DOCSLIB.ORG

Essence) Software Defined Network to Assist Small Electric Cooperatives with Limited Resources for Securing Utility Operational Networks

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Essence) Software Defined Network to Assist Small Electric Cooperatives with Limited Resources for Securing Utility Operational Networks Energy Sector Security Appliances in a System for Intelligent Learning Network Configuration Management and Monitoring (Essence) Software defined network to assist small electric cooperatives with limited resources for securing utility operational networks Background Project Description Benefits Utilities of all sizes are faced with the The Essence project is developing • Provides electric cooperatives with challenge of configuring, managing, tools that facilitate more secure cybersecurity tools that emphasize the monitoring, and securing their information operational network management. “human factor”: technology that helps technology and operational technology SDN will provide a solution to smaller utilities and electric (IT and OT) networks; but the challenge assist cooperatives with mapping cooperatives, with limited resources, to more easily design and manage more is more acute for small utilities and their networks, analyzing traffic, secure operational networks electric cooperatives with limited resources and learning expected traffic flow • and personnel. As the electric industry to better inform human operators. Detects zero-day exploits increasingly migrates utility IT and OT • Integrates detection with methods and Traditional approaches to cybersecurity systems to virtualization and cloud- tools for remediation have been largely prescriptive in the • Provides real-time cybersecurity that is managed services, these small electric sense that a series of experts defines tests cooperatives could benefit from shared aware of power grid operations to detect malware and suspicious solutions that keep up with these trends. • communications. The effectiveness of Provides flexible and reliable development and enforcement of utility New solutions can further take such systems depends on a long security policies advantage of emerging software defined sequence of individuals all doing their • Uses dynamic, role-based access networking (SDN) capabilities to jobs perfectly, ranging from experts in control automate the network response to a cybersecurity forensics to utility staff • Prevents malicious network traffic cyber compromise. SDN automates who maintain firewalls. The Essence secure operational network management project is focusing on systems that are • Simplifies security reporting and while reducing the effort and risk reactive, detecting potential threats by compliance tasks for utility operational networks associated with manual processes. Small learning normal operational patterns electric cooperatives could leverage this (using machine intelligence) and Partners technology to provide stronger network monitoring for anomalies. security and to manage operational and • National Rural Electric Cooperative Essence is providing the ability to Association back office networks. update a utility’s security policy as • Honeywell Barriers business needs and cyber threats evolve, while ensuring that changes • Carnegie Mellon University • Small utilities and electric • Pacific Northwest National Laboratory cooperatives have limited resources conform to a utility’s security for managing/securing networks. policy. By using utility protocols • Cigital, Inc. • A “reactive” approach to detecting (e.g., MultiSpeak, DNP3), filtering threats is new and unfamiliar. rules are applied to detect and • Quantifying return on cybersecurity prevent malicious operational investments is challenging. network traffic. Abstraction model of the Essence system Technical Objectives Phase 2: Refine System Performance End Results The project is developing tools that • Test the improved version of the Project results will include the following: facilitate more secure operational Essence system, based on the Phase 1 • network management in two phases. results from several utilities with Automated tools for learning what normal utility operations look like Phase 1: Develop and Test System different technologies and modus operandi • Automated tools for detecting potential • Develop a fully operational system • Refine system performance and breaches • Test the system’s ability to capture traffic-handling capabilities as • Automated software defined network data at realistic volumes, train a appropriate model of “normal” communications management tools to isolate and perform traffic, and detect anomalies with an graceful degradation of compromised communication channels acceptable level of false positive and false negative findings; conduct tests at a small number of utilities at lower traffic volumes November 2014 Cybersecurity for Energy Delivery Systems (CEDS) Contact Information: For More Information: CEDS projects are funded through the Department of Energy’s (DOE) Carol Hawk Craig Miller • http://energy.gov/oe/technology- Office of Electricity Delivery and Energy Reliability (OE) research and Program Manager Chief Scientist, National Rural development/energy-delivery- development (R&D) program, which aims to enhance the reliability and DOE OE R&D Electric Cooperative Association systems-cybersecurity resilience of the nation’s energy infrastructure by reducing the risk of 202-586-3247 703-626-9683 • www.controlsystemsroadmap.net energy disruptions due to cyber attacks. [email protected] [email protected] .
Load more

Recommended publications
  • What Is a Managed Services Provider Or MSP?
    What Is a Managed Services Provider or MSP? Amy Luby, IT Channel Evangelist Acronis [email protected] Dual headquarters in Switzerland and Singapore Dual headquarters in Switzerland and Singapore 1 Introduction Dual headquarters in Switzerland and Singapore 2 Introduction 26 Years in IT Channel Former MSP, Master MSP CompTIA Community Member: Managed Services, Security, Emerging Tech ASCII Board Member Awards: • CRN’s Channel Chief & Women of the Channel Awards • Forrester top 100 Most Influential in the Channel Amy Luby • MSP Mentor Top 250 Influencers & Top 100 Global MSPs Channel Chief Evangelist, • SMB Nation’s SMB 150 Acronis • COMPTIA’s Industry Leadership Award Dual headquarters in Switzerland and Singapore 3 State of the Channel Dual headquarters in Switzerland and Singapore 4 State of the MSP Channel 75% of world trade flows indirectly 90% of IT trade flows indirectly through the Channels Dual headquarters in Switzerland and Singapore 5 Global IT Spending in 2020 2% 20% 3% 7% 32% 14% 5% The Global Information Technology Industry: 6% $5.2 Trillion 11% Estimated 2020 spending at constant currency. Encompasses hardware, software, services and telecommunications Source: IDC Dual headquarters in Switzerland and Singapore 6 What is a Managed Services Provider? A Managed Service Provider (MSP) is a company that remotely manages their client's IT infrastructure and devices, on a proactive basis, under a subscription model. Proactive IT Subscription Management Model MSP Dual headquarters in Switzerland and Singapore 7 How Many MSPs?
    [Show full text]
  • Are Cloud Managed Services the Right Financial Choice for Your Business?
    Are Cloud Managed Services The Right Financial Choice for Your Business? A Stratecast Executive Brief Sponsored by IBM Are Cloud Managed Services The Right Financial Choice for Your Business? As businesses hurtle into the digital era, technology is no longer the sole domain of the IT organization. Executives and staff from across the business are exerting influence over IT budgets and purchases to ensure they have the tools to do their jobs, thus requiring greater interaction and collaboration between IT and business units than ever before. Nowhere is this strategic collaboration more important than in the relationship between the chief information officer (CIO) and the chief financial officer (CFO). Both roles are evolving in similar ways, from stewards of business assets to strategists and drivers of business goals. The CIO role is undergoing a transition from protecting and managing technology resources to leading the company’s digital strategy. To support the evolution, the CIO’s organization is shifting from a “do-it-yourself” approach to that of a service broker, anticipating and meeting business technology needs from a range of delivery models. Cloud services—including cloud-based managed services from expert providers—are an important part of the new IT model. For its part, the CFO is augmenting its traditional roles as steward of corporate assets and manager of financial operations, with additional roles as business strategist (aligning financial investments with business goals) and catalyst for change (driving business initiatives). With the common goal of ensuring technology investments are optimal for the business, the CFO can be a valuable partner to the CIO in helping to assess options.
    [Show full text]
  • IT GOVERNANCE and MANAGED SERVICES Creating a Win-Win Relationship TABLE of CONTENTS IT Governance and Managed Services 3
    IT GOVERNANCE AND MANAGED SERVICES Creating a win-win relationship TABLE OF CONTENTS IT Governance and Managed Services 3 ROLE OF IT GOVERNANCE AND OUTSOURCING 3 IT GOVERNANCE AND THE OUTSOURCING CONTRACT 4 ROLES AND RESPONSIBILITIES 5 DEFINED PROCESSES 7 MANAGEMENT STRUCTURE 8 REPORTING 9 CONCLUSION 9 2 | IT Governance and Managed Services IT Governance and Managed Services The question of whether to outsource IT has become part of the strategic thinking process for a growing number of companies across a wide range of industries. Companies are increasingly evaluating what is core to their business and weighing the benefits of turning non-core, but often critical functions such as IT, over to outside partners. The benefits are compelling. Through a managed services model, the process by which companies outsource day-to-day business processes or organizational functions to a third-party that is expert in that particular area, organizations can benefit from greater expertise, lower costs and higher quality, as well as free up management to focus on more strategic endeavors. While the case can be made that outsourcing, at least in the area of IT, is potentially a higher value alternative to internal delivery, its success rate, viewed from the perspective of broad customer satisfaction, has not been equally overwhelming. The absence of good IT governance leading up to the decision to outsource and perpetuating thereafter is often cited as a key reason for failure of the relationship. ROLE OF IT GOVERNANCE AND OUTSOURCING IT governance exists within the context of corporate governance, and the principles are essentially the same.
    [Show full text]
  • The CIO's Travel Guide Application Management
    TRAVEL GUIDE APP MANAGEME LICATION NT Exploring the benefits of using a MSP for application management With increasingly complex infrastructures and Outsourcing workflows, organizations are looking more to IT Managed Services to take the strain out day-to-day is the way IT management. forward So how does IT Managed Services work? Enterprises increasingly rely on business critical applications and Enterprise Resource Planning (ERP) systems to address client demands and optimize market opportunities. Managing these systems can be both complex, labor intensive and costly. Managed application services allows enterprises to outsource management and maintenance to application experts. What are the benefits of IT Managed Services? Application Managed Services enable enterprises to optimize performance, allowing internal IT teams to focus on business priorities. Enterprises can save time, budget and manpower by enabling experts to manage applications and resource-intensive processes such as deployments, installations, updates and fixes. 1 NTT Communications The CIO’s Travel Guide to Managed Services How application management works To ensure that your applications are always available, agile and flexible enough to deal with an ever changing business environment, you need a skilled team to manage your applications portfolio, maintenance, support and in some cases development. Skills shortages, decreasing IT budgets and an inflexible application infrastructure are driving more enterprises to look to MSPs to provide them with the value, agility
    [Show full text]
  • KPMG Managed Services
    KPMG Managed Services Subject matter expertise, operational excellence and tools and technology helping to deliver scalable and cost efficient managed services. Project Castle – Civil Service Learning Client challenge Key activities Schedule, book and manage all pre and post event logistics for (on average) 700 On 14 December 2015 a KPMG-led Designed, built and launched a new learning events per month. Manage Core consortium was awarded a landmark operation in 38 working days which Curriculum open and closed event as well contract with Civil Service Learning included premises set up, technology as contextualised, bespoke, professional (CSL) to help deliver innovative, sourcing and deployment, selection, qualifications and apprenticeships. bespoke and high quality learning to recruitment and training of the teams. equip around 450,000 civil servants – Recruited and trained customer across all departments and professions experience and event management Outcome – with the skills required to deliver workforce. This includes 18 Learning public services of the highest standard. Consistently delivering 95% of all calls Support who answer calls and queries to answered within 20 seconds and over The Service Centre provides a SLAs, and 31 Learning Co-ordinators who 90% of all queries resolved within 1 multifunctional contact centre manage events end to end. working day with a successful first underpinned by quality administration and Developed Operating Model with touch resolution approach. excellent customer service to support supporting telephony technology. Defined learners and suppliers. Improved quality of learning outcomes. process and procedures to ensure 85% of learners have given positive We run a multi channel contact centre events are managed effectively and dealt feedback, reporting that they expect providing learning advice and technical, consistently.
    [Show full text]
  • Managed Services Provider Guide
    MANAGED SERVICES PROVIDER GUIDE START EXPLORING TABLE OF CONTENTS Introduction 3 What is a manage services provider? 4 Why managed services? 8 How do I build an MSP practice? 11 How to grow an MSP business with Microsoft solutions? 29 Opportunities for managed service providers 30 The cloud solution provider opportunity 35 2 Welcome to the MSP Guide A one-stop guide to researching, building, and growing a managed services provider offering. In the pages that follow, you’ll find a detailed definition of what makes an MSP, along with reasons to believe in the value of providing managed services as part of your business. You’ll also get a helpful breakdown of the steps involved in creating your own managed services practice from square one. And once you get started, you’ll learn how to further differentiate, promote, and expand the scope of your business. Whether you’re simply curious about what MSP is all about, or actively looking to take the next step in your journey, this guide—and the Microsoft Partner Network in full—is here to help. Microsoft believes in the power of partnership, and we look forward to celebrating your success. INTRODUCTION 3 WHAT IS A MANAGED SERVICES PROVIDER? MORE THAN A VENDOR. A TRUSTED ADVISOR. A managed services provider (MSP) delivers a set of services to clients, What else makes an MSP? It’s a premium quality service provided on either proactively or as needed. For more than 20 years, large enterprises an ongoing contractual basis, rather a cost-per-project. The best way have relied on managed services businesses to manage information and to think of about managed services (and something you’ll hear customer workloads.
    [Show full text]
  • Managed Services: Helping Organizations Focus On
    WHITE PAPER MANAGED SERVICES: HELPING ORGANIZATIONS FOCUS ON BUSINESS A trusted partner can deliver essential technology services that reduce costs and improve performance while reducing the burden on IT staff. EXECUTIVE SUMMARY Many enterprise executives understand the power of today’s technologies, yet take advantage of only a small percentage of them. The struggle is real; keeping pace with monitoring, maintaining, upgrading and securing their systems is a day-to-day challenge. A reliable managed services provider helps by providing several valuable benefits: Improved operational performance: Organizations often find that managed services deliver quantifiable gains in common metrics such as system availability, security and responsiveness, yielding improvements that include more stable IT environments and faster diagnosis and resolution of problems. Decreased risk: An outage or security breach may cripple an organization. While network and security engineers may take vacations, call in sick or switch jobs, a managed services provider delivers 24/7 coverage. Reduced expenses: Organizations often get more expertise at a lower cost from a managed services provider than by hiring specialized employees. A managed services provider also offers specialized toolsets, operations automation, administration, and facilities. Faster innovation: A managed services provider frees up in-house IT staff to focus on innovation, allowing the design of state-of-the-art infrastructure and clearing the way for expert staff to deliver these advancements immediately. MANAGED SERVICES CDW.com/ManagedServices | 800.800.4239 2 The Value of Managed Services For many organizations, those challenges add up to Organizations across every industry are discovering how today’s significant expenses: the cost of hiring and training qualified technologies help them achieve their objectives.
    [Show full text]
  • SIX REALITIES WHERE MANAGED SERVICES IS a STRATEGIC MOVE Today’S Technology Landscape Opens the Door for Significant, Rapid Transformation
    GLOBAL SERVICES | MANAGED SERVICES | EBOOK SIX REALITIES WHERE MANAGED SERVICES IS A STRATEGIC MOVE Today’s technology landscape opens the door for significant, rapid transformation ContentsContents IntroductionIntroduction RealityReality one One RealityReality two Two RealityReality three Three RealityReality four Four RealityReality five FiveRealityConclusion six ConclusionAbout GlobalAbout Servicesglobal services EBOOK | SIX REALITIES WHERE MANAGED SERVICES IS A STRATEGIC MOVE CONTENTS (click to jump to a chapter) 3 Introduction 4 Reality one: The gap between what leadership expects and in-house resource capabilities for innovation is significant 5 Reality two: Upskilling workforces and securely leveraging emerging capabilities are a top priority for CEOs 7 Reality three: Disparate IT initiatives and services projects impede momentum and digital agility 8 Reality four: When in-house IT experts can rise to succeed in today’s data-driven opportunities, everybody wins 11 Reality five: Gaps in resources can consistently pull experts from one project to save another, stalling initiatives 13 Reality six: A trusted technology partner who understands your business is a conduit to successful outcomes, now and into the future 14 Conclusion 16 About global services Contents Introduction Reality one Reality two Reality three Reality four Reality five Reality six Conclusion About global services 2 / 18 EBOOK | SIX REALITIES WHERE MANAGED SERVICES IS A STRATEGIC MOVE Introduction Rapid innovation is rampant in today’s marketplace, and organizations must be agile to keep up Operational agility and resilience have ascended to be among the most essential initiatives for today’s GROWING PAINS organizational leaders. 2019 CEO Outlook Even before the world changed in 2020 — and operations in every industry have had to drastically evolve to digitally accommodate immense remote workforces — organizations in every industry have been challenged with an unprecedented pace of technology-enabled innovation and disruption.
    [Show full text]
  • Making the Case for ATM Managed Services
    Point of View Making the Case for ATM Managed Services ATMs have become an essential and cost-effective delivery channel for financial institutions of all sizes. Not only are consumers changing the way they are banking; they are also changing the way they are using branches. Consumers are increasingly switching to ATMs for a The amount of time and money dedicated to keeping growing list of everyday transaction needs – from cash the ATM fleet operating at optimum efficiency and withdrawals and check-image deposits to statement in full compliance can be cost prohibitive for many requests and peer-to-peer money transfers. financial institutions. The average ATM maintenance cost runs $165 a month, according to Deloitte. In the current competitive market, it is vital for financial ATM vendor Diebold Nixdorf reports that each new institutions to find a way to reduce the cost of providing ATM costs $15,000 to $65,000, depending on how services while exceeding consumer expectations. sophisticated the technology. A recent industry report As institutions strive to find the correct balance, from CO-OP Financial Services shows that ATMs can they are increasingly utilizing the ATM channel for a account for up to 35 percent of a financial institution’s wider variety of transactions and functions, including annual operations budget. marketing, cross-selling and client acquisition activities – effectively and efficiently moving into the future. What is the most effective way for financial institutions to address this challenge? By contracting for ATM And in the years ahead ATMs will only grow in Managed Services. importance to financial institutions.
    [Show full text]
  • Managed Services
    Solution Brief Managed Services Why Insight ͓ Decades of experience Focus on innovation while maintaining exceptional operational efficiency We have helped organizations and management. transform IT service delivery, operations, and resources to Balancing the need to transform while managing everyday IT operations can be challenging. IT teams meet business challenges for are lean, making it difficult to both innovate and efficiently manage evolving and/or hybrid IT more than 30 years. environments. They face a growing number of system-generated alerts and human-generated incidents to sift through, prioritize, and resolve. Throwing more people at the problem often doesn’t solve the ͓ Deep expertise issue. Acquiring more technology solutions creates more work and inflates CapEx at a time when agility Our 1,500+ services professionals and OpEx models are essential. And, there just aren’t enough time or resources to effectively drive carry more than 3,000 technical automation and efficiency. certifications. Insight Cloud + Data Center Transformation (CDCT) Managed Services has the scale, expertise, ͓ Focused on our clients methodologies, and tools to reduce incident “noise” and address incidents that have the greatest Our sales team, architects, impact on your business. You benefit by relieving your team of the demands of day-to-day engineers, analysts, project operations and refocusing them on strategic initiatives. managers, specialists, and field CDCT Managed Services uses an operational model that prioritizes familiarity, response, and
    [Show full text]
  • CBRE Managed Services Ltd Governance Statement
    GOVERNANCE STATEMENT FOR CBRE Managed Services Limited [to be included in the Directors’ Report within the 2019 statutory financial statements] CBRE Managed Services Limited (the “Company”) Corporate Governance practices The corporate governance practices of the Company strengthen Directors’ oversight of management and serving of the long-term interests of the Company’s shareholders, employees, suppliers and other stakeholders. The Directors are committed to ensuring that high standards of corporate governance, culture and stakeholder engagement are in place and consistently applied throughout the Company. The corporate governance practices adopted by the Company’s ultimate parent, CBRE Group Inc. (listed on the New York Stock Exchange) also applied to the Company and the wider Group during the financial year ended 31 December 2019. These practices reflect the requirements of applicable securities law, including the Sarbanes-Oxley Act, the New York Stock Exchange listing requirements and the Group’s own vision of good governance practices. CBRE’s corporate governance guidelines and associated governance documents can be found at https://ir.cbre.com/corporate-governance/default.aspx Application of the Wates Corporate Governance Principles The Wates Corporate Governance Principles for large private companies provide a framework for the Company to demonstrate how the Board makes decisions for the long-term success of the company and its stakeholders and how the Board ensures the Company’s compliance with the requirements of Section 172 of the Companies Act 2006. Our reporting against the Wates Principles is included below. Throughout 2020, the Board will continue to review and challenge how the Company can improve engagement with, and reporting on, its employees and other stakeholders.
    [Show full text]
  • ATM Managed Services
    ATM Managed Services Keeping Cash Convenient Solution Summary and Effectively Managed As a vendor-agnostic service provider, When credit union members need cash, they PSCU is unbiased in providing an expect their Credit Union to make it readily industry-leading ATM management available. However it can be a challenge solution to credit unions. Our only for credit unions to find the resources for goal is cost-effectively providing your maintaining a fleet of ATMs at a level that meets members with superior ATM service by: member needs, without sacrificing attention ■ Removing the burden of managing to other critical operations and services. ATM equipment maintenance Managed Services—offered with the PSCU ATM Driving Solution—provides the answer that ■ Managing service events credit unions are seeking. from beginning to end ■ Providing expanded vendor Unbiased ATM Management options and identifying Makes a Difference cost-saving opportunities Many ATM managed services providers have ■ Optimizing the ATM Cash Cycle ties to the manufacturers of the machinery ■ Continued member satisfaction they maintain. Their relationships can limit with your service your options when making decisions about your ATM services, or lock you into a disadvantaged position. By taking advantage of this ATM Driving Solution option, credit unions can realize unbiased service delivery and reliable expertise about financial equipment up-keep. This is what distinguishes PSCU among ATM managed services providers and because we are cooperative CUSO—wholly owned by credit unions—our first priority will always be your sustained growth through unsurpassed member service. ATM Managed Services Let PSCU Optimize 2. Faster break/fix device failure mitigation– Your ATM Operations – Around-the-clock monitoring coupled with timely dispatch slashes the time between PSCU’s centralized management platform when a problem develops and its resolution.
    [Show full text]