Two Decades of Defending ICS: The SANS ICS Summit 20th Anniversary!

This blog was jointly authored by Dean Parsons and Tim Conway.

Why the ICS Summit?

The SANS ICS Summit was created to address the growing need for cybersecurity education and training across the industrial control systems/operational technology (ICS/OT) communities. It aims to reach and educate a wide spectrum of professionals involved in industrial cybersecurity.

2025 marks the 20th Anniversary of the SANS ICS Summit! The Summit has evolved significantly over the last two decades, playing a pivotal role in advancing ICS/OT security worldwide. Not only has it kept pace with the changing cybersecurity landscape, but it has also anticipated and shaped the future of security practices and technology. The Summit has trained countless leaders and practitioners to defend critical infrastructure across all sectors.

NEW Format for the 20th Anniversary

This year’s 20^th Anniversary ICS Summit will take place June 15-17 at Disney's Contemporary Resort. The 2025 Summit features an updated three-day format designed to enhance knowledge-sharing hands-on experiences. Attendees will benefit from practical workshops, live demonstrations, and industry expert-led presentations, followed by specialized ICS/OT training courses.

This new format is designed to address modern ICS security challenges and provide real-world, applicable defense strategies for critical infrastructure sectors.

Honoring a Legacy: Mike Assante and the Origins of the ICS Summit

Mike Assante was a highly respected figure in the field of ICS security. His contributions were pivotal in establishing and shaping the SANS ICS Security Summit. Mike served as the SANS lead for ICS and Supervisory Control and Data Acquisition (SCADA) security. His work at SANS Institute embodied his deep commitment to enhancing the security of critical infrastructure against evolving threats.

His work extended beyond SANS, as he held leadership roles at organizations like American Electric Power where he served as Vice President and Chief Security Officer (CSO) and North American Electric Reliability Corporation (NERC) where he served as the first CSO. His research at the Idaho National Laboratory played a crucial role in identifying vulnerabilities in control systems and developing cybersecurity strategies to mitigate them. His legacy includes influencing policies, authoring significant papers on cybersecurity and policy issues, and mentoring many in the field.

The Michael J. Assante ICS Security Lifetime Achievement Award, named in his honor, recognizes individuals who have made exceptional contributions to the security of ICS on an international scale, highlighting his lasting impact on the industry.

The Michael J. Assante ICS Security Lifetime Achievement Award

The Michael J. Assante ICS Security Lifetime Achievement Award recognizes individuals who have made outstanding contributions to enhancing ICS security on a global scale. This award honors those who actively strive to bridge the gap between IT and OT.

Through education, mentorship, and leadership, recipients of this award have significantly raised awareness of the risks facing ICS environments while championing the belief that achieving cyber secure ICS implementations ICS defense is doable! Recipients will be recognized for their dedication and contributions in shaping the ICS security field and for an optimistic outlook on the potential to make a difference.

Check out the Michael J. Assante ICS Security Lifetime Achievement Awards here.

20 Years of ICS Security Excellence and More to Come!

Over the last two decades, the SANS ICS Summit has made significant contributions to cybersecurity and engineering communities worldwide. Here are 20 key highlights that showcase its impact:

1. Practical Hands-On Applied Training: Addressing ICS/OT challenges since before Stuxnet and providing direction in defending critical infrastructure against advanced persistent threats that target the systems that move, make, and power our world.
2. Industry Benchmarking: The SANS State of ICS/OT Cybersecurity Survey, published annually since 2017, provides critical industry benchmarks.
3. Skills Development: Focusing on building cybersecurity expertise for practitioners and leaders.
4. Community Building: Nurturing a global ICS/IT security community thought networking and collaboration.
5. Global Impact: Bringing together international experts to enhance cooperation in control systems defense.
6. Showcasing Innovations: Highlighting cutting-edge solutions and demonstrations for modern ICS security challenges.
7. Practical Applications: Emphasizing actionable cybersecurity methods and techniques.
8. Advanced Training: Provides specialized courses and certifications taught by world renounced industry practitioners.
9. Improved Incident Response: Enhancing the speed and effectiveness of ICS/OT incident response.
10. ICS Critical Controls: Offering structured guidance on implementing the SANS Five ICS Cybersecurity Critical Controls.
11. Workforce Development: Addressing workforce management and governance issues within ICS security.
12. Strategic Planning: Providing leadership-focused insights into strategic security planning for ICS environments, real-world case studies, and risk management scenarios.
13. Technology Integration: Exploring the secure integration of emerging technologies like cloud services and AI in ICS.
14. Vendor Collaboration: Facilitating cooperation between ICS vendors and security professionals.
15. Regulatory Compliance: Covering evolving security frameworks like NERC CIP, NIS2, pipeline security directives, and additional industry standards.
16. Safety and Security: Maintaining a dual focus on safety and security.
17. Remote Access Security: Promoting secure remote access technologies in ICS environments.
18. IT/OT Convergence: Examining the security implications of IT and OT integration on security strategies.
19. Thought Leadership: Featuring forward-thinking insights from ICS cybersecurity experts.
20. Accessibility and Inclusion: Offering both in-person and online options to reach a broader audience.

A Message from Dean

On a personal level, being involved in cyber defense for over 20 years—more than half of that in ICS/OT sectors—I am deeply honored to continue contributing to defending critical infrastructure. Whether through writing the ICS Cybersecurity Field Manual, creating whitepapers, posters, blogs, and instructional videos, or leading training initiatives globally, my mission has always been to empower others with practical knowledge and strategies they need to secure the systems that underpin modern society.

My journey has been profoundly shaped by hands-on experiences, collaborations, and the community spirit fostered by the SANS ICS Summit—a hub for hands-on, practical ICS/OT cybersecurity. From countless conversations with industry peers to invaluable opportunities to work directly with ICS/OT technologies across many sectors, these experiences have solidified my belief and the importance of the SANS ICS mission: the ongoing protection of our critical infrastructure.

Thank You to the ICS Community!

As we reflect on the remarkable journey over the past 20 years of the SANS ICS Summit, we extend our deepest gratitude to the entire ICS/OT cybersecurity community. Your dedication and engagement have not only enriched the collaboration in the field but have also propelled the industry forward and built stronger critical infrastructure defenses.

A heartfelt thank you goes out to the frontline engineering professionals—from the brave folks climbing poles during storms to ensure reliable power in the electric sector, to the courageous efforts of oil and gas workers, who work tirelessly to maintain a steady energy supply, to the diligent workers in food, beverage, and heavy manufacturing, and the professionals in the water and wastewater sectors, whose essential services preserve the health of our communities.

To all of you working in the critical infrastructure sectors here and abroad, your contributions on the front lines, through your relentless pursuit of safety, efficiency, ICS/OT cybersecurity, and innovation, keeps our daily lives secure and functioning. Thank you for your unwavering commitment and for being an integral part of our ongoing mission to protect and enhance our world's critical infrastructure.

Join Us for the 20^th Anniversary SANS ICS Summit!

Join me in person at the 20th Anniversary SANS ICS Security Summit. Whether you’re new or experienced, currently in the field or in IT security, this is a must-attend event for anyone serious about ICS/OT cybersecurity!

This year’s new three-day format brings even more hands-on workshops, expert-led discussions, and real-world defense strategies tailored for critical infrastructure. The in-person experience gives you direct access to industry “in-the-field” leaders, immersive learning with ICS equipment, and connections you won’t get anywhere else.

And don’t stop with the Summit! Extend your stay and take advantage of specialized ICS Security training courses immediately afterward. I’ll be teaching ICS418^TM: ICS Security Essentials for Leaders^TM, designed to equip security and operations leaders with the essential knowledge to manage ICS cybersecurity risks effectively.

If you’re looking to level up your expertise and bring actionable knowledge back to your organization, this is your chance. Don’t just hear about it—experience it. Be part of the mission. See you at Disney’s Contemporary Resort, June 15-17. Register now!