news

Red Tiger Security's Daniel Michaud-Soucy Featured Speaker at the 2012 International Liquid Terminals Association Conference

2012-04-20T04:14:11Z

Daniel Michaud-Soucy, who has been one of the Network Engineers for Red Tiger Security since 2010, has been invited to speak at this year's ITLA (International Liquid Terminals Association) Conference. Dan started his career as a Computer Engineer for the Canadian government, and then started performing cyber security assessments and audits for Red Tiger Security. He was able to leverage his embedded and electrical engineering background and computer coding skills to switch careers into cyber security for critical infrastructure.

Over the past few years, Dan has been a dedicated and innovative resource for Red Tiger Security. He moved to Houston, Texas in late 2010 to be closer to our headquarters, and he has met every challenge and exceeded expectations. He assisted in the complete revamp of our 5-day SCADA Security training course, and has been a pivotal asset in leading our onsite technical teams for SCADA Vulnerability Assessments.

Dan will be presenting his topic "Vulnerabilities to Cyber Attacks: Are You in Control of Your Terminal System?" at the upcoming ITLA conference in Houston, Texas. The conference is scheduled for May 21-23, 2012, and the program is now online at this link. If you are planning to attend the conference, or happen to be in the Houston area that week, you will enjoy Dan's timely presentation. Contact us if you want to schedule a dinner or offsite meeting during the event.

Thanks Dan!
Jonathan

Red Tiger Security's Brian Meixell featured at Texas Austin Bsides Conference

2012-04-17T03:22:58Z

Brian Meixell, our Network Engineer based in Austin, participated in the Texas B sides conference this past Friday. He was on the Penetration Testers panel and contributed to the discussion entitled "Testers Tools of the Trade." Brian has an excellent foundation of electrical engineering, computer engineering, embedded firmware hacking, and a strong skill set in penetration testing.

After spending the past several years focused on SCADA and Control Systems, Brian has been able to round out his expertise by focusing his penetration testing and vulnerability assessment skills on critical infrastructure. He has a perfect blend of experience and skill sets that lends itself nicely for the types of projects that our team is involved in.

We are proud of Brian's career growth and for being invited to speak at B sides. More information about the conference can be found here.

Cheers Brian!
Jonathan

SCADA Security Training Courses in the USA Open for Registration

2012-04-10T20:54:09Z

Red Tiger Security has partnered with BlackHat and with SANS to offer the 2-day course in Vegas and the 5-day course in Houston this summer. The registration links for both course offerings are live and already accepting registrations. Seats are begining to fill up fast in these classes. The 2-day course has been capped at 40 students, and the 5-day course in Houston has been capped at 50.

We have just recently upgraded all of the PLC, RTU, and embedded device hardware in our mobile SCADA lab, and mounted all of the hardware to pexiglass mounts. We have new hands on exercises whereby the students can explore ways to get the lights, fans, and instrumentation to change based on their hacking techniques. We have also introduced a new wireless Smart Meter with a WiFi interface for additional wireless mayhem. Come join us in Vegas or in Houston to have fun, learn how to these systems work, how to hack them, and how to defend them.

21-24 July
Red Tiger Security + Tom Parker 2-Day SCADA Security Course
Location: Caesars Palace Las Vegas, NV
Event: BlackHat 2012 USA
NOW OPEN FOR REGISTRATION: Link to BlackHat Registration page

20-24 August 2012
Red Tiger Security Advanced 5-day course
Location: The Woodlands, Texas (The Woodlands Waterway Marriott Hotel & Convention Center)
NOW OPEN FOR REGISTRATION: Link to SANS Registration page

Red Tiger Security Selected for a Plenary Presentation at the ICSJWG 2012 Spring Conference in Savannah, GA

2012-04-04T19:26:54Z

We are pleased to announce that we will be participating at the upcoming DHS ICSJWG conference in Savannah, GA. Hundreds of abstracts were submitted into the conference planning committee, and we are honored that one of our abstracts was selected to be presented as a Plenary Presentation, at which the entire conference will be in audience.

As a long time supporter of the ICSJWG, and the PCSF conference before it, we are excited to be part of this event. There seems to be an increasing amount of SCADA, ICS, and Smart Grid Security conferences cropping up in the industry, but the ICSJWG events tend to hit the issues straight at the heart of the problem. We also find that the ICSJWG events engage the right people within government, academia, the control system vendors, end users / operators, and security practitioners. More information can be found online at the ICSJWG web site.

I would urge you to try to make it to this event, and make your plans as soon as possible. Registration is open for both the conference and the hotel, so make your plans early. If you are planning on attending, please look us up at the conference, or contact us ahead of time if you want to plan a meeting or dinner while at the event.

Thanks, and look forward to seeing you all at the event!
Jonathan

Red Tiger Security's Jonathan Pollet to present accepted paper at ISA Safety and Security Conference

2012-04-02T21:02:46Z

Red Tiger Security has been a long-time partner with ISA, and over the years we have supported several initiatives including the ISA Certified Automation Professional (CAP) certification process, the ISA S99 standard development process (in a reviewer role), through regional and local chapter events, annual ISA EXPO events, and more recently through the Safety and Security Division Symposiums.

This year we submitted three paper topics, and one was selected to be presented at the upcoming conference in Aneheim, California. More information can be found at the ISA web site. If you are planning on attending this year's symposium, drop by our session or catch us at the networking breaks.

Hope to see you there!

Jonathan Pollet, Red Tiger Security Founder, to speak at ABB's Automation & Power World 2012

2012-04-02T20:52:46Z

ABB has selected Red Tiger Security to present at their upcoming Automation World User's Group Conference in Houston, Texas. Jonathan Pollet will be covering a variety of SCADA Security topics including:

Cyber Security 101
Hacking SCADA Systems
Incident Management for SCADA Systems

More information can be found online at the ABB APW 2012 web site, and we have attached a flyer that you can download here that contains the cyber security track agenda.

We hope to see you at the ABB event!

Jonathan Pollet from Red Tiger Security to present at Regional UTC Conference in San Antonio

2012-02-19T15:57:40Z

The UTC South Central Region 7 Meeting will be in San Antonio, Texas on March 1st and 2nd. As usual, the UTC planning committee has built an agenda full of timely topics for utility professionals. The UTC web site for this event now contains the agenda details, as well as information relating to the hotel and logistics for the event.

We have been involved in UTC events since 2005, and we are excited to continue to play an important role in both regional and national UTC workshops and conferences. If you are planning on attending the south central regional meeting this year, stay around for the second day and join us for our recap of the 2011 year in review.

Jonathan Pollet, from Red Tiger Security, will break down the recent cyber security incidents that have impacted SCADA and process control systems. This includes "2011 Hacking SCADA Systems in Review". It is an eye-opening presentation for control system / SCADA administrators, IT Security professionals, and utility managers. Set your alarms for Friday morning so that you do not miss this highly educational presentation that will leave you with actionable things to do in 2012 to further harden your SCADA, telecommunications, and control system networks.

Red Tiger Security Provides Cyber Incident Handling Training at NERC Workshop in Pheonix - March 7

2012-02-11T04:38:24Z

We are pleased to annouce that we were selected as training partners with NERC for the 2012 year. Our first training event will be on March 7th in Phoenix at the Phoenix Convention Center:

100 N. 3rd Street
Phoenix, AZ, 85004
602-262-6225

Bob Canada is the NERC contact that is organizating the event, and he has informed us that the room is already at capacity and sold out. He is working with the Pheonix Conference Center to obtain a larger space. Please drop Bob a message if you are interested in attending. If you are already on the list, then we look forward to seeing you at the event. Contact us if you are interested in meeting up after the workshop.

SANS SCADA Summit in Orlando Recap

2012-01-31T14:29:35Z

Based on the feedback forms from SANS, this year's North American SCADA Summit in Orlando was the best in the history of the event. It started with our 5-day SCADA Security Course, and we had the most students to-date with 58 registered students. Dan and I, with the help of the SANS staff, were able to ensure that every student had power and Ethernet drops, and everyone worked through the hands-on labs with limited technical difficulties. Some of the PLC and OPC labs suffered through heavy network traffic, so we'll need to bring even more gear next time, but in the end everyone was able to build their own SCADA systems and interact with the hardware we provided. Prizes were given out for the first students that wrote scrips to strobe the PLC outputs, and one student set the lights to "disco" mode, which complemented the music that carried over from the wedding party in the adjaccent room during one of the afternoon sessions.

With the summit starting strong from the heavily attended SCADA training, the rest of the summit kept the momentum going with excellent discussions and presentations. The INL crew stayed around after to offer the Basic and Intermediate free DHS training, and the latest version 2.0 of the Exposure to Closure theater event hosted by NERC was very engaging and thought-provoking.

The presentations and workshops that we provided at the summit will be available on the SANS web site, and they have also been uploaded here to the "Presentations" area of our web site. The hacking demonstrations and videos have been stripped out of the presentation when converting it to PDF, but if you are interested in the multi-media content, just contact us, and we can shoot you a link to that content as well.

Thanks to all that helped make this event a huge success!
Jonathan

7th SANS SCADA Summit 2012 - Orlando, Florida

2012-01-20T13:35:28Z

A lot of our friends, associates, and clients have indicated that they are coming to the SANS SCADA Summit in Orlando this year, and we will be playing a large role in the event again this year. The SANS website contains a lot of information relating to the event, and we wanted to provide a quick review of our involvement throughout the event:

Saturday, Jan 21 through Wednesday Jan 25:
Red Tiger Security 5-day SCADA Security Training Course
> Still not to late to sign up - more information here.

Thursday, Jan 26 through Friday Jan 27:
SANS SCADA Summit
> Come catch the exciting presentation "Hacking SCADA Systems: 2011 in Review " on Thursday, Jan 26 at 11:00 AM. Download the detailed event agenda here.

2-hour Incident Management Technical Workshops led by Jonathan Pollet:
Thursday, Jan 26 3:15 PM - 5:15 PM
Friday, Jan 27 3:00 PM -5:00 PM
> Jonathan will be teaching free 2-hr workshops on Thursday and Friday afternoons at the vendor area, so stop by if you are interested in how to setup an Incident Management program for SCADA and Industrial Control Systems.

From Exposure to Closure - ACT II - The Next Frontier:
Saturday, Jan 28 6:00 PM through 10 PM
> Be exposed to the entire spectrum of the cyber security realm; this includes the identification of vulnerabilities and threats to the risk assessment, mitigation as well as response and recovery of a cyber event. This special session is worth the wait until Saturday night for, and with Tim Roxey running the show, it will be something you will not want to miss! More information here.