Cyber Security 2018

25.04.18 - 26.04.18

Threat actors are more sophisticated, with more detailed knowledge not only about critical and proprietary control system components, but also about the actual physical process that is being controlled. Some threat actors are also increasingly able to demonstrate that they have access to extensive skills, financial backing and resources.

Norwegian businesses depend on the ability to implement strategies to improve cyber security urgently in an ongoing process. Cyber security attacks on industrial automation and control systems can in the worst case have physical consequences. The industry is meeting the new challenges when critical systems that were isolated before are now connected to networks, possibly also to the Internet.

This NFEA conference focuses on cyber security in critical infrastructure internationally as well as the status for cyber security in the oil and gas industry. Leading standards that apply today will be presented along with how the standards are being applied within different corporations’ governance frameworks and procedures.

This year we have a special focus on «Security for safety», and we try to point out how new technology can challenge critical systems we thought were safe.

Program (med forbehold om endringer)

Last ned program (PDF)
  • 09:00


  • 09:50


    Karin Sundsvik, Director, NFEA

  • 10:00

    Cyber threats and the petroleum industry Possibilities for learning?

    Asbjørn Ueland, Petroleum Safety Authority Norway

  • 10:30

    Embodied vulnerabilities – Cyber-physical security of medical devices

    Marie Moe, SINTEF Digital

  • 11:00

    Introduction to the IEC62443 standards

    Judith Rossebø, ABB

  • 11:30


  • 12:30

    Introduction to the European IACS components Cybersecurity Certification Framework (ICCF) Certification according to IEC62443-4-2.

    Michael Theuerzeit, Hudson Cybertec

  • 13:00

    How ISA/IEC 62443 standard series is used in Scandinavia

    Margarita Jaitner, Swedish Defence Research Agency

  • 13:30

    Protection Levels and how you could deal with them

    Widar Th. Syverinsen, Siemens

  • 14:00


  • 14:30

    IEC 62443 and risk based designs for critical systems in oil & gas projects

    Fredrik Gratte & Erik Provan, Aker Solutions AS

  • 15:00

    Cyber Security in the manufacturing industry

    Karl Schrade, Senior ICS Security Consultant Phoenix Contact Cyber Security

  • 15:30

    Cyber security for drives

    Bjarte Olsen, ABB AS

  • 16:00

    End Day One

  • 18:30

    Conference dinner at Bølgen & Moi, Tjuvholmen

  • 08:30

    Lessons learned, ransomware

    Karsten Rosgaard, Maersk Drilling A/S

  • 09:00

    (in)Security in Building Automation: How to Create Dark Buildings with Light Speed Title to be announced

    Thomas Brandstetter, Limes Security

  • 09:30

    Challenges going from Fieldbus to Ethernet networks

    Patrick Lansdorf, Channel Partner Manager HMS Industrial Networks AB

  • 10:00


  • 10:30

    Attack detection using SIEM - Security Information and Event Management

    Ådne Faugstad-Kaldestad, Cyber Security Senior Engineer, ABB AS & Olav Mo, Cyber Security Manager, ABB AS

  • 11:00

    Security In maritime communications, autonomous ship

    Christian Frøystad, SINTEF Digital

  • 11:30


  • 12:30

    APT case study

    Martin Eian, mnemonic AS

  • 13:00

    OPC enables secure real-time communication with Industrial Control Systems

    Randy Kondor, P.Eng. OPC Training Institute

  • 13:30


  • 13:45

    Security for Safety The NAMUR NE 163 Method

    Erwin Kruschitz, anapur AG / NAMUR

  • 14:15

    Railway in technological development - are there sufficient mechanisms to protect against cyberattacks?

    Roar Andreassen & Kaja Daae Torsteinsen, Lloyd’s Register Consulting – Energy AS

  • 14:45

    Pandora’s box - Case studies and reviews showing how hackers can utilize support systems to get a backdoor into your critical infrastructure

    Lars Erik Smevold, KraftCERT

  • 15:15

    End of Conference


Praktisk informasjon


25.04.18 - 26.04.18


Grand Hotel Oslo by Scandic, Karl Johans gate 31, 0159 Oslo

Vis i kart


Participant Fee:

  • Company member kr. 7 000,-
  • Personal member kr. 7 000,-
  • Education member kr. 4 000,-
  • Education Non member kr. 5 000,-
  • Non member kr. 9 000,-

Cancellation: Cancellation later than three weeks before the conference will be charged with a fee of NOK 2.000,-. Cancellation later than one week will be charged with the full fee. Cancellation needs to be notified in writing to be valid.


Dinner at 25th of April:
NFEA will arrange a dinner at Bølgen & Moi, Tjuvholmen 25th of April. Price: NOK 850,-

We hope you will attend this social gathering. Sign up for the dinner latest within 13th of April.


We have reserved some rooms at Grand Hotel by Scandic. Booking at with the reference code BBES240418. (Code valid until 26th of March)

Utstilling / logo

Exhibitions: maximum 3 meters with

Exhibition incl. 1 participant:

  • Members kr. 12 000,-
  • Non members kr. 14 000,-

Exhibition incl. logo and 1 participant:

  • Company member kr. 16 000,-
  • Non member kr. 18 000,-

Logo in the program:

  • Members kr. 5000,-
  • Non members kr. 7500,-


  • Phoenix Contact
  • Phoenix Contact Cyber Security
  • SecurityMatters
  • Triple-S AS
  • Honeywell Process Solutions
  • Telenor Inpli AS
  • Sysctl AB
  • Last Mile Communication AS


Program Commitee:

  • Jan Munkejord – Statoil ASA, Commitee Leader
  • Tor Anders Hauge – Glencore Nikkelverk AS
  • Trygve Kristoffersen – Triple-S AS
  • Marie Moe – SINTEF Digital
  • Judith Rossebø – ABB AS
  • Frode Stensletten – Goodtech AS
  • Karin Sundsvik– NFEA
  • Tonje Olsen – NFEA

Membership in NFEA: Company member NOK 5 000,- Personal member NOK 500,- Education/research companies NOK 5 000,- Students are free of charge.

If possible prepare the written presentations in English. Each individual speaker may decide whether they wish to speak Norwegian or English, however the preferred language is English.