Dragos, Inc., provider of the industry’s most trusted industrial cybersecurity platform and services, will be speaking at the RSA Conference 2019, the annual cybersecurity conference. Four speakers, Robert M. Lee, CEO, Sergio Caltagirone, VP of Threat Intelligence, Selena Larson, Intelligence Analyst and Joe Slowik, Adversary Hunter have been selected by conference organizers to share their insights, research and analysis on cybersecurity as it pertains to industrial control systems (ICS).

RSA will take place March 4-8, 2019 at the Moscone Center in San Francisco, CA. The full agenda can be found at https://www.rsaconference.com/events/us19/agenda. Following is a summary of presentations to be given by Dragos representatives at this year’s conference.

Session: Unraveling Detection Methodologies: Indicators vs. Anomalies vs. Behaviors
When: Tuesday, March 5, 2019, 3:40 - 4:30 pm
Who: Joe Slowik, Adversary Hunter
Cyber-defense centers on “what” a technology is designed to look for, with capabilities and limitations depending on the method. Three distinct approaches have emerged: traditional IOCs, anomaly detection and behavioral analytics. Unfortunately, marketing has muddied these terms beyond recognition. In this presentation, Joe Slowik, Adversary Hunter at Dragos will critically examine each approach and its capabilities.

Session: Debunking the Hacker Hype: The Reality of Widespread Blackouts
When: Wednesday, March 6, 2019, 11:20 - 11:50 am
Who: Selena Larson, Intelligence Analyst
There have been public narratives about the US being on the precipice of a nationwide hacker-caused blackout. What is the reality of adversary activity and the potential or likelihood of a cyber attack that could disrupt the electric grid? What are hackers currently doing in ICS networks? In this presentation, Selena Larson, Intelligence Analyst at Dragos will separate fact from (science) fiction.

Session: How Long to Boom: Understanding and Measuring ICS Hacker Maturity
When: Thursday, March 7, 9:10 - 9:40 am
Who: Sergio Caltagirone, VP Threat Intelligence
The industrial control system threat is growing quickly. But ICS hackers do not start by disrupting electric grids. Instead, they mature predictably leading them from things that go bad, to things that go boom. In this presentation, Sergio Caltagirone will explain how using ICS threat intelligence Dragos has developed an ICS hacker maturity model enabling us to determine how much risk a threat poses and predict how long until they reach maximum risk.

Session: Intelligence-Driven Industrial Security with Case Studies in ICS Attacks
When: Friday, March 8, 2019, 9:50 - 10:40 am
Who: Robert M. Lee, CEO
Most industrial security best practices are essentially enterprise security best practices copy/pasted into industrial networks. Yet that is not an effective way to reduce risk against industrial-specific threats. Instead, we can learn from ICS attacks that have occurred. In this presentation, Robert M, Lee, CEO and co-founder of Dragos will provide first-hand insights into industrial threats and the lessons learned for industrial security.

Members of the Dragos Threat Intelligence and Threat Operations teams will be at RSA and will be discussing the findings from their upcoming annual Dragos Year in Review reports. To schedule a briefing or demo contact rsa@dragos.com.

About Dragos

Dragos’ industrial cybersecurity platform delivers unprecedented visibility and prescriptive procedures to respond to adversaries in the industrial threat landscape. Dragos codifies intelligence and threat behavior analytics for effective ICS threat detection and response. Dragos also offers ICS threat hunting and incident response services, as well as Dragos ICS WorldView for weekly ICS threat intelligence reports. Learn more at www.dragos.com, or follow us on Twitter or LinkedIn.