The International Society of Automation (ISA) and ISACA will co-host a July 20th webinar on the importance of integrating information technology (IT) and operational technology (OT) in protecting industrial automation and control systems (IACS) from cyberattack.

This no-cost webinar — IT/OT Convergence and Industrial Cybersecurity — will be held Wednesday, 20 July 2016 at 12 p.m. (EDT), 11 a.m. (CDT), 9 a.m. (PDT) and 16:00 (UTC). The webinar will feature two distinguished speakers: Eric C. Cosman, Co-Chair of the ISA99 Committee and an expert in developing IACS security standards and practices; and Marcus Sachs, Senior Vice President and Chief Security Officer at North American Electric Reliability Corporation who directs security risk assessment and mitigation initiatives to protect critical electricity infrastructure. Frank Schettini, Chief Innovation Officer at ISACA, will serve as moderator.

IT has long referred to the application of computers to store, retrieve, transmit and manipulate data for traditional business-oriented processes and solutions. OT is increasingly being used to refer to the application of information technology in an operations context, particularly in the management and protection of IACS. IACS serve as the operational underpinnings of industrial facilities and critical infrastructure, such as utilities, water and wastewater facilities, and financial, transportation and communications networks.

Understanding the distinctions between IT and OT, and how they can work together is particularly important in supporting the safe, effective operation of IACS and protecting these systems from potentially destructive industrial cyberattack.

This webinar is an important step forward in helping to broaden awareness of these key issues and bridge the gaps between IT and OT knowledge and perspectives. Webinar attendees will learn:

• How the IT/OT convergence has been developing over the years, and how it has shaped responses in many areas
• How the convergence is reflected in international standards for industrial cybersecurity, such as ISA/IEC 62443
• The fundamental concepts that form the basis of the ISA/IEC 62443 standards and practices
• The implications for owners and operators of critical infrastructure and other industrial facilities
• The resources available for those developing an industrial cybersecurity management system

Note: A new white paper co-developed by ISA and ISACA, titled “The Merging of Cybersecurity and Operational Technology, will be made available following the webinar.

About the moderator and presenters on IT/OT industrial cybersecurity

Frank Schettini (moderator)
As Chief Information Officer at ISACA, Frank Schettini is responsible for spearheading innovation across the ISACA organization through thought and product leadership, and proposing and implementing innovative solutions. He places particular emphasis on business process innovation and improvement, enterprise technology strategy and leadership, and product development and thought leadership (publications/periodicals) for cybersecurity, IT audit, IT governance, risk management, and certifications

Eric C. Cosman (presenter)
With more than 35 years of experience in the process industries, Eric C. Cosman provides consulting services specifically focused on information technology solutions in operations and engineering. A leader in the development of standards and practices for industrial control systems security, he has held positions in process engineering, process systems software development, telecommunications, IT operations, and automation architecture. Cosman is a founding member and current co-chair of the ISA99 committee on industrial automation and control systems security, and serves as a member of the ISA Executive Board.

Marcus Sachs (presenter) 
As Senior Vice President and Chief Security Officer at North American Electric Reliability Corporation in Washington, D.C., Marcus Sachs oversees the Electricity Information Sharing and Analysis Center (E-ISAC), and directs security risk assessment and mitigation initiatives to protect critical electricity infrastructure across North America.  A retired US Army officer, Sachs is a former director of the SANS Internet Storm Center and former Vice President of National Security Policy at Verizon. He also served as a White House appointee in the George W. Bush administration. Sachs holds degrees in civil engineering; science and technology commercialization; and computer science and is working toward a doctorate degree in public policy.

Don’t miss this highly informative webinar, to be held Wednesday, 20 July 2016 at 12 p.m. (EDT), 11 a.m. (CDT), 9 a.m. (PDT) and 16:00 (UTC).  Click here to register. For answers to any questions or to gain further information, contact Lisa Winkler at lwinkler@isaca.org.

As an independent, nonprofit, global association, ISACA engages in the development, adoption and use of globally accepted, industry-leading knowledge and practices for information systems. Previously known as the Information Systems Audit and Control Association, ISACA now goes by its acronym only, to reflect the broad range of IT governance professionals it serves.

ISACA provides practical guidance, benchmarks and other effective tools for all enterprises that use information systems. Through its comprehensive guidance and services, ISACA defines the roles of information systems governance, security, audit and assurance professionals worldwide.

ISACA was incorporated in 1969 by a small group of individuals who recognized a need for a centralized source of information and guidance in the growing field of auditing controls for computer systems. Today, ISACA serves 140,000 professionals in 180 countries. For more information, visit www.isaca.org.