Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more
Download
Standard view
Full view
of .
Look up keyword
Like this
3Activity
0 of .
Results for:
No results containing your search query
P. 1
Maroochy Water Services Case Study Briefing

Maroochy Water Services Case Study Briefing

Ratings: (0)|Views: 147|Likes:
Published by curieous

More info:

Published by: curieous on Feb 04, 2010
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

01/28/2015

pdf

text

original

 
© 2008 The MITRE Corporation. All rights Reserved.
Malicious Control System Cyber Security Attack Case Study
 –
Maroochy Water Services,Australia
Marshall D. Abrams, The MITRE Corporation
Joe Weiss, Applied Control Solutions, LLC
August 2008
 
© 2008 The MITRE Corporation. All rights Reserved.
2
NIST Industrial Control System (ICS) Cyber Security Project
Objective: to improve the cyber security of federally owned/operatedICS
ICS pervasive throughout all critical infrastructures
Improve the security of public and private sector ICS
 –
Work with voluntary industry standards groups (e.g., TheInstrumentation, Systems, and Automation Society
 –
ISA)
o
Assist in ICS cyber security standards and guidelinedevelopment
o
Foster ICS cyber security standards convergence
 –
Raise the level of ICS security through R&D and testing
Purpose of case studies is to focus in on factors otherwiseoverlooked, not to ascribe any blame
 
© 2008 The MITRE Corporation. All rights Reserved.
3
NIST Cyber Security Strategic Vision
Promote the development of key security standards andguidelines to support the implementation of and compliance
with the Federal Information Security Management Act (FISMA)
Build a solid foundation of information security across one of the largest information technology infrastructures in the worldbased on comprehensive security standards and technical
guidance.
Institutionalize a comprehensive Risk Management Frameworkthat promotes flexible, cost-effective information securityprograms for federal agencies.
Establish a fundamental level of ―security due diligence‖ for 
federal agencies and their contractors based on minimumsecurity requirements and security controls.
NIST standards and guidelines are voluntarily used by the
private sector 

Activity (3)

You've already reviewed this. Edit your review.
1 thousand reads
1 hundred reads
mcnabb liked this

You're Reading a Free Preview

Download
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->