Risky Business: Grid Transformation Reveals New, Real World Threats
Hackers are organized, well-funded and are not restricted in their thoughts, techniques or even laws. This gives them a significant advantage over the good guys that are protecting the real-time operations of our grid. In addition, new technologies, such as those driven by grid modernization, and the ever-changing regulations, make it even harder to stay ahead. With the very real potential for a cyber-attack to cripple the U.S. power grid and shatter consumer and shareholder confidence, action is key.
NERC CIP requirements continue to provide a foundation to manage some of these risks. While this is beneficial, it is still insufficient. For security professionals to beat the hackers every minute of every day, and secure utility operations all the way to the Grid Edge, a strategic transformation of our security approach is needed.
Mr. Jones will share his perspective on the evolving threat landscape and how utilities could rethink their compliance “first” focus to proactively address these risks and create a winning defense.
BRIDGE Energy Group
Richard Jones leads BRIDGE Energy Group’s Security & Compliance Center of Excellence. He has over 25 years of energy and utility industry experience providing business, technology, and management consulting-based services. Prior to joining BRIDGE, he was the Senior Director with Alvarez & Marsal (A&M) Business Consulting, focused on delivering cybersecurity and compliance related performance improvement and program management services. Previously, Mr. Jones was a senior member of the Energy team at SunGard Consulting Services where he created and led the NERC/CIP compliance and Market Support practices. Prior to SunGard, he was in senior leadership roles for various big 5 consulting firms and was a major contributor in the restructuring efforts of the electric industry in California, Texas, the Midwest, New York and Alberta.
Mr. Jones is an active practitioner and recognized thought leader and specialist in cybersecurity and NERC CIP compliance with experience in assessing (risk and capability), planning and implementing compliance and cybersecurity programs for real-time operations; assessing risk, planning, governance and implementation for cybersecurity and version 5/6 CIP compliance; Situational Analysis and Mitigation Support for CIP Violations; and developing Risk Management and Control Frameworks for cybersecurity and Compliance operations. Mr. Jones has one patent in the field of “Objectively Managing Risk”.
Mr. Jones’ recent publications include:
- Electric Light & Power – Beyond the Malware Malaise: New Ways to Deal with Cyber Threats”
- Homeland Security Today – Utility Employees Worried About Security Threat Readiness, NERC Compliance
- Remote Site and Equipment Management – Security Analytics and Visualizations that Could Prevent a Ukraine-like Power Outage
The technical presentation agendas are designed exclusively by and for the benefit of the electric utility, testing and industrial company delegates. The conference program is created by eight client committees, each having unique expertise in a particular area. Attend one or attend all eight sessions and learn from your colleagues’ experiences.
- Arresters, Capacitors, Cables and Accessories
- Asset and Maintenance Management
- Bushings, Insulators and Instrument Transformers
- Circuit Breakers
- Insulating Materials
- Protection, Automation, Controls and Communication
- Rotating Machinery
The Client Committee Meetings are exclusively for utilities, testing companies and industrial facilities clients with a Doble Service Agreement. The meetings facilitate an open dialogue between you and your peers about safety, asset health and maintenance issues, focused on problem-solving and collaboration though training and peer-to-peer knowledge sharing.
Attendees share issues and best practices, learn from the experiences of others, collaborate to solve problems and improve system performance. All this is done without the presence of manufacturers or insurers. Training sessions are geared toward improving your performance and advancing your career.
You do not have to be a Committee Member to attend any Committee Meeting, with the exception to the Oil Committee which is open to members only.
During the week we will have various Users Group Meetings where you can learn from the experts, share concerns and network with fellow users.
Get training you want and need during our training offered throughout the week. You do not have to preregister for any of these training courses though we do recommend you arrive early to guarantee a seat.