U.S. Flag Official website of the Department of Homeland Security
U.S. Department of Homeland Security Seal. ICS-CERT. Industrial Control Systems Cyber Emergency Response Team.

Industrial Control Systems Joint Working Group (ICSJWG)

The Department of Homeland Security (DHS) Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) established the Industrial Control Systems Joint Working Group (ICSJWG) to facilitate information sharing and reduce the risk to the nation’s industrial control systems.

The ICSJWG is a collaborative and coordinating body operating under the Critical Infrastructure Partnership Advisory Council (CIPAC) framework. The ICSJWG provides a vehicle for communicating and partnering across all Critical Infrastructure (CI) Sectors between federal agencies and departments, as well as private asset owners/operators of industrial control systems. The goal of the ICSJWG is to continue and enhance the collaborative efforts of the industrial control systems stakeholder community in securing CI by accelerating the design, development, and deployment of secure industrial control systems.

ICSJWG 2012 Fall Meeting



ICSJWG 2015 Fall Meeting

The Industrial Control Systems Joint Working Group invites you to
 Savannah, GA from October 27 - 29, 2015
Coastal Georgia Center
305 Fahm St., Savannah, GA, 31401

The ICSJWG 2015 Fall Meeting in Savannah, GA will include two and a half days of interactions and discussions through keynote speakers, practical demonstrations, plenary and breakout presentations, plenary and breakout panels, lightning round talks, and non-classified briefings. We will also be exploring new sessions in which the membership has shown interest. Some of these anticipated highlights include:

  • ICSJWG’s first ever Vendor Expo!
  • “Ask Me Anything” session with representatives from NCCIC/ICS-CERT
  • Break-out/networking session exclusively for our international partners

The ICSJWG Program Office is pleased to announce the following confirmed keynote and plenary presenters during Day 1 and Day 2 of the ICSJWG Fall Meeting in Savannah, Ga.

John Felker – Director of the National Cybersecurity and Communications Integration Center (NCCIC)

Tino Mantella – President of the Technology Association of Georgia

Marina Krotofil – Independent Security Researcher

Robert Lee – SANS Institute 

Biographies of these speakers may be found here.

On Day 3, we will have a setup of The ICS Village, a demo containing a replica of a typical water plant network setup and hands-on isolated industrial equipment stations. The presenters will demonstrate commonly found hardware and software that is used in most industries and common security/discovery tools which can be run against these systems. Attendees are invited to program a PLC, use an ICS protocol fuzzer or just ask questions and push buttons.

We are excited about the insight our speakers will provide to the community along with the networking and hands-on experiences attendees will be able to enjoy. We hope you can participate with us in collaborating to secure our nation’s critical infrastructure.

The Draft Agenda for the Meeting is now available and may be found here.

There is no cost to attend this event.  However, travel, accommodations, meals, beverages, and other incidental expenses are solely the responsibility of the event participants and will NOT be covered by the ICSJWG or NCCIC/ICS-CERT. Attendees will need to provide for their own local accommodations & transportation and arrange for travel and meals.

Use this registration link for the Fall Meeting.

This form is pre-selected for "Unclassified" at the top of the form and registrants to not have to alter or use that selection.

For this meeting, please register no later than October 23, 2015.

Note that this registration is for the meeting only, not for accommodations.

For additional information concerning ICSJWG and the Fall Meeting - including availability of Wi-Fi, cell phone reception, and coffee -  please refer to our Frequently Asked Questions (FAQ) sheet or contact us directly at ICSJWG.Communications@hq.dhs.gov.

Call for Abstracts – including application for a Vendor Booth -  is completed! Thank you for submitting abstracts!

We are finalizing the draft agenda after reviewing what we have received and will notify all who submitted ideas the status of their abstract(s) on or about September 25.

Please contact us at ICSJWG.Communications@hq.dhs.gov for an additional information.

We look forward to seeing you in Savannah, GA!

Previous Meeting Information

Please find presentations currently allowed to be posted at the appropriate Previous Meeting Information section below.

Please contact us if you have questions or wish copies of any of the following whitepapers or presentations.

ICSJWG Newsletters

If you would like to submit a short article of general interest pertaining to control systems security, please send it to ICSJWG.Communications@hq.dhs.gov for consideration. Submitted articles will be reviewed and approved by ICSJWG prior to publishing. Please note that marketing or sales presentations aimed at gaining the audience's interest in services, capabilities, or products cannot be approved. The deadline for submissions for the December 2015 Newsletter is December 16, 2015.

Copies of the current Newsletter and past Newsletters may be requested from ICSJWG.Communications@hq.dhs.gov.

ICSJWG Products and Materials

NEW... September, 2015 - ICSJWG/ICS-CERT Joint Fact Sheet: ICS Cybersecurity for the C-Level (Six Questions Every C-Level Executive Should Be Asking).

ICSJWG Webinar Series

Our Webinar Series is designed to inform the membership and general public about solutions to threats, vulnerabilities, and risks to critical infrastructure and control systems. The search for outstanding and value-added topics is ongoing. Please feel free to send an abstract or short description of any webinar idea to ICSJWG.Communications@hq.dhs.gov and the Program Office will add it to the topic queue for review and possible inclusion into the series.  Our intent is to have a webinar each quarter of the government fiscal year.  Please note that marketing or sales presentations aimed at gaining the audience's interest in services, capabilities, or products cannot be approved.

Past webinar presentations which have been released are found below and may be requested from the Program Office through ICSJWG.Communications@hq.dhs.gov.

  • July 2015 – Protecting M2M Systems at the Edge
  • October 2014 – The New Paradigm for Information Security: Assumption of Breach
  • June 2014 – Online Real Time Monitoring for Change Identification
  • March 2014 – I Think, Therefore I Fuzz!

Membership in the ICSJWG

By adding you to our membership roles, you will receive all outgoing messages to the ICSJWG community, including newsletters, meeting invitations and minutes, training information, calls for comments, and other announcements.

Volunteer participation, by contributing ideas, sharing information, or working toward solutions for CI security, is encouraged. To get involved supporting a working activity which addresses critical infrastructure security, please let us know your ideas and the ICJSWG Steering Team (IST) and Program Management Office (PMO) will consider them. To get involved with the ICSJWG in general, please contact us at ICSJWG.Communications@hq.dhs.gov.


Back to Top