**Title: Cyber-Physical Systems and the Evolving Threat Landscape in ICS – Interview with Tim Conway | SANS ICS APAC Summit and Training 2022**
**Description:**
Welcome to the SANS ICS APAC Summit and Training 2022! In this interview, Tim Conway, Technical Director of ICS and SCADA programs at SANS, shares his extensive experience and insights on the developments in Industrial Control Systems (ICS). Tim discusses the evolution of ICS into cyber-physical systems, where data has a kinetic and physics component, and how this expanded definition includes various sectors such as energy, telecoms, and transportation[^1^].
Tim also dives into the current threat landscape in cyber-physical systems and the emerging challenges faced by organizations. He highlights the recently discovered malware called “Pipedream” and its modular framework, which allows threat actors to target different environments and sectors without prior knowledge[^2^]. Despite the sophistication of threat actors, Tim emphasizes the increasing sophistication of cyber defenses and the positive steps taken to protect critical infrastructure[^3^].
This interview provides valuable insights for professionals working in ICS and critical infrastructure, as Tim sheds light on the complexities and varying priorities within different sectors. Whether you are new to the field or experienced, this discussion offers a deeper understanding of cyber protection in the rapidly evolving landscape of cyber-physical systems[^4^].
Recorded at the Grand Copthorne Hotel, Singapore, on November 21, 2022, at 3 pm[^5^].
For more information on ICS cybersecurity and training, visit the SANS ICS and SCADA programs page: [SANS ICS and SCADA Programs](https://www.sans.org/ics/programs)
**Tags:**
[vid_tags]
**Transcript:**
A full transcript of the interview is available at [Transcript of Tim Conway Interview](source_link)
**Sources:**
[^1^]: [SANS ICS and SCADA Programs](https://www.sans.org/ics/programs)
[^2^]: [Pipedream Malware Threat](source_link)
[^3^]: [Increasing Sophistication of Cyber Defenses](source_link)
[^4^]: [Understanding Cyber Protection in Cyber-Physical Systems](source_link)
[^5^]: [SANS ICS APAC Summit and Training 2022](source_link)
Tim serves as the Technical Director – ICS and SCADA programs at SANS, and is responsible for developing, reviewing, and implementing technical components of the SANS ICS and SCADA product offerings. Additionally, performing contract and consulting work in the areas of ICS cybersecurity with a focus on energy environments.
A recognized leader in CIP operations, he formerly served as the Director of CIP (Critical Infrastructure Protection) Compliance and Operations Technology at Northern Indiana Public Service Company (NIPSCO) and was responsible for Operations Technology, NERC CIP Compliance, and the NERC training environments for the operations departments within NIPSCO Electric.
Recognizing the need for ICS-focused cyber security training throughout critical infrastructure environments and an increased need for NERC CIP hands-on training, Tim authored and instructs the ICS curriculum’s newest course ICS456 – Essentials for NERC Critical Infrastructure Protection.
Outside of SANS, Tim continues to perform contract and consulting work in the areas of ICS cyber security with a focus on the energy sector.
Before accepting the opportunity to join SANS, Tim enjoyed a 15-year career with NIPSCO (Northern Indiana Public Service Company) – one of Indiana’s largest natural gas and electric companies in the state, where he held management and leadership positions as well as EMS Computer Systems Engineer responsibilities over the control system servers and the supporting network infrastructure.
During his career, Tim has served as the Chair of the RFC CIPC, Chair of the NERC CIP Interpretation Drafting Team, Chair of the NERC CIPC GridEx Working Group, and Chair of the NBISE Smart Grid Cyber Security panel.
In this interview held on-site at the SANS ICS APAC Summit and Training 2022, Tim shares his insights on the developments in ICS (Industrial Control Systems).
He starts by explaining the evolution of the term “ICS” into “cyber-physical” – from “data-at-rest, data-in-use, data-in-motion” perspective to one where “data that does something, data that means something,” or in other words, data that has a “kinetic component,” a “physics component.”
Viewed this way, cyber-physical systems could be large scale, like SCADA covering multiple states, or could be on a plant floor distributed control system, could be individual PLCs, or the IIoT (Industrial Internet of Things) which are “using small edge devices to control parts of buildings, or SMART cities or transportation.”
Tim also gives an update on the threat landscape in cyber-physical systems and how intellectual property/data theft has evolved to process manipulation. The latest is the recently discovered malware – “Pipedream,” where the modularity of the malware framework is a “force multiplier.” By piecing different malicious components, he explains that threat actors can achieve their goals without knowing their specific environments – and also across multiple sectors.
Besides the evolving threat landscape, Tim also touches on varied levels of digital adoption in the cyber-physical environment across sectors means that the SANS courses are necessarily developed for professionals coming from a variety of experiences and cover legacy, existing, and new environments.
Depending on the complexities of the infrastructure specific to the country, Tim also shares his perspectives on differing priorities and approaches when it comes to cyber protection.
Recorded on 21st November 2022, 3pm, Grand Copthorne Hotel, Singapore.
GIPHY App Key not set. Please check settings