Steven Briggs - Shall We Play a Game

Shall We Play a Game by Steven Briggs Recorded on April 28th, 2021 for the 7th annual BSides Knoxville conference. Through gamification, a company cybersecurity exercise can be an exciting and engaging adventure. I'll present how to use tabletop gaming logic and FEMA HSSEP exercise planning structure to be able to deliver exciting, dynamic, and useful exercises. Steven has worked for the Tennessee Valley Authority (TVA) for ten years and is currently serving as a senior program manager responsible for the cybersecurity of TVA’s Coal, Gas, and Hydro Fleets. He is a NERC CIP subject matter expert focusing on vulner¬ability management and incident response. He is an active member of the NERC CIPC Supply Chain Security facilitating the teams writing of the Vendor-Identified Incident Guideline. Steven Co-led the Cyber team for the E-ISAC’s Grid Exercise III and IV working group and worked to advance TVA’s and the utility sectors emergency response processes and adoption of FEMA ICS principles. Steven is a supporter of multiple efforts for critical infrastructure protection. Steven is a graduate of the University of Tennessee at Chattanooga with a Com¬puter Science Information Security and Assurance degree also majoring in Software Applications. He holds the SANS GIAC Response and Industrial Defense, Certified Information Systems Security Professional, Certified Authorization Professional, and SEI CERT Certified Computer Security Incident Handler certifications. Prior to entering into the cybersecurity field, Steven was a Sergeant in US Army 2-14 Infantry Regiment 10th Mountain Division.