Cybersecurity assessments are mandatory for many organizations and federal agencies, but they can be extremely time-consuming. The DER-CF tool employs a user-friendly application to streamline the process and reduce the amount of time and resources your organization spends performing these assessments. The DER-CF tool guides you through an assessment within hours, instead of weeks or months if performed on your own. This training guides attendees through the entire process of taking an assessment on the DER-CF platform, shows why taking assessments is important, and how to get and use the results.
Instructor
Tami Reynolds, Cybersecurity Project Manager and Lead, National Renewable Energy Laboratory Read Bio
Tami Reynolds is a project manager and lead for the Cybersecurity Evaluation and Application group at the National Renewable Energy Laboratory (NREL). She provides technical leadership in building out and marketing the Distributed Energy Resources Cybersecurity Framework (DER-CF) tool to industry and federal partners. She works closely with partners to develop a deep understanding of applying the U.S. Department of Energy (DOE) Cybersecurity Capability Maturity Model (C2M2) and National Institute of Standards Technology (NIST) Cybersecurity Framework to their renewable and distributed energy systems for the evaluation of cyber and physical security. Tami provides leadership in developing the Distributed Energy Resource Risk Manager (DER-RM), an NREL tool that will address the NIST Risk Management Framework with a focus on distributed energy resources. She works closely with chief information officers and chief information security officers of private industry partners to conduct cybersecurity assessments in the electric sector and provides support to the U.S. Agency for International Development in developing cybersecurity programs in developing countries. Tami's insight and innovative ideas on new efforts are helping to merge cybersecurity and resilience research.
Learning Objectives
Upon completion of this course, attendees will understand:
- Recognize the importance of taking regular cybersecurity assessments;
- Identify how to use the DER-CF tool and how is it different from other assessment tools;
- Identify which cybersecurity frameworks DER-CF is focused on for compliance requirements;
- Identify the different assessment types within the DER-CF tool;
- and Recognize the types of reporting the DER-CF provides and why it's important.
