Monthly archive

Leveraging Procurement for Cybersecurity Resilience

April 25th, 2024

This webinar focuses on how procurement in the energy sector can be leveraged to strengthen cybersecurity across TSOs, DSOs, and generation. Topics explored include how systems associated with managing energy infrastructure, like SCADA and other industrial controls systems, energy market applications, advanced metering infrastructure and billing systems can be made more resilient by embedding cybersecurity specifications in procurement. Speakers will consider how existing standards can be implemented to guide procurements through the lifecycle of operations.

Terri Khalil

Job Title: 
CEO/Founder, CyberKaleidoscope, LLC
Organization: 
Senior Consultant, Ampere Industrial Security, Inc.

CEO/Founder, CyberKaleidoscope, LLC and

Senior Consultant, Ampere Industrial Security, Inc.

Terri Khalil is a cybersecurity and compliance professional with a reputation for success in building and sustaining cross-functional compliant cybersecurity reliability programs in highly complex, regulated energy critical infrastructure. Terri recently established CyberKaleidoscope, LLC to provide cybersecurity services targeting critical infrastructure and ICS/OT. Terri is also a Senior Consultant with Ampere Industrial Security, Inc. Previously, Terri was the Director of Technology Delivery, Performance Optimization & Compliance for Tampa Electric Company. She also held Information Security & Risk analyst and senior manager roles for PricewaterhouseCoopers. Terri holds an MBA and a BS in MIS from University of South Florida, as well as current CISSP, CISA, CISM, and CRISC certifications.

Profile Type: 
Speaker

Roland Miller III

Job Title: 
Ambassador for Cyber Florida
Organization: 
The Florida Center for Cybersecurity

Roland is a senior information technology executive with over 20-years of experience in securing national critical infrastructure such as downstream natural gas, nuclear power plants and the electric grid. As a former Chief Information Security Officer (CISO), his expertise spans various domains, including business process optimization, innovation, metrics development, Operational Technology (OT), and regulatory compliance. In his current role as an Ambassador for Cyber Florida: The Florida Center for Cybersecurity, Roland drives engagement, conducts outreach efforts, consults with asset owners/operators, contributes to risk assessments and incident response exercises and has created material for and conducts workshops on essential cybersecurity concepts.

Profile Type: 
Speaker

Terry Khalil

Job Title: 
Senior Consultant
Organization: 
Ampere Industrial Security, Inc.

Terri Khalil is a cybersecurity and compliance professional with a reputation for success in building and sustaining cross-functional compliant cybersecurity reliability programs in highly complex, regulated energy critical infrastructure. Terri recently established CyberKaleidoscope, LLC to provide cybersecurity services targeting critical infrastructure and ICS/OT. Terri is also a Senior Consultant with Ampere Industrial Security, Inc. Previously, Terri was the Director of Technology Delivery, Performance Optimization & Compliance for Tampa Electric Company. She also held Information Security & Risk analyst and senior manager roles for PricewaterhouseCoopers. Terri holds an MBA and a BS in MIS from University of South Florida, as well as current CISSP, CISA, CISM, and CRISC certifications.

Profile Type: 
Speaker

Governance Policies and Procedures for Third-Party Cybersecurity Risk Management

March 21st, 2024

This webinar focuses on developing and maintaining organizational cybersecurity governance and the best practices on policies and procedures to address supply chain risk management. The webinar will highlight typical models for managing cybersecurity (e.g., the role of a CISO or CSO) and level of visibility into cybersecurity risks from the senior management to technical staff.

Cybersecurity Incident Response Plan Development Webinar

March 7th, 2024

An incident response plan (IRP) is an essential tool for utilities to prepare for an event and can help drive the utility’s overall cybersecurity activities. This webinar will discuss how utilities should incorporate supply chain cybersecurity considerations into an IRP: What are the typical steps to developing the incident response plan from identifying scenarios, identifying critical utility systems/assets, identifying supporting systems/assets, calculating business impacts, using existing risk analysis, and developing and testing playbooks.

Tony Assan

Job Title: 
Head of IT
Organization: 
Ghana Grid Company (GRIDCo)

Tony Assan is the Head of IT in The Ghana Grid Company (GRIDCo) with responsibility for IT strategy, systems deployment and operations, with additional responsibility for Operational Technology systems. He is an Information and Communication Technology professional with several years’ experience in Software development, IT product development, Cybersecurity, and IT infrastructure. He also has expertise in E-Banking Technology, and Wireless/Microwave and Fibre-optic technology. He has managed several high-profile projects.

Prior to joining GRIDCo he was Head of E-Banking in Fidelity Bank, Ghana, with responsibility for strategy, PCIDSS Compliance, delivery and operations of payment cards, and electronic banking business. He was also a senior Technology leader for twelve years in Vodafone. Prior to joining Vodafone, he was Chief Technology officer for National Communications Backbone Company (NCBC), a national fibre-optic infrastructure company. He has also played key roles in Broadband infrastructure development, deployment of banking systems like Visa infrastructure and products, and development of Insurance software in Ghana. He has led key transformation initiatives such as establishing policy framework for Ghana Government Enterprise Architecture (GGEA) and e-Government Interoperability (e-GIF)

Tony holds a Master of Business Administration degree in Management Information Systems, and a bachelor’s degree in Computer Science. He also holds a degree in Law (LLB), He is also and certified PRINCE2 Project Management Practitioner. He is a certified ISO 27001 Lead Implementer, and holds a Lean Six Sigma Green Belt certificate.


 
Profile Type: 
Speaker

JUMPP Clean Energy Investment Conference

April 1st, 2024

Jason Shea

Job Title: 
Senior Cybersecurity Manager
Organization: 
Southern California Edison

Jason Shea is a Senior Cybersecurity Manager responsible for IT/OT Security Architecture at  Southern California Edison. He has over 25 years of utility experience and currently sits as the Dams Sector Cybersecurity Co Chair. He is focused on securing the nations critical infrastructure in the Utility Sector as we interconnect the grid in new and exciting ways that it has never been connected before.

In his roles with SCE, Jason has led the Cybersecurity Operations Center (CSOC), Cybersecurity Engineering, Cybersecurity Architecture teams and actively participates with various Federal Agencies and National Labs to identify ways to secure critical infrastructure.  He manages a team of Cybersecurity architects that are focused on integrating secure by design strategies to help improve the security posture for emerging grid technologies, incorporating threat intelligence to secure solution designs related from Edge Devices down to Grid Management Systems to identify risks and associated compensating controls.

Overall, in his efforts to secure critical infrastructure, Jason oversees and advises on the security of next-generation control systems using state-of-the-art technologies and plays an active role on how to secure traditional OT systems and emerging grid technologies to establish a modern security posture for critical control systems.
Profile Type: 
Speaker

USEA Power Sector Podcast Episode 22: Grid Strategies Vice President Michael Goggin

February 21st, 2024

In today’s USEA Power Sector Podcast, Grid Strategies Vice President Michael Goggin answered questions from journalist Herman K.

Pages