Understanding Security Program Risk Assessments Through a Secure Asset Framework

I was excited to present at the International Pipeline Conference and Exhibition (IPCE) in Calgary alongside my team, Jamie Nairn and Mark Jean, sharing our paper "Understanding Security Program Risk Assessments Through a Secure Asset Framework" (Paper No. IPC2024-134028).
After a review process spanning more than four months, the conference paper was accepted and our final revisions submitted. IPC is a biennial event and one of the most respected gatherings in the pipeline industry, drawing sellout crowds of pipeline professionals from more than 40 countries to hear nearly 300 peer-reviewed papers—so having our work on security program risk assessments accepted into that program was a real milestone.
The paper builds on the secure asset framework approach: structuring security risk assessments around asset, threat, and vulnerability inputs so organizations can correctly identify their highest risks, direct resources where they're actually needed, and align security with the broader management system.

Operation: Defend the North — A Canadian Cybersecurity Readiness Exercise
A Canadian cybersecurity readiness exercise bringing industry practitioners together in person and online to test and strengthen collective defense across critical infrastructure.
