Industrial control system (ICS) networks are unique in many aspects not only for the types of infrastructures, such as the power grid, that rely on them but also for the approaches needed to hunt for threats in these environments. This presentation will highlight the challenges and opportunities in these networks, showcase real world threats, and leave participants with takeaways about the types of data and tools that can be leveraged to ruin bad guys' days.

"Robert M. Lee is the CEO and Founder of the critical infrastructure cyber security company Dragos Security LLC where he has a passion for control system traffic analysis, digital forensics, and threat intelligence research. He is also a SANS Certified Instructor and the course author of the FOR578 - Cyber Threat Intelligence and ICS515 - ICS/SCADA Active Defense and Incident Response courses. Jon Lavender is the Co-Founder and Chief Technology Officer at Dragos Security where he helps to design, build and deploy the company's platform for control system threat hunting. Previously, Jon was a member of the U.S. Intelligence Community where he led diverse teams in challenging environments experiencing both red and blue team type operations. "

@RobertMLee

Back to BSides Augusta 2016 video list