Join Us for the Grand Finale of "100 Days of Cybersecurity for Transportation: Planes, Trains & Automobiles,and Boats Too!" As we reach the end of our educational journey through "100 Days of Cybersecurity for Transportation," we invite you to mark your calendars and be part of an extraordinary event that promises to be the highlight of the series. Distinguished Keynote Speaker: We are thrilled to announce that our grand finale will feature a keynote address by none other than TSA Administrator, David Pekoske. With a wealth of experience and a deep understanding of the cybersecurity landscape in transportation, Mr. Pekoske's insights are sure to leave a lasting impression. David Pekoske's tenure as Transportation Security Administration's seventh administrator commenced with his confirmation by the U.S. Senate in August 2017. Recognized for his exceptional leadership, he was reconfirmed for a second term in September 2022, testament to his unwavering commitment to security and progress. With oversight of a workforce surpassing 60,000 employees, Pekoske has been at the forefront of security operations at nearly 440 airports across the United States. As leader of the TSA, he has also spearheaded the agency's role as lead federal entity for safeguarding highways, railroads, mass transit systems, and pipelines. Under his guidance, TSA has bolstered transportation security through dynamic partnerships, a culture of innovation, and cultivation of a dedicated workforce. https://www.linkedin.com/in/david-p-22838833/ Engaging Panel Discussion: Relive the brilliance of our top-rated speakers from the past 100 days as they reunite for a captivating panel discussion. This is your chance to ask questions, share thoughts, and be part of a dynamic exchange of ideas. Panelists: Gary Kessler, Maritime Cysecurity Consultant Jonathan Pollet, Founder & Exec. Dir. of Red Tiger Security Olivier de Visscher, Head of Railway Industrial Cybersecurity Expleo Group. This event is sponsored by Bridewell and QNet Security Originally aired: September 19, 2023

Real-life examples of security incidents that have affected the Transportation sector, hacking techniques used in Penetration Testing ICS and IoT, new wireless attack vectors, and tips for keeping availability and uptime as close to 100% as possible Key Take-Aways for Attendees 1. Understand how vulnerabilities and security gaps within the Transportation Sector has allowed cyber incidents to disrupt service by dissecting several real-world cases 2. Discover mistakes and security findings disclosed from assessments and penetration tests performed on ICS/SCADA systems in the Transportation Sector to avoid making those same mistakes on mission critical networks and systems 3. Learn about new wireless attack vectors and inexpensive hardware available on Amazon that can be used to target wireless systems used in the Rail Industry 4. Participate in discussions at the end of the session on how best to secure critical ICS and IoT systems used in the Rail Sector to avoid impacts to availability of service Speaker: Jonathan Pollet Jonathan Pollet, Founder and CEO of Red Tiger Security has over 20 years of experience in Industrial Process Control Systems and Cyber Security. After graduating from the University of New Orleans in Electrical Engineering, he was hired by Chevron and designed and implemented PLC and SCADA systems for onshore and offshore processing facilities in the 1990s. In 2001 he began to publish several white papers that exposed the need for security for Industrial Control Systems (ICS). He is one of the initial charter members of the ISA99/IEC62443 standard, assisted in the drafting of several NERC CIP standards and advisories, and was also on the drafting team for the GIAC GICSP certification. He is still active in the research of vulnerabilities within real-time ICS systems today. Pollet and his team have conducted over 400 security assessments of live Industrial Control Systems around the world and has trained over 3500 professionals with their ICS/SCADA Security Training Courses. Originally aired: August 9, 2023

What happens when you need to protect a pipeline? It is the lifeblood of our economy. Just as much as our highways. However, due to where they are deployed, they can be hard to get to and protect. More so, when you do deploy cybersecurity systems on them, how do you make sure you have properly operationalized them? What happens when they go stale? Why do they go stale? How do you operationalize OT cyber security where it is used and maintained? Speaker: James Cabe, Senior Director of Alliances and Strategic Sales at ZPE Systems https://www.linkedin.com/in/jamescabe/ "I have over 30 years of experience in operational and information technology, security, product development, networking, telecommunications, and technical sales. I am driven and passionate about making this a better world through responsible technology. I try to share that passion with everyone I meet. I have a strong track record of leadership and a proven ability to seek out challenges in fast paced, high growth environments. I have an entrepreneurial spirit and like to drive effective implementation of strategy, rapid revenue growth and profitability. This requires a flexible blend of technical and business development skills, and the ability to balance strategic and tactical initiatives to build shareholder value. I have no less than two successful exits for startups and hope to continue to do more." https://www.linkedin.com/in/jamescabe/ Originally aired: August 2, 2023

Please join us for a discussion of the cybersecurity challenges faced by fleets (motor freight carriers of various kinds). We will explain what fleets are, what they do and what could impact their business. The parallels between the ICS and trucking cybersecurity will be highlighted and the differences will be expanded upon in more detail. Attendees will leave with a better understanding of another critical piece of our infrastructure: trucking. Speaker: Ben Gardiner, Senior Cybersecurity Research Engineer at the National Motor Freight Traffic Association, Inc . A security engineer and reverser with career experience in embedded systems design and an education in Applied Math & Stats. Public speaker, trainer and open source contributor. Proven record of innovating through big-picture thinking and clear communication. Passionate about attack trees, CTFs and teaching others. https://www.linkedin.com/in/ben0l0gardiner/ Originally aired July 31, 2023

The Global Positioning System (GPS) is the most widely-used global navigation satellite system. GPS provide smuch more than navigation services and telling you where you are; it is also essential for the timing of the digital networks that comprise the critical infrastructures essential to our way of life. The Automatic Identification System (AIS) is essential for the situational awareness of vessels at sea and management by maritime authorities and regulators. Both GPS and AIS are subject to attacks where their signals are either spoofed or jammed. This talk will discuss some of the reasons for which these attacks are occuring and the geopolitical implications of such events. Speaker: Gary Kessler, Ph.D., CISSP is a retired professor of cybersecurity. Co-author of "Maritime Cybersecurity: A Guide for Leaders and Managers," he is currently the president and janitor of Gary Kessler Associates (providing maritime cybersecurity research, consulting, and training services), a principal consultant at Fathom5, a non-resident senior fellow at the Atlantic Council, on the advisory board of Cydome, and the Chief of the Cybersecurity Prevention Operations Division of the USCG Auxiliary Cyber Augmentation program (AUXCYBER). Gary has been an information technology and computer security practitioner since the late-1970s, including nearly 20 years in digital forensics and more than 20 years in higher education. His current primary areas of research are related to the weaponization of AIS/GPS, and tools for hacking and spoofing AIS. Gary is the author of more than 75 papers, articles, books, and book chapters related to cybersecurity, cryptography, steganography, network technologies, computer and mobile forensics, curriculum development, and more, and has been a speaker at conferences internationally for more than 30 years. Gary lives in Ormond Beach, Florida, is a SCUBA instructor, and holds a 50GT captains license. Originally aired: July 12, 2023

Join us as Jo Dalton relates appliance hacks and cases of security failing to attacks on extremely common and widespread devices. She also shares multiple recommendations to increase security outcomes of procurement processes. Maritime, Rail and Aviation have all struggled with the risks created by connectivity. The pandemic has only served to highlight these, and place more pressure on Manufacturing and Food Supply as well. We’re seeing vulnerable PLC cloud management platforms, hard coded credentials in 3rd party devices, and ongoing confusion over responsibility. We need to get ahead of the curve and embed security before it becomes a problem. Speaker: Jo Dalton is an Associate Partner at Pen Test Partners. About Jo: "AboutAbout I literally LOVE my work! I have worked in Cyber Security for over 15 years and have seen how fast this industry evolves over and over again – it’s definitely the sector that never sleeps. I’m passionate about tech & cyber amongst many other things." https://www.linkedin.com/in/jdalton1/ Originally aired: July 19, 2023

This event is part of (CS)²AI's 100 Days of Transportation Cyber Security! With a major role to play in the success of a global sports event such as the world cup, the stakes don't get any higher and there was a race against time to setup an effective OT SOC for a national rail company with the clear mandate to transport millions of passengers safely and securely while being under global spotlight.  In this session we shall explain the journey towards building the Middle East 1st OT rail security operations centers and one of the early ones worldwide. The session will also discuss the lessons learned and what was the value realized by such a huge undertaking. Speaker: Omar Sherin, Partner at Ernst & Young (EY) Digital Solutions and Cyber Security https://www.linkedin.com/in/osherin/ Guest Host: Justin Searle Originally Aired: June 7, 2023

This event is part of (CS)²AI's 100 Days of Transportation Cyber Security! Airport cyber (IT, OT, etc.) security and aviation (physical) security have often been treated separately and often by different airport organizations. • International standards and increased digitalization and connectivity are helping to transform the service available to customers and improving everything from efficiency to reliability for regulated operators. • The interconnectivity between information technology and other processes shows that aviation security and cybersecurity should not be in individual silos: • They need to be integrated, and cybersecurity vulnerabilities need to be considered in the AVSEC risk assessment process. • There is a need to converge cybersecurity and AVSEC programs. Objectives • Learn the importance of the convergence of physical and cybersecurity • Understand the cyber threats to airport aviation security • Understand the challenges in integrating cybersecurity in an airport security program • Learn about international approaches to aviation cybersecurity Speaker: Shawn Goudge, Aviation Security Specialist and Regulatory Specialist - Formerly with Transport Canada AVSEC, Former Regional Manager AVSEC Africa and Middle East with IATA. https://www.linkedin.com/in/shawn-goudge-cpp-avsec-pm-84250213/ Originally aired: May 31, 2023

Our first (CS)²AI Online™ Symposium of the year will be all about transportation sector cyber security! Join keynote speaker, John Pistole, former TSA Administrator & Deputy Director of the FBI, as he shares perspectives on the threat matrix facing our connected infrastructure underpinning almost all commerce of goods and services. We'll be featuring panels on automotive, rail, and shipping security as well. In addition to our esteemed keynote speaker, our panelists currently include: * Antwan Banks- Dir. of Enterprise Cyber Security at the National Motor Freight Traffic Association https://www.linkedin.com/in/antwan-banks-cism-cissp-cisa-ceh-cciso-29465314/ * Michael Clifford - Principal Researcher, Connected Car Security at Toyota InfoTech Labs https://www.linkedin.com/in/michael-clifford-90651814/ * Nikhil Bogam – Technical Lead at Faurecia https://www.linkedin.com/in/nikhil-bogam-b6986317/ * Omar Sherin - Partner and Cyber Security Dir.(OT) at Ernst & Young - MENA Region https://www.linkedin.com/in/osherin/ * Miki Shifman - Co-Founder & CTO at Cylus https://www.linkedin.com/in/miki-shifman-5a5756123/ * Shawn Goudge - Sr. Security Specialist at The Calgary Airport Authority https://www.linkedin.com/in/shawn-goudge-cpp-avsec-pm-84250213/ * Barbara Grofe - Prin. Security Architect, Security and Space Range Designer , Researcher & Quantum Enthusiast. Chief Research Fellow at the Institute for Cyber and Space Research https://www.linkedin.com/in/barbaragrofeitconsultant/ * Jonathan Pollet - Founder & CEO of Red Tiger Security https://www.linkedin.com/in/jonathanpollet/ * Gary Kessler - Adv. Board Member at Cydome, Sr. Fellow at Atlantic Council, Prin. Consultant at Fathom5, Gary Kessler Associates https://www.linkedin.com/in/garykessler/ James Cabe-Co-Founder of Sensability.io and Director of Architecture Global Alliances at ZPE Systems https://www.linkedin.com/in/jamescabe This event is sponsored by Fortinet originally aired: May 17, 2023