Agenda

Wednesday | November 14

  1. 7:45 AM – 5:00 PM

    Classified

    At CyberSat 2018 classified day, DoD, Intelligence Community, and industry leaders will discuss advancements and challenges in assuring space system missions throughout the ever-increasingly cyber-contested lifecycle.  

    Attendees will be updated on the space cyber landscape through presentations from senior intel analysts, hands-on space system hackers, and those developing and deploying technologies to enhance architectural resiliency against emerging cyber threats.

    Morning Session – TS/SCI 
    7:45-8:30 AM: Check-in and Continental Breakfast
    8:30-9:00 AM: Session Keynote: Revolution in Space Cyber
    9:00-9:25 AM: Counterspace Cyber Intel Update: Mike Pistone, NASIC
    9:25-9:50 AM:  Space Threat Assessment Cell (STAC): Johnathan Martin
    9:50-10:10 AM:  Networking Break
    10:10-10:35 AM:  Space System Hacking:  Maj Tristan Fries, 177th Information Aggressor Squadron 
    10:35-11:00 AM:  Redacted Title-FBI: Kristen Lane
    11:00-11:25 AM:  Space Security and Defense Program Cybersecurity
    11:25-11:50 AM:  Space & Missile Systems Center Space Cyber Review
    11:50-12:00 PM:  TS/SCI Session Wrap-up: James Swartout, MITRE
    12:00-1:00 PM: Lunch

     Afternoon Session – SECRET
    1:00-1:55 PM:  Enterprise Ground Services (EGS) Cybersecurity:  Carl Rodio, MITRE
    1:55-2:20 PM:  Space Defense Task Force, Space Cyber Security:  Maj Brian Viola, SDTF - 
    2:20-2:45 PM:  Space Systems Autonomy
    2:45-3:10 PM:  National Space Defense Center Cybersecurity:  Paul Zetocha, AFRL
    3:10-3:30 PM:  Networking Break
    3:30-5:00 PM:  DoD Space Industry Panel – Space System Cyber Security:
         Frank Holloway, Boeing Phantom Works, Advanced Space Programs
         Chris Patrick, Nothrop Grumman Corp, Advanced Cyber Solutions
         Kent Varney, Lockheed Martin Corp, Military Space Systems
         John Kenworthy, Ball Aerospace
         Ken Heffner, Honeywell Aerospace

    In order to attend the CyberSat Summit Classified Day at MITRE on November 14, you must provide your proof of clearance to MITRE no later than October 31, 2018. Please click here for directions. As a reminder, the morning session (8 a.m. – Noon) is a SCI session and will be held at a TOP SECRET//SI/TK//NOFORN level and the afternoon (1:30 p.m. – 5:30 p.m.) is a collateral session and will be held at a SECRET//NOFORN level.

  2. 8:00 AM – 5:00 PM

    EC-Council: CCISO Training & Ethical Hacking Workshop

    EC-Council’s STORM Mobile Security Toolkit; Ethical Hacking Workshop
    The Storm Mobile Security Toolkit is a fully-loaded pentest platform which comes equipped with a customized distro of Kali loaded onto a portable Raspberry Pi-based touchscreen device. The course includes: e-Book, Certificate of Attendance (.pdf), STORM device, keyboard, carry case, STORM T-shirt and STORM Sticker.
    8:00 am – 5:00 pm Ethical Hacking Workshop
    For complete details or to register, click here.
     
     *EC-Council’s CCISO Hybrid Training Course
    A unique opportunity to receive condensed course and exam preparation for Certified Chief Information Security Officer (CCISO). This hybrid program allows for less time away from the office and will combine video lectures, live instructor-led Exam Prep, Q&A, and certification testing to be completed on Wednesday, November 14th. A free pass to CyberSat Summit is included with registration.
    8:00 am – 5:00 pm Certification Testing

    *Requires early registration to complete self-paced online course prior to testing.

    For complete details or to register, please contact your Training Concierge; jessica.johnson@eccouncil.org or (505) 922-2894 and Jessica will help you get set up with a seat in the workshop as well as a ticket to the 2018 CyberSat Summit!
     

Thursday | November 15

  1. 8:00 AM – 9:00 AM

    Breakfast

  2. 9:00 AM – 9:30 AM

    A Fireside Chat with Dave DeWalt and Bob Gourley

    To kick off CyberSat 2018, Bob Gourley, CTO, Crucial Point LLC will host a fireside chat with one of the most prominent influencers in the world of Cybersecurity, Dave DeWalt. DeWalt is a 30 year veteran in the cybersecurity arena, and has previously been the CEO of companies like Fireeye and McAfee and has even spoken at the World Economic Forum. He is the very definition of an ‘influencer’ within Cybersecurity. In this fireside chat, he will use that experience to talk about how the satellite industry can counter the cyber threat and the unique threats this industry faces to keep their assets on the ground, and in space secure.

    • Bob Gourley Technology Due Diligence and CTO Advisory / Crucial Point LLC /
    • Dave DeWalt Founder & Chairman / Momentum Cyber /
  3. 9:30 AM – 10:30 AM

    The Cyber Threat 2019: The Threat Landscape and How it is Evolving

    Cyber threats to satellites are real and they exist. In this panel to kick-off CyberSat 2018, we examine the latest in terms of threats, what we have seen in 2018, what could happen in 2019, and how this will impact the satellite sector and end-users of the technology going forward. This panel will examining where the threats are coming from, how satellite companies could be targeted and how they can prepare for an increasingly complex cyber future.

    • Bob Gourley Technology Due Diligence and CTO Advisory / Crucial Point LLC /
    • Bobbie Stempfley Managing Director, CERT Division / Software Engineering Institute, Carnegie Mellon University /
    • Joshua A. Ray Managing Director, Global Cyber Defense Lead & iDefense GM / Accenture Security /
    • Matthew Devost EVP, Strategy & Operations / Tulco Holdings /
  4. 10:30 AM – 11:00 AM

    Coffee Break

  5. 11:00 AM – 12:00 PM

    Next Generation Satellite Cybersecurity: Software Defined Satellites, SmallSats and How Cyber Plays Into This

    Representatives of cybersecurity organizations will talk about new systems or services to address cybersecurity issues associated with small-sats, software defined satellites, hosted payloads and other aspects of the emerging environment. With satellites becoming more flexible, more technical and more creative in terms of their coverage, we look at how these satellites could be targeted and how operators of these satellites need to invest to keep them secure.

  6. 12:00 PM – 1:00 PM

    Lunch and a Live Hack!

    In this innovative presentation, Munro plans to carry out some live hacking demonstrations against satellite terminal equipment, showing how poor security practice can expose the users systems to compromise. Munro will also look briefly at the security of satellites themselves. With very similar security issues found in smart consumer electronic devices, Munro will also demo some entertaining, surprising hacks of everyday devices in your home too. He may even show how Amazon Echo and your smart TV can be used to hijack your house.

  7. 1:00 PM – 1:30 PM

    Dessert Break with Exhibitors

  8. 1:30 PM – 2:15 PM

    Satellite Eco-System: Guarding the Perimeter

    Satellite networks are becoming even more complex. However, with assets on the ground and assets in the sky, there are multiple entry points for hackers to get into these systems. In a recent interview with Via Satellite, KPN CISO Jaya Baloo spoke about the vulnerabilities at the ground station and how this could be a weakness in the networks. Similarly, networks with COTS equipment could also be vulnerable. Here, we talk to satellite companies about their plans in investing in equipment, and keeping all assets secure.

    • Vinit Duggal Director and Chief Information Security Officer / Intelsat US LLC /
  9. 2:15 PM – 3:00 PM

    Women in Cyber and Satellite: Influencers Talk about Changing Cyber World

    The satellite world has been a male dominated world for many years but things are changing. For the satellite industry to maximize its potential, it needs more young people and more women to be a part of the eco-system. Cybersecurity is a new perimeter and new border, and in this unique panel we gather together some of the most powerful female voices working in the satellite industry and cyber and see how they view the cyber threat, and what can be done in a male dominated industry to bring brilliant female minds to the frontline of the cyber battle.

  10. 3:00 PM – 3:30 PM

    Coffee Break

  11. 3:30 PM – 4:30 PM

    Panel on the Defensive within the Government, Intelligence and Military Arena

    The government is one of the biggest buyers of satellite capacity out there. However, governments and related infrastructure are some of the biggest targets for cyber-crime. An attack that cripples key infrastructure could have huge ramifications for all involved. Here, we look at potential vulnerabilities and what the satellite industry is doing to make sure its key customers here remain cyber secure. We look at the complex relationship between the government and the satellite industry and the dynamics within the defense market are changing.

    • Josh Hartman Managing Partner / Renaissance Strategic Advisors /
  12. 4:30 PM – 5:00 PM

    GDPR Focus

  13. 5:00 PM – 6:30 PM

    Reception

Friday | November 16

  1. 8:00 AM – 9:00 AM

    Breakfast

  2. 9:00 AM – 9:30 AM

    The Benefits of Threatcasting

    With a plethora of cyber threats, nothing is safe from persistent adversaries. Systems that were assumed for years to be secure may already be owned and awaiting commands. Organizations of all types and sizes need to think hard not only about today’s threats, but those of the future, and prepare for the consequences. Threat forecasting, also known as Threatcasting—one way to do this—is used by government and industry to do just this. Once organizations understand possible futures, they can identify gateway events that may signal them, as well as the actions they can take to possibly avoid negative futures. In this keynote, Brickey talks about how aerospace companies can benefit from threatcasting.

  3. 9:30 AM – 10:30 AM

    Workshop A (Policy) Compliance: How to be Part of the Solution, not Part of the Problem

    Working with governments on national security programs can be a lucrative business. However, for mid-sized companies in the satellite sector, there are a maze of requirements that need to be navigated to gain compliance and able to work on such program. This workshop will aim to help those companies as they face these compliance issues. In this session, we will introduce a new model compliance framework and begin to draw out accountability maps of your products, services, users, and relationships across multiple domains and architectures.

  4. 9:30 AM – 10:30 AM

    Workshop B (Operations) Training Your Staff in Cyber Threats

    Criminals are finding evermore creative ways to get into systems. Recognizing the threat early or attempts to hack the system are vital in order to stop the threats. This workshop focuses on your frontline staff and how you can effectively train them to recognize a threat or potential harmful situation.

  5. 9:30 AM – 10:30 AM

    Workshop C (Business) Cybersecurity for Business Leaders: Making Sure your Company is Ahead of the Cyber Curve

    You may not know the ins and outs of cyber threats, but you do know that any attack on your business could have catastrophic results. In this workshop, we talk about the issues specifically related to business leaders and how you must shape the company’s overall strategy to deal with cyber issues.

    • James Turgal Managing Director, Cyber Risk Services / Deloitte & Touche /
  6. 10:30 AM – 11:00 AM

    Coffee Break

  7. 11:00 AM – 12:00 PM

    Workshop A (Policy) NIST: Understanding and Implementation Decisions Around NIST

    In 2014, the National Institute of Standards and Technology (NIST) released a Framework for Improving Critical Infrastructure Cybersecurity. Here, we have a workshop dedicated to exploring issues and questions around this key framework. This workshop will help to understand key elements of the policy.

  8. 11:00 AM – 12:00 PM

    Workshop B (Operations)The Cyber Attack Surface of the Aerospace Industry

    A technical discussion about the various ways hackers could target different elements of the aerospace industry and associated recommendations to improve resilience. 
    Example topics could include: 
    -Supply chain 
    -Ground station security 
    -Use of COTS products 
    -Tracking Telemetry and Control

    • Andy Davis Transport Assurance Practice Director / NCC Group /
  9. 11:00 AM – 12:00 PM

    Workshop C (Business) Wargaming a Cyber Attack: You've Been Attacked, Now What?

    A major cyber-attack on your company is both probable and highly damaging. However, few companies have planned for this and fewer still have acted out a cyber attack scenario. This practical scenario-based workshop puts you in charge of a company that has just been attacked as you deal with the escalating fallout on departments, operations and the press.

  10. 12:00 PM – 1:00 PM

    Lunch Keynote

  11. 1:00 PM – 1:30 PM

    Dessert Break with Exhibitors

  12. 1:30 PM – 2:30 PM

    Mobility Cybersecurity: The Threat Assessed

    As ships, planes, cars and other vehicles get more and more connected, there is little doubt that the threat towards them has increased exponentially. How is this critical group of end users and the satellite industry equipping themselves to deal with this emerging threat? How is the maritime industry preparing to fight cyber threats in a mobile world and what can other mobile users learn from this important vertical?

    • Andy Davis Transport Assurance Practice Director / NCC Group /
    • Reza Rasoulian Vice President, Global Guest Connectivity / Carnival Corporation & PLC /
  13. 2:30 PM – 3:00 PM

    Cyber Viewpoint for the Year Ahead