Carolyn Turbyfill, Ph.D.

Live Webinar Feb 6th, 2014 11:00 am – 12:30 pm EST

Duration: 1 Hour 30 Min Credits: 1 PDU Category A – Free PDU
Presented by: Computer Aid Inc IT Metrics & Productivity Institute (Rep 2733)

This webinar will provide an overview of the most current Cybersecurity requirements and standards for Critical Infrastructure Protection.

Presented by: Carolyn Turbyfill – Quality + Engineering

Click to register for Cybersecurity across Critical Infrastructure Protection Sectors (CIPS)

Title:  Cybersecurity across Critical Infrastructure Protection Sectors (CIPS)

Date:  February 6, 2014

Abstract:

On February 12, 2013, an Executive Order on  “Improving Critical Infrastructure Cybersecurity” was issued from the White House:

whitehouse.gov/2013/02/12/executive-order-improving-critical-infrastructure-cybersecurity

There are 18 critical infrastructure sectors described in:

http://www.dhs.gov/critical-infrastructure-sectors.

These sectors affect your quality of life and even your ability to live.  Evolving standards and regulations for critical infrastructure protection will have a much more immediate effect on your work life if you work in, sell products to, or provide services to any of these sectors.

The exposure of the NSA PRISM project tracking the phone numbers and time involved in any phone call to or from the USA expose difficult tradeoffs between protecting the privacy of consumers and insuring security and safety. Enterprises are both bound to report loss of data that may affect customer security and privacy, and they are also required to provide information to government agencies.

Unfortunately, eternal vigilance is necessary but not sufficient to protect us.  National boundaries, oceans, slow means of travel used to constrain effective government over long distances.  Counties were originally constrained to how far one could ride a horse in a day.   Boundaries based on geographic location, on this planet, provide little protection from physical or logical encroachment. The Internet has made communication to the furthest reaches of the planet almost instantaneous.  Very few enterprises, legitimate or otherwise, take place in just one country. Enforcement of regulations and laws; investigations and criminal activities, can cross the world and multiple national boundaries in seconds.

Changing national, international and localized compliance requirements and regulations, cause confusion about which rules or guidelines are relevant this week. What will change next week, month or year?  While there are many interactions and dependencies between the different CIPS, Cybersecurity is arguably the most common denominator. This webinar will provide an overview of the most current Cybersecurity requirements and standards for Critical Infrastructure Protection.

Bio:

Dr. Turbyfill is Director of Cyber Security for Quality + Engineering.  Dr. Turbyfill more than twenty years cyber security engineering and aoftware architecture experience in: Security (Cyber and Physical); Enterprise Risk Management; SDLC; Development Methodologies; Enterprise Products and Services; Compliance; Database, Strategy and Roadmaps; management of multiple groups in domestic and international locations; startups and turnarounds.  She is currently writing a book on critical infrastructure protection (CIP) risk management and cyber asymmetric warfare. Examples of her thought leadership can be found at:  http://insights.cermacademy.com/category/technologyrisk/