Chapter Meeting, Friday, October 19, 11:30-1:00, Arden-Dimick Library

Sacramento ISSA Chapter Meeting

Topic: History of NERC CIP

Where: Arden-Dimick library meeting room,
       891 Watt Ave, Sacramento, CA 95864, USA

When: Friday, October 19, 11:30-1:00

Who: Zach Trublood,
         North American Electric Reliability Corporation (NERC) - Critical Infrastructure Protection (CIP)

Zach Trublood has over 15 years’ experience in the fields of IT and OT, having spent the majority of it working on NERC CIP implementation projects and compliance.  After separating from the US Navy, he began working for the State of CA as a Staff Information Systems Analyst, and went back to CSUS and earned a bachelor’s degree in Electrical and Electronic Engineering. From there, he moved into an Associate Control Engineer position within DWR before leaving to join SMUD as a Senior Compliance Engineer. He then went on to the Western Electricity Coordination Council to round out his compliance knowledge with a tour of duty as a Senior CIP auditor.  Currently Zach is working as a consultant on contract with CA Department of Water Resources working on the Reliability and Security Office compliance programs.
Abstract of Talk
This talk will cover the history of the CIP standards, and an overview of the current requirements.  We will then look at how the CIP requirements relate to industry standards such as NIST 800-53 and the NIST Framework for Improving Critical Infrastructure Cybersecurity. As part of this discussion, we will examine the differences between typical IT and OT and how this plays into the implementation of the standards. We will also look at the differences between compliance and security and what types of challenges the electric utility industry faces. Finally, we will look at where the current CIP development is heading and what it means going forward for security and compliance programs.

Friday, October 19, 2018 - 11:30am