Skip to main content
University of North Dakota
University of North Dakota
    • Current Students
    • Faculty & Staff
    • Alumni
    • Email
    • Blackboard
    • Campus Connection
    • Employee Self-Service
    • Hawk Central
    • Degree Map
    • Zoom
  • Directory
  • Calendar
  • Scope of this search:
College of Engineering & Mines
College of Engineering & Mines
  • About
  • Academics
  • Admissions
  • Research
  • Outreach
University of North Dakota
  • About
  • Academics
  • Admissions
  • Research
  • Outreach
  • Request Info
  • Visit
  • Apply
Scope of this search:
  • Request Info
  • Visit
  • Apply
Scope of this search:
College of Engineering & Mines
  • Home
  • Research
  • Center for Cyber Security Research
  • Workshop
Skip Section Navigation
  • Center for Cyber Security Research
  • Research Show/hide children
    • Faculty & Research Staff
    • Industry Advisory Board
  • Cyber-Hawks Peer Mentoring Program
  • Workshops Show/hide children
    • Enterprise Grade Security
    • Resilient Control Architectures and Power Systems
    • Cyber Infrastructure for the Smart Electric Grid
  • CARS Symposium
  • Colloquia Series
  • Alumni
  • About C2SR Show/hide children
    • Activities and News
    • Student Achievements
  •  

     

     

     

Engineering-Grade Security: When Consequences Are Unacceptable

Workshop Objectives

Imagine that you work in a power plant, responsible for a half dozen 5-story-tall boilers. If a cyber-attack makes a boiler over pressurize and explode, the event will most likely kill you and anyone else nearby.

Which mitigation for that cyber risk would you prefer? A mechanical over-pressure valve on each boiler that, when the pressure gets too high, is forced open to release the steam harmlessly? Or a longer password on the computer controlling the boilers?

Most of us would prefer the unhackable physical valve. But, where is the valve in the NIST Cybersecurity Framework? It’s not there. The framework is blind to any mitigation that is not cybersecurity, and the valve is an engineering mitigation, not security.

Addressing cyber risks to physical operations takes more than cybersecurity. The engineering profession has managed physical risks and threats to safety and public safety for over a century but is only beginning to come to grips with cyber threats and beginning to appreciate the unique role of the profession in OT cyber risk management.

In this seminar, Andrew Ginter, VP Industrial Security speaks to the state of the practice regarding cyber threats to OT networks and physical operations.

  1. Brief introductions to basic automation engineering and cybersecurity concepts.
  2. An overview of the threat landscape - public reports of cyber-attacks with physical consequences are growing exponentially.
  3. An introduction to Cyber-Informed Engineering and the body of knowledge being assembled there.
  4. A few words on modelling risk, and why “standard” risk models need updating.
  5. An introduction network engineering, which lives at consequence boundaries - and the boundary between engineering and cybersecurity.
  6. An introduction to Secure Operations Technology - a collection of the most commonly applied network engineering techniques. Join us for a whirlwind tour of the leading edge of OT cybersecurity thinking

Highlights and Presentation

Center for Cyber Security Research (C2SR)
Upson II, Room 366G
243 Centennial Dr Stop 7165
Grand Forks, ND 58202-7165
UND.c2sr@UND.edu

 

  • YouTube
  • LinkedIn

We use cookies on this site to enhance your user experience.

By clicking any link on this page you are giving your consent for us to set cookies, Privacy Information.

College of Engineering & Mines

Upson II Room 165
243 Centennial Dr Stop 8155
Grand Forks, ND 58202-8155

701.777.2180 | UND.ceminfo@UND.edu

  • Facebook
  • Twitter
  • LinkedIn
  • Employment
  • Contact UND
  • Make a Gift
University of North Dakota

© 2025 University of North Dakota - Grand Forks, ND - Member of ND University System

  • Accessibility & Website Feedback
  • Terms of Use & Privacy
  • Notice of Nondiscrimination
  • Student Disclosure Information
  • Title IX
©