Cybersecurity Track
Supply Chain Security, Protection Against Ransomware Attacks, and Safety and Integrity of Automated Systems
In today’s interconnected world, the aerospace, automotive and maritime industries increasingly rely on automation to drive efficiency and innovation. With this increased connectivity comes new cybersecurity risks. Explore the unique challenges and best practices for securing automation in these critical sectors with insightful sessions that cover supply chain security, protection against ransomware attacks and ensuring the safety and integrity of automated systems.
DIVE deeper into secure-by-design principles and explore effective strategies for conveying cybersecurity requirements to vendors.
EXPLORE the cybersecurity challenges posed by the digitalization of the maritime industry and the critical role of cybersecurity experts in developing risk mitigation strategies to ensure safe and secure operations at sea and in port.
UNLOCK the latest advancements in machine learning and generative AI, including their applications in automotive part production, aerospace manufacturing, supply chain, international port security and cybersecurity threat tracking.
08:30-09:15
Keynote - Beyond the Stars: How Digital Transformation is Shaping the Future of Space Exploration
Houston Green, Space Exploration Engineer, The Aerospace Corporation, NASA Johnson Space Center
09:15-09:30
Break
09:30-10:00
Technology Demonstration
Presented by
Carolina Ballroom | Francis Marion Hotel
Presenter: Rod Locke, Director, Product Management, Operational Technology
10:00-10:30
Beyond the Defense in Depth: The Artificial Intelligence Role in ICS Defense
Carolina Ballroom | Francis Marion Hotel
Presenter: Felipe Costa, Sr. Product Marketing Manager, Moxa
10:30-10:45
Break
10:45-11:15
Cyber Simulation in a Nuclear Power Plant
Carolina Ballroom | Francis Marion Hotel
Presenter: Victor Alvarez, Information Security Analyst, TI Safe
11:15-11:30
Break
11:30-12:00
Fireside Chat: Crowdstrike Breach: Lessons Learned (OT focus)
Carolina Ballroom | Francis Marion Hotel
The crowdstrike breach has significantly impacted businesses worldwide, highlighting the importance of robust cybersecurity measures and operational resilience. Our presenters will cover lessons learned from the breach and its implications for operational technology (OT). It will cover critical lessons learned, including the need for business continuity plans, testing and deployment within the OT environment and critical systems affected.
Moderator:
Sunil Doddi, Senior Principal Process Controls Engineer, Air Products and Chemicals, Inc.,
Presenters:
Patrick O' Brien, Cybersecurity Lead, exida
Chris Choquette, Senior Cyber Security Consultant, FM Global
Patrick O'Brien is a Cybersecurity Team Lead at exida, LLC, where he drives cybersecurity certification and assessment services for service providers and industrial asset owners. He has led cybersecurity risk assessments, training courses, and other lifecycle activities for many different applications, including oil and gas, specialty chemical, machinery, and robotics. In addition to his cybersecurity role, he also provides consulting services in the areas of process safety, functional safety, and machine safety.
12:00-13:00
Lunch and State of the Society Address
Carolina Ballroom | Francis Marion Hotel13:00-14:00
Panel: Connecting Intelligence with Technology
Carolina Ballroom | Francis Marion Hotel
Moderator:
David Schultz, Senior Consultant, Spruik Technologies
Panelists:
Arlen Nipper, President & CTO, Cirrus Link
13:45-14:00
Break
14:00-14:30
Technology Demonstration
Carolina Ballroom | Francis Marion Hotel
Presenter: TBA
14:30-15:00
Does AI Dream of Electric Substations? Generative AI and the Frontiers of AI Safety Principles for Critical Infrastructure Systems
Carolina Ballroom | Francis Marion Hotel
Presenter: Jessa Davis, Security Consulting Manager, Accenture Security
As the use of artificial intelligence (AI) in industry increases, technology and cybersecurity professionals must focus on engineering intrinsically safe and inherently secure AI systems—especially when used in operational technology (OT) environments, where a system failure or cybersecurity incident could result in serious injury and loss of life, environmental harm, or the interruption of critical infrastructure services. From this context, three core principles of AI safety engineering adapted to IEC 61508 and ISA/IEC 62443 standards will be presented to address the unique needs of OT processes—prioritizing both safety and reliability in operations—with use cases highlighting the ethical, cybersecurity and risk management challenges of implementing AI within electric utilities’ OT networks.
Jessa Davis (she/her) is a Security Consulting Manager at Accenture, specializing in cyber-physical systems (CPS) and operational technology (OT) cybersecurity for electric utilities clients. Before joining Accenture, Jessa worked as an industrial controls system engineer in the oil and gas industry and as a blockchain software developer with the United Nations Office for Project Services in Kathmandu, Nepal. Her research interests include resolving EV charging infrastructure and vehicle-to-grid (V2G) cybersecurity challenges and supporting cyber resilience strategies for the smart grid. She lives in Seattle, WA.
15:00-15:15
Break
15:15-15:45
62443 Application Differences: Brownfield v. Greenfield Facilities
Carolina Ballroom | Francis Marion Hotel
Presenter: Chris Monchinski, CTO, InflexionPoint
This presentation will explore the key similarities, differences and lessons learned in applying the ISA/IEC 62443 standard within greenfield and brownfield industrial environments. In greenfield (new) projects, where systems can be designed from the ground up, there is a unique opportunity to integrate cybersecurity measures into the architecture from the earliest stages. Chris will discuss strategies for leveraging this opportunity, including best practices for designing a secure infrastructure, selecting compatible technologies, and ensuring seamless integration of security controls. Conversely, brownfield (existing) projects present distinct challenges, particularly when dealing with legacy systems that were not originally designed with cybersecurity in mind. The presentation will address these challenges, offering practical approaches to retrofitting existing systems with modern security measures, managing vulnerabilities inherent in outdated technologies, and balancing operational continuity with the need for enhanced security.
Chris Monchinski is CTO at InflexionPoint where he provides is 30+ years of experience to clients through thought leadership, strategy, design and implementation involving Digital Transformation. Chris is chair of the ISA 95 committee on Enterprise-to-Control System Integration, convenor of IEC/ISO JWG5 and past Vice President of the ISA S&P board (2019-20). Chris is chair of the MESA Knowledge Committee. Chris holds a BSEE and an MSCS.
08:30-09:15
Keynote - Data Security in Generating Renewable Energy
Carolina Ballroom / Francis Marion Hotel
James Clark, Vice President, Information Technology, South Jersey Industries Information Security
Jamie will present a success story on delivering a secure solution allowing data to traverse OT to IT to gain central visibility across our entire portfolio of farms generating renewable energy. It is a very challenging project designed from the ground up, emphasizing cyber security for safety and compliance.
With 22 years of experience leading IT teams and 15 years in building cybersecurity programs across the chemical, medical, and utility industries, Jamie Clark is a visionary technologist who bridges the gap between security, IT, SCADA, and business teams. Currently, Jamie leads the Information Security (IT/OT) & GRC programs for South Jersey Industries (SJI), where he also manages the OT Solution Services Team. SJI is a leader in delivering safe, reliable, and affordable energy solutions. Jamie holds a BS in Computer Information Systems (CIS), an MBA, and certifications including Certified Information Systems Security Professional (CISSP) and Global Industrial Cyber Security Professional (GISCP).
09:15-09:30
Break
09:30-10:00
Technology Demonstration
Carolina Ballroom | Francis Marion Hotel
Presenter: TBA
10:00-10:30
Case Study Example of ISA/IEC 62443 in the Manufacturing Environment
Carolina Ballroom | Francis Marion Hotel
Presenter: Edgar Baur, Manager—Engineering Digitalization, Robert Bosch LLC
10:30-10:45
Break
10:45-11:15
ISASecure ISA/IEC 62443 Site Assessment (ACSSA) Program - Industry Perspectives & Updates
Carolina Ballroom | Francis Marion Hotel
Sean Haynes, Chief Marketing Officer, SecurityGate.io
Panelists:
Brandon Price, Sr. Principal, Industrial Cybersecurity, ExxonMobil Technology & Engineering Company
Kenny Mesker, OT Cybersecurity Strategist, Chevron
Patrick O'Brien is a Cybersecurity Team Lead at exida, LLC, where he drives cybersecurity certification and assessment services for service providers and industrial asset owners. He has led cybersecurity risk assessments, training courses, and other lifecycle activities for many different applications, including oil and gas, specialty chemical, machinery, and robotics. In addition to his cybersecurity role, he also provides consulting services in the areas of process safety, functional safety, and machine safety.
11:15-11:30
Break
11:30-12:00
Maritime Cybersecurity in the Supply Chain
Carolina Ballroom | Francis Marion Hotel
Presenter: South Carolina Port Authority
The maritime supply chain plays a critical role in global trade, yet its reliance on interconnected digital systems exposes it to various cyber threats. This presentation delves into the complexities of maritime cybersecurity and its impact on the supply chain. We will explore the unique challenges that maritime organizations face in safeguarding their digital assets, from vessels and ports to logistics and cargo management.
12:00-13:00
Lunch
Carolina Ballroom | Francis Marion Hotel13:00-13:45
Plant Owner Perspective: Navigating Cybersecurity Challenges and Threats - Strategies for Effective and Efficient Mitigation
Carolina Ballroom | Francis Marion Hotel
Moderator:
Patrick O'Brien, Cybersecurity Lead, exida
Panelists:
Patrick O’Brien is a Cybersecurity Team Lead at exida, LLC, where he drives cybersecurity certification and assessment services for service providers and industrial asset owners. He has led cybersecurity risk assessments, training courses, and other lifecycle activities for many different applications, including oil and gas, specialty chemical, machinery, and robotics. In addition to his cybersecurity role, he also provides consulting services in the areas of process safety, functional safety, and machine safety.
Chris DaCosta is currently the Director of Global OT Cybersecurity at Air Products & Chemicals, Inc. As a Air Products Distinguished Engineer, he has responsibility for developing corporate strategy and managing the cybersecurity lifecycle for all IACS of the company’s global fleet of over 600 facilities. He has well 25 years of experience deploying, maintaining and optimizing industrial automation systems and over 10 years in OT cybersecurity. He is a graduate of Brown University with a degree in Chemical Engineering and Masters Degree in Chemical Engineering from Villanova University. Chris is active in AIChE, American Chemistry Council (ChemITC) and as a voting member for ISA/IEC 62443.
Brandon Price is Senior Principal Engineer for ICS Cybersecurity at ExxonMobil with responsibility for sustaining ExxonMobil's ICS cybersecurity strategy for its Upstream, Downstream and Midstream businesses. He has over 20 years of experience in leadership, security and business controls for protecting information, information systems and operational technology. He is a graduate of The University of Alabama with a degree in Management Information Systems and holds a CISSP certification.
13:45-14:00
Break
14:00-14:30
Technology Demonstration
Carolina Ballroom | Francis Marion Hotel
Presenter: TBA
14:30-15:00
Workforce Needs and Development in OT
Carolina Ballroom | Francis Marion Hotel
Presenters:
Sean McBride, Director, Informatics Research Institute, Idaho State University
Shane Dale Stailey, Senior Industrial Control Systems Cybersecurity Professional, Idaho National Laboratory
As the demand for skilled professionals in operational technology (OT) continues to grow, organizations face significant challenges in recruiting, training, and retaining a competent workforce. This presentation will delve into the workforce needs and development strategies specific to the OT sector, focusing on addressing the skills gap and building a robust talent pipeline.
15:00-15:15
Break
15:15-15:45
Applying ISA/IEC 62443 to a Unified Name Space
Carolina Ballroom | Francis Marion Hotel
David Schultz, Senior Consultant, Spruik Technologies
15:45-16:00
Break
16:00-16:15
ISA Standards Overview
Carolina Ballroom | Francis Marion Hotel
Presenter: Charley Robinson, Director, Standards Administration, ISA
ISA’s international standards play a vital role in promoting safety, cybersecurity and efficiency across global industry. This workshop will provide an overview of ISA’s international standards program and its relationship to and collaboration with the International Electrotechnical Commission (IEC). A panel of experts representing standards stakeholders will then answer questions from the audience.
16:15-16:45
ISA Standards Panel
Carolina Ballroom | Francis Marion Hotel
This panel is an extension of the ISA Standards Overview and will have time for audience Q&A.
Moderator:
Scott Reynolds, Security Engineering Manager - ITD, Johns Manville
Panelists:
Ed Manns, Managing Director, External Relations, ISA
Charley Robinson, Director, Standards Administration, ISA
Dave Lee, President, User Centered Design Services