuments.net/reader036/viewer/2022081411/60a57a060cf4a45fe236512b/html5/thumbnails/11.jpg)
Ques>ons?