CS3STHLM – the Stockholm international summit on Cyber Security in SCADA and Industrial Control Systems - is an annual summit that gather the most important stakeholders across critical processes and industries. CS3STHLM has been organized since 2014, and has quickly become the premier ICS Security Summit in Northern Europe!
23-26 October 2017
25-27 October 2016
20-22 October 2015
22-23 October 2014
CS3STHLM Expo enables companies and organisations to network, demonstrate valuable experiences products and services, via workshops and presentations.
The participants at CS3STHLM are interested in securing control systems, critical infrastructure, automation and smart-grid. The summit gathers ICS/SCADA stakeholders across many different types of critical infrastructures.
CS3STHLM invites an international SCADA/ICS community, and all official communication and presentations will be in English.
The CS3STHLM summit gives you a great opportunity to experience international top-speakers and meet the most experienced experts in the field.
Robert Malmgren and Erik Johansson, two leading Swedish industrial security specialists, are the organizers of CS3STHLM. Their practical experiences are fundamental for the success of this summit.
CS3STHLM offers three days full of opportunities for increased knowledge - one day of practical tutorials followed by two days of presentations by top speakers from the ICS field.
CS3STHLM is a summit that offers generous time for lectures, networking and exchange of experiences on todays challenges in regard to ICS/SCADA security, together with practical advises on how to go about to manage them. The summit is built up by a mix of presentations from two stages, practical demonstrations in the ICS lab, lightning talks and the Hallway Track for networking.
Christopher Corbett is a PhD student of modern vehicle network security at Ulm University. His work focuses specifically on the examination of modern in-vehicle networks to derive security mechanisms for manipulation prevention and detection. He is a junior incident responder at Audi AG with a focus on network security monitoring and active defence techniques.
For more than 8 years, I worked around the world as automation programmer and maintenance/commissioning engineer. During this period, I obtained in-depth experience in various ICS environments (PLC and DCS) in different sectors (petrochemical, food and feed and many others). Now as a Toreon ICS Security Consultant I leverage this knowledge to provide advice on security architecture for clients in the utilities sector in Europe. At those clients, I help to improve the security maturity level of their organisations. I achieve this by organising Threat Modeling sessions with our customers to identify the vulnerabilities in their ICS environment. I consider Threat Modeling to be the most fitting risk assessment methodology for Industrial environments. Its scenario-based approach makes it easy for people of different profiles to add value to the process.
Marina Krotofil is an Industrial Control Systems (ICS) Senior Security Engineer at a large chemical company. The last decade she spent specializing on offensive side of cyber-physical security such as discovering and weaponizing unique attack vectors, engineering damage scenarios, developing exploits and understanding attacker techniques when exploiting ICS. Offensive security skills serve Marina well during incident responses and forensic investigations, ICS malware analysis and when engineering defenses. She previously worked as a Principal Analyst and Subject Matter Expert (SME) in Cyber-Physical group at FireEye (USA), Lead Cyber Security Researcher at Honeywell (USA) and as a Senior Security Consultant at the European Network for Cyber Security (Netherlands). She authored more than 25 academic papers and book chapters on ICS security and is a frequent speaker at the leading security events around the world. She holds MBA in Technology Management, MSc in Telecommunication and MSc in Information and Communication Systems.
Mattijs works as a lead consultant at Nixu Benelux. He has spent most of his career as an information security consultant, both on the offensive as well as the defensive side. Mattijs has a special interest in process automation and industrial systems. Over the years he has discovered numerous vulnerabilities in RTUs, process controllers, industrial firewalls and other equipment. Industrial sensor networks currently have most of his focus, as this is still mainly unexplored terrain.
Reid is a Senior Vulnerability Researcher with Dragos’ Intel team. Reid analyzes publicly disclosed vulnerabilities and determines whether the public reporting is accurate, as well as uncovers just what the true industrial impact of a vulnerability can be. He also performs in-house research and vulnerability assessments on both industrial hardware and software. Reid assists with malware analysis, especially if it involves ICS exploitation. Prior to joining Dragos, Reid was a security consultant for the well-known security firms Digital Bond and IOActive. In both roles, he regularly researched and discovered novel vulnerabilities in hardware and software. He truly began his career in industrial security working for Schweitzer Engineering Labs, where he tested security of the company’s flagship digital protective relays and other grid-related products. For fun, Reid enjoys randonneuring, a form of self-supported long-distance cycling. He often rides 200 or more miles in a day. In the winter months, he can be found cross-country skiing.
Richard Widh, B Sc Computer Engineering & Electronics,CISSP, GISP, TSCM Btec lvl 3 & Senior Cyber security G33k, Founder, Owner & CEO, Ancautus AB. Richard have worked as a specialist within the Cyber security area for more than 15 years and within IT as a professional since the early 1990s, including but not limited to the Swedish Armed forces (Försvarsmakten), Swedish Defence Materiel Administration (FMV), the Swedish Radiation Safety Authority (SSM) and The Swedish Civil Contingencies Agency (MSB).
At the CS3STHLM Expo 2019, an ICS Cyber Security Expo in Stockhom, you get an overview of threats and different protection that's available on the market. Here you will meet both researchers, vendors and experts who share their experiences of best practice and trends in IT security for critical parts of society.
23 October 2018
The Security Lab is, of course, returning to the CS3STHLM summit of 2019. We plan to add even more ICS and ICS communication equipment to the lab, and we working on extending the IoT security part further.
Between 21st and 22nd of October, the days before the summit, we will provide different full-day tutorials and training with world-renowned experts. We have tutorials in a number of different areas such as forensics in computers and in networks, introduction to cybersecurity standards, and information gathering. The tutorials ranging from theoretical overviews via hands-on practical to highly technical classes.
Organizations are now dedicating resources to protecting their Industrial control systems (ICS) assets, which...
Our two-day Network Forensics class consists of a mix of theory and hands-on labs,...