Tim Conway
FellowSANS ICS Curriculum Lead at SANS Institute
Specialities
Industrial Control Systems Security
SEC504: Hacker Tools, Techniques, and Incident Handling
SEC504Offensive Operations
ICS456: Essentials for NERC Critical Infrastructure Protection
ICS456Industrial Control Systems Security
- GIAC Critical Infrastructure Protection (GCIP)
- 5 Days (Instructor-Led)
- 31 CPEs / 31 Hours (Self-Paced)
- Labs: 23 Hours of hands-on instruction
ICS310: ICS Cybersecurity Foundations
ICS310Industrial Control Systems Security
- 6 CPEs / 6 Hours (Self-Paced)
- Labs: 3 Hours of hands-on instruction
Virtual Events
Explore content featuring this instructor’s insights and expertise.
- Slide 1 of 20
Ransoming Critical Infrastructure - Emergency Webcast
As ransomware attacks continue to impact organizations around the world, and with recent events like the colonial pipeline impacts, we are seeing more and more attacks that have an adjacent or direct impact on Operational Technology environments. As ransomware attacks continue to rise, how should companies think about the cyber to physical impacts to their OT environments? Organizations responsible for operating and maintaining critical infrastructure environments need to consider the steps they should be pursuing right now before a potential attack occurs, establish and implement procedures on how or if they should operate their systems during an attack, and what actions need to be taken after an attack. Tim Conway & Jeff Shearer will discuss how organizations responsible for operating & maintaining critical infrastructure environments need to consider the following: Steps to pursue before a potential attack Procedures to implement during an attack Actions necessary to take after an attack
WebinarIndustrial Control Systems Security
- 13 May 2021
- 11:00 UTC
- Tim Conway & Jeffrey Shearer
- Slide 2 of 20
OT Network Visibility and Detective Controls in a NERC CIP World
NERC CIP is complicated. Integrating solutions into your CIP program is complex. Demonstrating compliance in a zero-deficiency regulatory sector is challenging. Going beyond compliance in pursuit of expanded cybersecurity capabilities and innovative emerging solutions in ICS environments can be confusing. How do you determine the most appropriate operation technology solutions for your NERC CIP program? Are there unique operating models that make certain solutions better than others? In this webcast, SANS Instructor Tim Conway and Dragos Cyber Risk Advisor Jason Christopher look at the NERC CIP standards and explore how to balance technology implementations for resilient operations, cybersecurity, and compliance benefits. Attendees will learn how to integrate solutions into their CIP programs that help drive detection and incident response actions. Be among the first to receive the associated whitepaper written by Tim Conway.
WebinarIndustrial Control Systems Security
- 24 Jun 2021
- 15:30 UTC
- Tim Conway
- Slide 3 of 20
산업 제어시스템(ICS) 직접 체험하기!
SANS의 산업 제어시스템(ICS) 코스의 저자이며 국제적으로 유명한 Tim Conway와 Jeff Shearer이 핵심 인프라 및 프로세스 환경에서 근무하는 사이버보안 실무자들이 ICS 환경을 보호하고 위협 및 취약점 식별 방법을 익혀야 함에 있어 실무 경험과 전문 교육의 중요성에 대해 설명합니다. Jeff와 Tim은 ICS 환경을 지원하고 작업하는 모든 실무자님들이 접하게 될 공통 요소 및 자산 유형과 ICS 전문가들이 추구해야 하는 다양한 지식 영역에 대해 논의하고자 합니다.
WebinarIndustrial Control Systems Security- 17 Feb 2022
- 11:00 UTC
- Tim Conway & Jeffrey Shearer
- Slide 4 of 20
Menguasai Industrial Control Systems
Bergabunglah dengan para pakar global terkemuka dan instruktur pelatihan SANS ICS, Tim Conway dan Jeff Shearer, yang akan membahas perlunya pengalaman langsung dan pelatihan terfokus bagi praktisi keamanan siber yang bekerja di sektor infrastruktur vital dan lingkungan processing untuk mengidentifikasi ancaman dan kerentanan serta metode untuk mengamankan lingkungan ICS.
WebinarIndustrial Control Systems Security
- 17 Feb 2022
- 11:00 UTC
- Tim Conway & Jeffrey Shearer
- Slide 5 of 20
産業用制御システム(ICS)で手を動かそう
SANSのICSに関するコースを開発しているTim ConwayとJeff ShearerによるWebcastを開催します。TimとJeffは重要インフラやプロセス環境に携わるサイバーセキュリティ人材の実践的な経験や集中的なトレーニングの必要性について議論します。ICSの環境で働いていたり、サポートしたりしている方が関わる一般的な要素と資産の種類や、このコミュニティにいる専門家が知っておくべき様々な知識に関して説明します。
WebinarIndustrial Control Systems Security
- 17 Feb 2022
- 11:00 UTC
- Tim Conway & Jeffrey Shearer
- Slide 6 of 20
การลงมือปฏิบัติจริงกับ Industrial Control Systems
ความจำเป็นของประสบการณ์ที่ได้จากการลงมือปฏิบัติงานจริง และการฝึกอบรมแบบเจาะจงหัวข้อสำหรับผู้ที่ทำงานในสาย Cybersecurity ที่ต้องทำงานเกี่ยวกับ Critical Infrastructure การระบุภัยคุกคาม และข้อบกพร่องของระบบ กระบวนการทำให้ ICS ปลอดภัย Tim และ Jeff จะอภิปรายเกี่ยวกับ องค์ประกอบพื้นฐานของ ICS และชนิดของอุปกรณ์ที่จะพบกับใน ICS และระบบสนับสนุน
WebinarIndustrial Control Systems Security
- 17 Feb 2022
- 11:00 UTC
- Tim Conway & Jeffrey Shearer
- Slide 7 of 20
緊急Webcast:ウクライナにおけるロシアからの サイバー攻撃の拡大について 知っておくべきこと!
2月22日(火)に米国国土安全保障省は、あらゆる組織がロシアからのサイバーリスクにさらされていると警告しました。この警告は、ロシアによるウクライナの侵攻がエスカレートしていることを受けて発表されたもので、サイバー攻撃だけではなく地上での攻撃も含まれます
WebinarCyber Defense- 25 Feb 2022
- 12:00 UTC
- Rob Lee, Tim Conway & Jake Williams
- Slide 8 of 20
Urgent Webcast: Russian Cyber Attack Escalation in Ukraine - What You Need To Know!
This urgent webcast will give an overview of current Russian Threat Actor capabilities, discuss critical infrastructure attacks on Ukraine, and possible escalation spillover into the EU and/or the United States.
WebinarCyber Defense- 25 Feb 2022
- 12:00 UTC
- Rob Lee, Tim Conway & Jake Williams
- Slide 9 of 20
The 5 Critical Controls for ICS/OT Cybersecurity
SANS authors and instructors Robert M. Lee and Tim Conway have been working with the community to analyze all the known ICS cyber attacks for the purpose of creating the most important cybersecurity controls for organizations to implement.
WebinarCyber Defense- 31 Oct 2022
- 13:00 UTC
- Tim Conway & Robert M. Lee
- Slide 10 of 20
Part 1 - Ctrl+Alt+Comply: NERC CIP in the Cloud - Introduction and Current State
This Webinar series will discuss the challenges presented by applying the NERC Critical Infrastructure Protection (CIP) standards to cloud computing environments. This first webinar in the series of six will dive into the topic from the various stakeholder perspectives and highlight the opportunities and challenges awaiting this sector.
WebinarIndustrial Control Systems Security- 24 Jul 2024
- 13:00 UTC
- Tim Conway
- Slide 11 of 20
Part 2 - Ctrl+Alt+Comply: NERC CIP in the Cloud - Regulated Electric Utility Perspective
The rapid adoption and growth of cloud computing solutions across industry sectors and application families is driven by the many advantages of cloud computing technologies. These include faster deployments, better scalability, improved vendor support and faster security patching, access to newer technology, better resilience, fault tolerance, and recovery options – all at a lower cost.
WebinarIndustrial Control Systems Security- 7 Aug 2024
- 13:00 UTC
- Tim Conway
- Slide 12 of 20
Part 3 - Ctrl+Alt+Comply: Application Provider Perspective
The third webinar in this six-part series will feature application providers discussing the pros and cons of offering cloud-based solutions to NERC entities. These providers will share their decision-making processes, focusing on how they navigate cloud deployment while acknowledging their customers' need for NERC CIP compliance.
WebinarIndustrial Control Systems Security
- 21 Aug 2024
- 13:00 UTC
- Tim Conway & Robin Berthier
- Slide 13 of 20
The Business Risks of Ignoring ICS Security
In an era where cybersecurity threats are escalating, the oversight of Industrial Control Systems (ICS) is more critical than ever. Join us for an exclusive panel discussion with SANS instructors Robert M. Lee, Tim Conway, Dean Parsons, and Jason Christopher, as they address cybersecurity leaders on the imperative of securing ICS.
WebinarIndustrial Control Systems Security- 3 Sep 2024
- 13:00 UTC
- Robert M. Lee, Tim Conway & Dean Parsons
- Slide 14 of 20
Part 4 - Ctrl+Alt+Comply: Cloud Services and CIP Standards – Cloud Service Providers (CSPs) Perspective
What can the underlying platform providers (CSPs) do to help transition services to cloud-based operations while maintaining CIP compliance? The various CSPs have been working with existing customer groups and industry to educate, collaborate, and contribute to a wide variety of activities involving NERC CIP and cloud.
WebinarIndustrial Control Systems Security- 31 Oct 2024
- 13:00 UTC
- Tim Conway & Maggy Powell
- Slide 15 of 20
Part 5 - Ctrl+Alt+Comply: Cloud Services and CIP Standards – What are the current compliance challenges?
The presentation will discuss and highlight the specific compliance issues and considerations to address when evaluating whether to use the cloud for various aspects of electric grid operations. During the presentation, the speaker will address specific NERC CIP Compliance, Rule of Procedure or Operation & Planning regulations that impact the asset owner's cloud infrastructure options.
WebinarIndustrial Control Systems Security- 13 Nov 2024
- 13:00 UTC
- Tim Conway
- Slide 16 of 20
Part 6 - Ctrl+Alt+Comply: Cloud Services and CIP Standards – The Path Forward
In this sixth and final webinar in this series, we will hear from presenters on the topic of: Cloud Services and CIP Standards - The path forward. This will be a discussion with the presenters on what opportunities are happening now where the CIP community can work together to help entities understand technologies and requirements they are considering today as well as what activities are happening now to shape the requirements of the future.
WebinarIndustrial Control Systems Security- 19 Dec 2024
- 13:00 UTC
- Tim Conway & Kenath Carver
- Slide 17 of 20
Take the First Step in ICS/OT Security with ICS310
Discover how the new ICS310: ICS Cybersecurity Foundations course is transforming the way professionals enter the critical field of ICS/OT cybersecurity. The world relies on critical infrastructure for all aspects of daily life, and sectors across the board have integrated Industrial Control Systems (ICS) and Operational Technology (OT) into their key operations. This evolution has created a pressing need for a uniquely skilled, diverse workforce equipped with expertise in engineering, operations, IT/OT, and cybersecurity.
WebinarIndustrial Control Systems Security- 24 Jan 2025
- 15:00 UTC
- Robert M. Lee, Tim Conway & Jeffrey Shearer
- Slide 18 of 20
SANS New Orleans 2025: Keynote - Securing the Things That Make All the Things Work
In this talk, we will discuss the importance of the Industrial Control Systems and Operational Technology that is used to support the critical environments found throughout the world’s critical infrastructure. Whether you are new to the ICS/OT community, working in it for a long career, or you are just looking to understand the “OTher side of business”, join us and get involved in the conversation. The talk will highlight some of the key drivers and constraints across IT and OT, introduce key concepts, workforce needs, and have an open discussion on some common questions in the ICS community, including:• Attacker Objectives in ICS Environments• IT / OT – it’s all just “T” right?• Insecure by Design vs Secure by Design vs Cyber Informed Engineering• Engineers or Cyber pros, Degrees or Certs, and Career Lifecycle• Regulations and 5 Critical Controls for ICS
WebinarIndustrial Control Systems Security
- 18 Feb 2025
- 18:30 CST
- Tim Conway
- Slide 19 of 20
OT Ransomware on the Rise – How to Protect Your Operations and Business
OT ransomware is a growing threat to any organization that relies on ICS/OT to power its operations. Whether securing critical infrastructure or ensuring the continuity of manufacturing, pharmaceuticals, food and beverage production, or other industrial processes, protecting these environments is essential.
WebinarIndustrial Control Systems Security- 16 May 2025
- 09:00 UTC
- Tim Conway, Robert M. Lee & Lesley Carhart
- Slide 20 of 20
NERC CIP-015: Monitoring Deep Inside Critical Networks to Keep Adversaries Outside
As cyber threats become increasingly advanced and persistent, traditional perimeter-based defenses are no longer sufficient to protect critical infrastructure.
WebinarIndustrial Control Systems Security- 19 Aug 2025
- 13:00 UTC
- Tim Conway & Robert M. Lee