Wednesday, 30 July 2014
Understanding and managing cyber risk Key Note discussion from the Department of Energy
"Realizing the Roadmap Vision: Ensuring Security and Resilience in Today's Changing World".
Abstract - The roadmap for secure energy delivery systems 2020 vision is that "Systems will be designed, installed, operated, and maintained to survive a cyber incident while sustaining critical energy delivery functions." Today organizations are modernizing infrastructure, automating processes, becoming more connected, and increasingly leveraging telecommunications. Understanding and managing cyber risk is KEY to ensuring secure and resilient infrastructure, including information and operation technology (IT/OT), the role of vendors and external partners, and engaging corporate governance in addressing cyber risks. Mrs. Moore will highlight:
- Evolving cybersecurity challenges faced by the sector
- Policy, operational, and cultural considerations for managing cyber risks and ensuring resilience in our changing world
- DOE's efforts with industry to support realizing the roadmap vision, such as: R&D projects, Cybersecurity Capability Maturity Model (C2M2), and Cybersecurity Procurement Language for Energy Delivery Systems
- Executive Order 13636 "Improving Critical Infrastructure Cybersecurity", including the importance of information sharing and using the NIST Cybersecurity Framework
"As a Senior Policy Advisor within the Department of Energy (DOE), Samara Moore is the Cybersecurity Program Manager responsible for the cyber policy and oversight for the programs within the Office of the Under Secretary for Science and Energy, and has a leadership role in DOE's efforts to support security and resilience for the Energy sector. In June 2014, she returned to DOE from the White House National Security Council Staff, where she was the Director for Cybersecurity Critical Infrastructure Protection coordinating across the federal government and partnering with the private sector on information sharing, capability development, and executive engagement efforts to strengthen cybersecurity for all critical infrastructure sectors.
Prior to joining the White House, Mrs. Moore worked as the Senior Information Technology (IT) and Cybersecurity Advisor at the Department of Energy focused on cybersecurity for the Energy Sector and managing public-private partnerships. For nearly 5 years at DOE, she also led the cybersecurity program for internal Energy Program offices and played a key role in IT and cybersecurity governance for the DOE. While at DOE, Mrs. Moore led the development of the Electricity Sector Cybersecurity Capability Maturity Model which is being used both domestically and internationally. Prior to joining the DOE, Mrs. Moore worked as the Director of the Office of Management and Data Systems for the Occupational Safety and Health Administration, and for Deloitte Enterprise Risk Services.
Mrs. Moore has worked as a consultant, systems engineer, and IT manager, and has performed security assessments, managed security operations and security planning for government agencies as well as private industry. Mrs. Moore received a bachelor’s degree from Virginia Tech in Accounting and Information Systems and a master’s degree from the George Washington University in Engineering Management Systems Engineering, where she is currently an adjunct professor."