Andrew Bochman
Senior Grid Strategist
National & Homeland Security
About Andrew Bochman
Follow Andrew Bochman
Senior Grid Strategist
National & Homeland Security
Maggie Morganti
Product Security Researcher
Schneider Electric
Maggie Morganti is a Product Security Researcher at Schneider Electric where she works on vulnerability handling, supply chain security, and secure product development for power systems. She also serves as the Director-Elect of the ISA Communications Division (COMDIV). She previously held roles as a Cyber Technical Staff member for Oak Ridge National Laboratory’s Power & Energy Systems team and as a Threat Intelligence Analyst for FireEye Mandiant’s Cyber-Physical team. She holds a M.S. in Intelligence Studies with a focus on cybersecurity from Mercyhurst University.
About Maggie Morganti
Follow Maggie Morganti
Product Security Researcher
Schneider Electric
Brent Castagnetto
Managing Partner CISSP, MABR
Archer
Brent Castagnetto brings over 13 years of Information Security expertise to Archer Energy Solutions. During his 6 years as Manager of Cyber Security Audits at the nations largest Regional Entity (WECC), Mr. Castagnetto played an integral role in developing the CIP audit approach nationwide. Mr. Castagnetto’s leadership was instrumental in driving significant changes to the TFE process and the NERC Rules of Procedure. During his time at WECC, Mr. Castagnetto also served as co-chair of the Compliance Monitoring Functional Group (CMFG) and on several other committees.
Mr. Castagnetto’s expertise covers regulatory compliance and information security of both the financial services and energy sectors. Prior to joining WECC, Mr. Castagnetto worked as a Security Architect, and later a Senior Sales Engineer, where he successfully implemented large-scale infrastructure projects and managed teams of security professionals. Mr. Castagnetto also has experience administering enterprise network, security, and server infrastructure for several large financial institutions and Fortune 500 companies. Brent attended Utah Valley University and holds the Certified Information Systems Security Professional (CISSP) certification as well as the Certified Business Resilience Manager (CBRM), Certified Business Resilience Auditor (CBRA) certifications.
About Brent Castagnetto
Follow Brent Castagnetto
Managing Partner CISSP, MABR
Archer
Eric Floyd
Director of Industrial Solutions, Network Applications & Security Group
Keysight Technologies
Eric has 25 years of experience in global business development, strategic partnerships, and consulting in the Industrial and Carrier markets, with lengthy stints with Samsung in Korea, Cisco in the Asia-Pacific region, and Microsemi in the US. Now based in Silicon Valley, Eric is responsible for building Keysight’s Industrial cybersecurity and network visibility business through technology partnerships, new solutions development, and strategic account engagement with utilities, manufacturing, and transportation organizations. Eric completed his MBA at UC Berkeley and his BA in Economics at the University of Virginia.
https://www.keysight.com/us/en/home.html
About Eric Floyd
Follow Eric Floyd
Director of Industrial Solutions, Network Applications & Security Group
Keysight Technologies
Kylie McClanahan
Ph.D. student, Computer Science
University of Arkansas
Kylie McClanahan is a doctoral student in the Department of Computer Science and Computer Engineering at the University of Arkansas and a senior software developer at Bastazo, Inc. She has significant background in and knowledge of the electric sector through research, internships, and industry connections. Her research focuses on automating vulnerability and patch management using machine learning techniques. Recently, she published research concerning a strategy to automatically propose mitigation actions when patching is unavailable, and she is currently working on methods to optimize patch scheduling.
About Kylie McClanahan
Follow Kylie McClanahan
Ph.D. student, Computer Science
University of Arkansas
Dennis Gammel
R&D Director
SEL
Dennis Gammel is a graduate of the University of Idaho with a B.S. in Applied Mathematics and has been actively working in the computing and communications industries since 1996. His career experience includes network security design, ICS network architecture, embedded product development, ASIC simulation, and firmware design with RTOS application development. Dennis is presently working with SEL Engineering Services researching cybersecurity solutions for Energy Delivery Systems (EDS). He has been with SEL since March 2005 and carries with him 20 years of secure firmware and network engineering experience.
https://selinc.com/
About Dennis Gammel
Follow Dennis Gammel
R&D Director
SEL
Jeanette Sherman
Director of Product Marketing
Finite State
Jeanette Sherman, Director of Product Marketing at Finite State, has been writing professionally for over 20 years, with 7 years working for software companies after extensive newsroom and publishing experience. Jeanette believes that real-world examples and human-level stories are key to helping enterprises understand how attackers can have a real-world impact on their teams and customers. Jeanette has previously helped startups tell their stories about process automation, AI, and digital asset management, as well as creating content for Intel's IoT Group and partners. She believes device security in the era of IoT is about to be more important than anyone ever realized.
About Jeanette Sherman
Follow Jeanette Sherman
Director of Product Marketing
Finite State
Nicholas Vidovich
Principal Product Manager
Finite State
Nicholas Vidovich is Principal Product Manager for Device Composition Analysis at Finite State, which provides complete visibility into the supply chain for connected devices, including identifying all third-party components, their risks, vulnerabilities, and license information. After graduating from Ohio Northern University, Nicholas began his career at Battelle Memorial Institute where he worked on scalable data processing pipelines, real time physics based robotics simulations, interactive multi-touch data visualization, dark web scraping and analysis, and scientific document search platforms. Nicholas was a founding engineer at Finite State in 2017, and has been working in cyber security since 2011.
About Nicholas Vidovich
Follow Nicholas Vidovich
Principal Product Manager
Finite State
Michael Firstenberg
Director of Industrial Security
Waterfall Security
Mike Firstenberg is the Director of Industrial Security for Waterfall Security. Mike brings over two decades of experience in Process Control Security, specializing in Control System Cyber Security. The former chair of the American Water SCADA Council, Mike studied Computer Science, Chemical Engineering, and Mathematics at the University of Pennsylvania, and has served as a speaker and panelist at hundreds of conferences and events around the world. Mike participates actively in ISA, is a member of the ICSJWG Industrial Steering Team, and serves on committees that have created Industrial Cybersecurity guidelines and roadmaps in many sectors.
About Michael Firstenberg
Follow Michael Firstenberg
Director of Industrial Security
Waterfall Security
Scott Crow
Senior Account Executive
FoxGuard Solutions
Scott Crow has been in technology and security for over 25 years, working with Fortune 500 companies to build secure systems to enable business efficiency and continuity. He’s been with FoxGuard Solutions working directly with Energy Utilities for 5 years and has spoken on both Cybersecurity and NERC CIP Compliance at NATF, SERC, FRCC, ERCOT and other industry organizations and specializes in helping utilities become more efficient and automation of what is a labor-intensive burden to enable better utilization of constrained resources and ensuring NERC CIP Compliance.
About Scott Crow
Follow Scott Crow
Senior Account Executive
FoxGuard Solutions
Dan Ciarlette
CTS R&D Program Director
Boston Government Services, LLC
About Dan Ciarlette
Follow Dan Ciarlette
CTS R&D Program Director
Boston Government Services, LLC
Mike Baker
Principal Solutions Architect
FoxGuard Solutions
Mr. Baker has a BS degree in Electrical & Computer Engineering and has over 30 years of experience in the design, development, testing and installation of industrial control, physical security, and cyber security systems. Additionally, Mr. Baker has experience in the development of cyber security processes, procedures, and implementation of cyber security controls to comply with US NRC and NERC CIP cyber requirements. Mr. Baker’s specialties include Operational Technology (OT) cyber security, digital Instrumentation and Controls (I&C) systems engineering, requirements engineering, software verification & validation, and communication network design.
About Mike Baker
Follow Mike Baker
Principal Solutions Architect
FoxGuard Solutions
Shannon Bohlt
Senior Cyber Information Assurance Analyst
Arizona Public Service (APS)
Shannon Bohlt is a Senior Cyber Information Assurance Analyst on the Data Protection and Assurance team at Arizona Public Service (APS). In the eight years she has worked within the Cybersecurity department at APS, she has been responsible for general cyber security awareness, internal phishing campaigns, and security application support. Within the Data Protection and Assurance team, she is responsible for supporting various business units by providing guidance and ensuring compliance with privacy laws and internal policies, negotiates contract language between the company and its vendors, and acts as the main subject matter expert when it comes to the company's Data Loss Prevention (DLP) technologies. Shannon has been a key member of the Office 365 project team ensuring that privacy and security controls are implemented in the cloud environment and providing change management training sessions for the organization around these new processes and controls. Shannon holds a BS in Computer Information Systems, BS in Business Administration, and Master of Legal Studies degrees from Arizona State University, as well as an MS in Cybersecurity from Utica College. She also holds the Certified Data Privacy Solutions Engineer (CDPSE) from ISACA.
About Shannon Bohlt
Follow Shannon Bohlt
Senior Cyber Information Assurance Analyst
Arizona Public Service (APS)
Tim Watkins
Lead Application Engineer
SEL
Tim started in avionics in 1993. He began implementing security controls to increase the resiliency of mission critical systems from humans. He later finished his BS in college and subsequently graduated with an MSA from Central Michigan in International Leadership in 2010. Additionally, he graduated at the top of his class in a master’s level Telecommunications and Systems Engineer Course from Fort Gordon in 2004. Following 20 years of DoD experience as a network and cyber engineer, Tim joined Schweitzer Engineering Laboratories, Inc in 2013. He is now a Lead Application Engineer focusing on securing critical control systems and designing defendable architectures for system owners around the world. Tim concentrates on holistically looking at reducing risk at the enterprise and organization level. Ultimately, his expertise will prioritize efforts, increase resiliency, and mature system owner’s plans, policies, and procedures.
About Tim Watkins
Follow Tim Watkins
Lead Application Engineer
SEL
Colin Gordon
Senior Research Engineer
Schweitzer Engineering Laboratories, Inc.
Colin Gordon is a senior research engineer with over a decade of experience at Schweitzer Engineering Laboratories. He is currently active in its Infrastructure Defense division. Colin’s work experience includes the engineering and implementation of cybersecure communication networks and the research and design of embedded cryptographic security controls for risk mitigation and regulatory compliance purposes. Colin joined SEL in January 2008 and holds a bachelor’s degree in computer engineering from the University of Idaho.
About Colin Gordon
Follow Colin Gordon
Senior Research Engineer
Schweitzer Engineering Laboratories, Inc.
Jason McCoy
Director of Concurrent Enrollment and Career Technical Education
Southern Utah University
About Jason McCoy
Follow Jason McCoy
Director of Concurrent Enrollment and Career Technical Education
Southern Utah University
Barbara Hins-Turner
Co-PI
WSU
Barbara Hins Turner serves as Workforce Grants and Contracts Project Manager for the Washington State University Energy Program based in Olympia, WA. She brings 30 years of sector-based workforce development experience to the current U.S. Department of Labor $4 million Building Apprenticeship Systems in Cybersecurity (BASIC) multi state consortium project. Her expertise includes building innovative public/private partnerships that have resulted in securing and successfully managing over $35 million of federal and state workforce training grants. Hins Turner was awarded Executive Director Emeritus of the Pacific Northwest Center of Excellence for Clean Energy, Centralia College, Centralia, WA. Her energy industry legacy work includes developing Portland General Electric’s Corporate University supporting apprenticeship and incumbent worker training programs through a dynamic corporate/college alliance model.
Hins-Turner earned a bachelor’s and master’s degree in Business Administration, Marylhurst University, Portland, Ore.; graduate level certifications as Master Facilitator, Oregon State University; Professional Development, Eastern Oregon University; and International Management, Concordia University, Portland, Ore.
About Barbara Hins-Turner
Follow Barbara Hins-Turner
Co-PI
WSU
Steel McCreery
Utility Communications Application Engineer
OMICRON Electronics
Steel McCreery has thirty-six years of application experience in the area of data communication, automation, training, and cyber security. In 1983 after graduating from Humber College of Applied Arts and Science, Steel began his career in the area of factory automation while employed at various automation equipment manufactures such Reliance Electric, Modicon, GE Fanuc, Omron, and Siemens. During this time Steel’s duties included application design and commissioning of PLC’s, variable speed drive systems, multi axis motion control systems and communications networks. Steel work spanned various industrial segments from mining to automotive and his success developing and delivering automation and communications courses and seminars afforded him the opportunity to develop national automation training centers for Siemens and Omron. Steel joined GE Multilin in 1999 to develop their international training center focused on protective relaying and substation automation. Over the 14 years at GE Multilin Steel’s role expanded into marketing and R&D before accepting an automation role at SEL. Shortly after joining SEL, Steel focused on SEL’s communications and cyber security products ranging from multiplexers, traditional Ethernet switches and security appliances to SDN switches. During this time Steel also had the opportunity to develop and deliver many customer communications seminars and courses. Steel joined Omicron in 2020 where his role’s focuse is on utility communications and cyber security.
About Steel McCreery
Follow Steel McCreery
Utility Communications Application Engineer
OMICRON Electronics
Samuel Chanoski
Technical Relationship Manager, Cybercore Integration Center
Idaho National Laboratory
Sam Chanoski delivers technical leadership, expertise, and strategic insights to Cybercore’s portfolio of multi-million-dollar critical infrastructure security and resilience projects sponsored by the Department of Energy, Department of Homeland Security, and Department of Defense. He influences the development of large, long-term sustained programs for research, development, demonstration, and deployment associated with control system cybersecurity for nationally critical infrastructure, with particular focus on the energy sector.
Prior to joining INL, Sam spent sixteen years working in intentionally diverse positions across the electricity industry including real-time operations and maintenance with three large investor-owned utilities, situation awareness and event analysis with the North American Electric Reliability Corporation, intelligence with Electricity ISAC, and as the global security incident response team leader for a major manufacturer.
Sam’s professional interests include real-time transmission and distribution operations, organizational behavior, control systems cybersecurity, and emergency management and resilience.
About Samuel Chanoski
Follow Samuel Chanoski
Technical Relationship Manager, Cybercore Integration Center
Idaho National Laboratory
Ryan Burkett
Cyber Security Professional
Noblis ESI
About Ryan Burkett
Follow Ryan Burkett
Cyber Security Professional
Noblis ESI
Ali Khan
Director of Cyber Risk Advisory
Conquest Cyber
About Ali Khan
Follow Ali Khan
Director of Cyber Risk Advisory
Conquest Cyber
Steve Parker
President
EnergySec
Steven Parker, CISA, CISSP, is a founding director of EnergySec. He has been engaged in critical infrastructure protection within the electric sector for more than 14 years, including eight years as a senior security staff member at a large west coast utility. He was also one of the original NERC CIP auditors for the WECC region. He has been with EnergySec full-time since 2010.
www.energysec.org
About Steve Parker
Follow Steve Parker
President
EnergySec
Justin Quevedo
Engineer
Tacoma Power
Justin Quevedo has worked with Tacoma Power in Washington State for 21 years. He has managed cyber systems subject to NERC CIP compliance for nine years. He supervises a team of engineers providing IT infrastructure and Systems Administration support to Tacoma Power’s IT/OT control systems. Justin’s area of specialty is baseline and configuration management.
About Justin Quevedo
Follow Justin Quevedo
Engineer
Tacoma Power
Matt Caves
Senior Manager, Legal & Regulatory Compliance
Western Farmers Electric Cooperative
About Matt Caves
Follow Matt Caves
Senior Manager, Legal & Regulatory Compliance
Western Farmers Electric Cooperative
David White
President & Co-founder
David White leads Axio’s innovation team and federal team and is actively involved with clients deploying the Axio360 software solution. He co-developed Axio’s cyber risk management process and continues to refine the assessment, risk modeling, threat analysis, insurance analysis, and software solution that comprise that process. He has deployed the Axio360 solution with customers within the energy, utilities, financial, manufacturing, pharma, medical device, professional sports, and entertainment sectors. He served in a leadership role in the development of the Cybersecurity Capability Maturity Model (C2M2) versions 1 and 2 in support of the US Department of Energy and is a frequent speaker at board meetings, conferences, webinars, and other events. David co-authored the CERT Resilience Management Model (CERT-RMM) and was the chief architect for the Smart Grid Maturity Model (SGMM).
About David White
Follow David White
President & Co-founder
Manuel Vazquez
Critical Infrastructure Security Researcher
Idaho
About Manuel Vazquez
Follow Manuel Vazquez
Critical Infrastructure Security Researcher
Idaho
Michael Cutshaw
Software Developer/Analyst
Idaho National Laboratory
Michael Cutshaw obtained his Master’s in Computer Science with a specialization in Cybersecurity from Dakota State University, and now works with Idaho National Laboratory in the areas of reverse engineering, cyber security, software development, and machine learning. Michael is a technology and security enthusiast and enjoys the topics both on and off the clock.
About Michael Cutshaw
Follow Michael Cutshaw
Software Developer/Analyst
Idaho National Laboratory
Greer Galloway
Software Developer and Analyst
Idaho National Laboratory – Critical Infrastructure Protection and Resilience
Greer Galloway graduated with a B.S in Computer Science from Brigham Young University Idaho in 2020. She then started work at Idaho National Laboratory researching malware and creating processes to make threat response plans. Greer has experience creating and analyzing with Structured Threat Information Expression (STIX) supporting many projects. She has developed web and xml scrapers and worked heavily on the latest release of Structured Threat Intelligence Graph (STIG).
About Greer Galloway
Follow Greer Galloway
Software Developer and Analyst
Idaho National Laboratory – Critical Infrastructure Protection and Resilience
Zach Priest
Infrastructure Security Researcher
Idaho National Laboratory | Infrastructure Security
Short Biography: Three years with Idaho National Laboratory as an Infrastructure Security Researcher, with focusing on software development and tooling for various research projects. An avid lover of technology, security and electronics, Zach received his Bachelor’s in Computer Science/Cybersecurity from Boise State University, and is currently taking graduate courses in Computer Science from University of Idaho.
About Zach Priest
Follow Zach Priest
Infrastructure Security Researcher
Idaho National Laboratory | Infrastructure Security
Christian O. Hunt
Principal Security Engineer
Copado
Christian O. Hunt has a technical career spanning over 30 years. He has developed security solutions for various private sector and government organizations. He is a former vulnerability researcher and long-time hacker specializing in reverse-engineering, malware analysis and esoteric hardware security with a focus on RF-based side-channel attacks. Based on his interest in RF, side-channel attacks, and signals analysis, he performed successful research for the DARPA Cyber FastTrack program involving the effects of electro-magnetic injection on imaging devices. . He has presented at various industry conferences such as Borderless Cyber, Bulletproof Hosting and Botnet Conference (Germany) BAE Systems (stuxnet), and Remote Monitoring and Control. The latter involved a talk on security in automated industrial systems (SCADA) and concluded with a demonstration of a custom-built microcontroller-based demonstration system showing the potential hazards of insecure automated processes. Mr. Hunt helped to create several fraud analysis and security monitoring systems while a member of the Technical Staff of the Global Information Security organization at eBay. Mr. Hunt is currently a Principal Security Engineer with Copado. He served as a subject matter expert on the California Energy Systems for the 21st Century project (CES-21) which was overseen by the Department of Energy, Department of Homeland Security, Idaho National Labs, Lawrence Livermore National Laboratory, and the California Public Utilities Commission.He is actively involved in several OASIS standards as well as advanced cybersecurity research and development projects in the critical infrastructure domain. He currently resides in a laboratory in Northern California with his wife, two dogs, three cats, seven chickens, multiple faraday cages, and a growing aluminum farm.
About Christian O. Hunt
Follow Christian O. Hunt
Principal Security Engineer
Copado
Michael Colao
Manager of Data Protection and Assurance
Arizona Public Services
Michael Colao has been the Manager of Data Protection and Assurance within Arizona Public Services’ (APS) Cybersecurity group since 2014. His team is responsible for the governance of internal controls framework supporting the protection of APS’ personally identifiable information of customers and employees, Critical Infrastructure Protection (CIP), Sarbanes Oxley (SOX) and Export Compliance. The ongoing monitoring and evolving of a data protection program, along with its training and awareness are focal points to the success of his team. Data Loss Prevention (DLP) has become a major pillar in his team’s multi facet approach to protecting highly confidential information in APS’ inventory, in both on-prem and cloud infrastructure. Prior to joining APS, Colao spent the better part of 15 years in operational business and finance roles beginning with Deloitte, LLP. He holds a certification as a certified information privacy professional (CIPP/US) from the International Association of Privacy Professionals (IAPP). Originally from upstate New York, Michael has a BBA from Niagara University.
About Michael Colao
Follow Michael Colao
Manager of Data Protection and Assurance
Arizona Public Services
Nick Noll
Director of Business Development
Fortress Information Security
Nick Noll is the Director of Business Development at Fortress Information Security. With over 20 years of experience in defining successful go-to-market strategies, Nick mobilizes teams and aligns resources to achieve growth objectives for tech brands. Prior to working at Fortress, Nick worked at Symantec in Federal Civilian Sales. Nick values his faith, his wife and 8 children, and enjoys riding his Honda Shadow.
https://fortressinfosec.com/
About Nick Noll
Follow Nick Noll
Director of Business Development
Fortress Information Security
Robert Johnson
President
Cimcor
Robert E. Johnson, III is the President/CEO and co-founder of Cimcor, Inc. Founded in 1997, Cimcor develops cutting-edge IT security software that takes real-time file change detection to the next level by offering instant remediation of changes. Mr. Johnson has led the development of multiple commercial software packages and several patented and patent-pending technologies.
https://www.cimcor.com/
About Robert Johnson
Follow Robert Johnson
President
Cimcor
Ben Miller
VP, Professional Services and R&D
Dragos, Inc.
Ben Miller is Vice President of Professional Services and R&D at the industrial cyber security company Dragos, Inc. where he leads a team of analysts responding to OT/ICS intrusions and delivery of assessments, hunts, training, and research efforts to improve OT/ICS defenses and security.
Prior to joining Dragos, Ben began his career in the Electric sector. First at Constellation Energy Group where he built their monitoring and response team and then at NERC where he assisted in standing up the Electricity ISAC and analysis of cyber threats and vulnerabilities.
Ben is an accomplished speaker in various venues including BlackHat, RSA, SANS, S4, ICSJWG, and others. In 2017 he was recognized as a 2017 Difference Maker Award Winner by SANS for his contributions to the electricity sector.
www.dragos.com
About Ben Miller
Follow Ben Miller
VP, Professional Services and R&D
Dragos, Inc.
Ted Rassieur
Senior Engagement Manager
Tripwire
Ted Rassieur has been in the IT industry for 18 years and worked with Tripwire for 6 years in the Customer Services group. In this time with Tripwire Ted has worked with 100’s of customers to help solve compliance and security challenges. In his current role, Ted is responsible for scoping new services projects as well as solution implementation. These duties require mapping tools, team skills and best practices to customer needs for creating workable solutions. Ted also contributes to advancing Tripwire’s solution for NERC regulated customers. Prior to work in compliance and security, Ted worked in software configuration management.
About Ted Rassieur
Follow Ted Rassieur
Senior Engagement Manager
Tripwire
Robin Berthier
CEO
Network Perception
Dr Robin Berthier is the co-founder and CEO of Network Perception. He has over 15 years experience in the design and development of network security technologies. He was part of the University of Illinois research team that originally developed the technology that drives the Network Perception Platform. He received his PhD in the field of cybersecurity from the University of Maryland College Park before joining the Information Trust Institute (ITI) at the University of Illinois at Urbana-Champaign (UIUC) as a Research Scientist.
About Robin Berthier
Follow Robin Berthier
CEO
Network Perception
