Control Systems Cybersecurity USA (8th annual live) Control Systems Cybersecurity USA (8th annual live)

Working Together to Achieve Supply Chain Transparency (Physical Live)

Stream and Physical Kenzies

Tony Turner
Fortress Information Security, VP Security Solutions

Tony leads the VSOC managed services team at Fortress helping customers with asset and vulnerability management and threat advisory services and designs many of the technical security solutions at Fortress. He has helped hundreds of companies with strategic and tactical approaches to solving their information security challenges. Tony most recently worked at a network security and vulnerability management vendor, where he led a transformational effort for the Professional Services organization and supported pre-sales activities for all of the Americas. He has a wealth of experience in helping customers solve challenges around vulnerability management and prioritization, network assurance, and other security and compliance objectives.

The topic of software bill of materials (SBoM) to provide transparency into software supply chain risks and vulnerabilities for critical infrastructure is gaining momentum through such efforts as the Cybersecurity Executive Order 14028 and the EEI Model Procurement Contract Language. Additionally demand for suppliers to provide insights into their hardware supply chains and foreign adversarial risks is also producing the need for compliance with NDAA Section 889. These requests for transparency have raised many questions about how to meet requirements and do so in a secure fashion.


Join Fortress Information Security to learn how a Cyber Bill of Materials can support supply chain risk management for asset owners and suppliers alike.


Presentation Highlights and Take-Aways:

·  An overview of recent cyber-attacks and the supply chain threat landscape for ICS

·  Breakdown of supply chain security regulations: Section 889 A & B, NERC-CIP regulations and Executive Order 14028

·  The Importance of both Software (SBOM) and Hardware Bill of Materials (HBOM) & 4th Party Evaluations

·  Identifying and mitigating supplier concerns for adoption – Cutting through the Fear, Uncertainty and Doubt

·  Continuous Monitoring, Attestation sharing and use of Blockchain as a force multiplier to secure the industry

·  BOM supplier and purchaser coordination for success