None
Federal agency staff are facing increasing pressures to defend operational technologies against cyber intrusion. The Training Game challenges cybersecurity teams on their ability to mitigate cyber threats based on real-world scenarios. This interactive tool will help staff improve their understanding of how to apply cybersecurity frameworks and best practices in the facility context. At points throughout a scenario, your "team" will be prompted to make decisions on what should be implemented in the facility in an effort to contain the breach.
Attendees must earn a passing score on the game to earn CEUs. In the "Centipede" scenario, the user is playing as a federal employee at the General Services Administration (GSA) whose primary job duties are energy and facility. In the game, players are asked to develop a cybersecurity plan and protections and respond to situations meant to test cybersecurity gaps discovered in the facility over time, with input provided from a variety of management.
This course is optimally viewed in modern and supported browsers; please use Edge, Chrome, Firefox, etc.
Developers
Sri Gourisetti, Pacific Northwest National Laboratory (PNNL) Read Bio
Sri Nikhil Gupta Gourisetti is the Energy Systems Cybersecurity Researcher at Pacific Northwest National Laboratory (PNNL) with specialized knowledge and interests in Operational Technology (OT) cyber security, blockchain technology, software engineering, power systems modeling & simulation, and growing capability in physics-driven machine learning systems. Sri Nikhil's research domains include smart grid systems and connected smart buildings focused on ICS/OT/IoT cybersecurity. At PNNL, he works on several smart grid and connected buildings cyber-physical security projects addressing the resiliency, reliability, and interoperability challenges and needs of critical infrastructure facilities. He is the Principal Investigator for DOE Cybersecurity projects such as a blockchain-based cybersecurity system for critical infrastructure and transactive energy; Mitigation of External-exposure for Energy Delivery Systems; non-intrusive Cybersecurity tools to enumerate vulnerabilities and threats. Sri Nikhil received his Ph.D. in Engineering Science and Systems specializing in Electrical Engineering. Sri Nikhil is a certified information systems security professional (CISSP) and SANS's certified global industrial cyber security professional (GICSP).
Julia Rotondo, Pacific Northwest National Laboratory (PNNL) Read Bio
Julia Rotondo is a program manager at Pacific Northwest National Laboratory (PNNL) with more than eight years of experience working on energy, cybersecurity, climate change, and buildings efficiency issues. This experience includes leading cybersecurity strategy development, research on connected technologies, miscellaneous loads, and operational technologies cybersecurity. At PNNL, Julia works on energy systems resilience and cybersecurity issues, including developing resources to enhance the resilience planning capabilities of federal facilities. She holds bachelor's degrees from the University of Chicago and a master's degree from American University.
Learning Objectives
Upon completion of this training, attendees will be able to:
- Enhance the understanding and applicability of the Facilities Cybersecurity Framework FCF), based on the NIST Cybersecurity Framework;
- Experience and respond to simulated cybersecurity attacks;
- Identify threats, protect systems, and detect, respond, and recover from incoming attacks;
- Understand how to manage cybersecurity risks in a resource-constrained setting; and
- Identify effective methods to establish communication pathways with senior management and internal and external stakeholders to manage cybersecurity risks.
