Skip Navigation LinksASIS International / Education & Events / Education Programs / Classroom / Security Program Design - A Critical Infrastructure Protection Model

Security Program Design - A Critical Infrastructure Protection Model

What are CPE credits?
up to
CPE Credits
17 - 18 July 2013
Hyatt Regency Toronto
Toronto, ON, CANADA

Are you confident in your ability to create an integrated, end-to-end security program?

Can you confidently answer these questions?

  • What standards, models, and resources do utilities utilize to design programs to protect critical infrastructure?
  • How do law enforcement and the intelligence community factor into a security plan?
  • How are different security solutions aligned with varying complexities of security problems while maintaining an integrated security focus?
  • How is security risk management applied as the first step in creating an integrated security program?
  • How are metrics used to build on security program success?
  • What are the steps in building an integrated command center?

Join us in Toronto, Canada to get the answers! This program provides protection planning information using practical, real life examples from the diverse and complex utilities, critical infrastructure protection domain. A broad array of security solutions with sound protection philosophy is applied culminating in a fully integrated, end-to-end security program that any industry can apply in part or in whole. Learn how utilities security professionals are adapting to the new reality of integrated security management. Come away with valuable resources to assist you in your own security program planning.

Please note: Passports are required to travel from the United States to Canada

Sponsored by the ASIS Utilities Security Council and the Critical Infrastructure Working Group

Security Program Design
Program Brochure (PDF)

Registration Fees

 Pertinent Information

 Immediate Benefits

  • ​Expand your knowledge of security program development and application.
  • Learn how to integrate complex and diverse security solutions into a cohesive, functioning security program.
  • Benefit from the expertise of experienced professionals who have not only developed security plans and programs for many of North America’s largest utilities in order to protect critical infrastructure, but have also worked with governments, regulatory bodies, and law enforcement to develop fully integrated and comprehensive security solutions, compliance programs, and security frameworks.

 Who Should Attend

  • Physical and cyber security managers and directors
  • Risk managers
  • Specialists/managers/directors of critical infrastructure security programs
  • Homeland security specialists and managers
  • Business continuity planners
  • Facility and infrastructure managers
  • Emergency management professionals
  • Professionals preparing to take the CPP or PSP exams

 Program Overview

Security Program Development and Effective Risk Management
Review risk management standards and risk assessment tools. Review how vulnerability assessments can be used to identify threats for enhanced risk management. Learn to plot risk for enterprise risk management alignment; determine your risk tolerance; and learn how to use risk mitigation in security planning.
Protection Principles
Examine the protection principles used within our security programs. Review defense in depth, deterrence, detection, delay, and response concepts. Critical asset identification, adversary path applications, worst case scenario planning, response exercises, and the relationship between business continuity, disaster recovery, and safety are covered.
Security Program Metrics
Review who uses metrics, how to select the best metric for your program, and why they are important—especially in promoting your department. Discuss the contribution of security incident management to metrics and learn how useful audits can be using metrics as a baseline.
Security Command Centers
All segments of a command center will be addressed, from selecting, staffing, and equipping to business case support and critical functions.
Security Technology Application
Evaluate the capabilities of common physical and cyber security technologies; then learn to measure system effectiveness.
Standards and Guidelines
Examine the difference and learn why we need both. See how they can be used in the assessment process. Sample security standards will be reviewed. A call for involvement will be presented as well.
An Industry-Based Starting Point: Security Manager’s Handbook
Learn the value of an industry handbook, first steps in creating one, and how to use it to your best advantage. Receive a copy of the ASIS International Utilities Security Council’s handbook.
Program Design: Complex Security Problems, the Utilities View
Bring it all together for dams and powerhouses, nuclear plants, reservoirs, pipelines, and transmission lines. Acts of terrorism, building response programs, and working with outside agencies will also be included.
NEW FOR 2013
Collaborate with security practitioners from diverse industries and dialogue with experienced and award winning security professionals when attendees of this program join attendees of Managing Your Physical Security Program and Advanced Topics—sponsored by the Physical Security Council and collocated in Toronto—for a one-hour, joint session.


Ms Sarah J Bynum, CPP
  • Ms Sarah J Bynum, CPP
  • Director of Corporate Security
  • Siemens Energy
  • Colleagues: 0

Mr Anthony Hurley, CPP, PCI
  • Mr Anthony Hurley, CPP, PCI
  • Associate Managing Director
  • Witt O'Brien's
  • Georgetown TX, UNITED STATES
  • Colleagues: 0

Mr Darren T Nielsen, CPP, PCI, PSP
  • Mr Darren T Nielsen, CPP, PCI, PSP
  • Manager, Physical & Cyber Security Audits & Investigations
  • WECC
  • Colleagues: 0

Bio: Darren Nielsen is a Cyber Security Compliance Auditor with the Western Electricity Coordinating Council (WECC). Mr. Nielsen has worked for Arizona Public Service as a Corporate Security Program Advisor with extensive and exemplary work in the NERC CIP program. Mr. Nielsen worked for Southern California Edison as the Corporate Security Manager of Compliance and Training and, most recently, worked as a consultant for the WECC Audits and Investigations Team. He served as the Chair of the WECC Physical Security Workgroup (PSWG) for two years and was an active member of the WECC Critical Infrastructure & Information Management subcommittee (CIIMS) and NERC Critical Infrastructure Protection Committee (CIPC). Mr. Nielsen is board certified in security management and is the current Vice Chair of the ASIS Utilities Security Council. Mr. Nielsen holds the ASIS Certified Protection Professional (CPP), Physical Security Professional (PSP) and Professional Certified Investigator (PCI) designations. Additionally, Mr. Nielsen holds the Certified Information Systems Auditor (CISA) certification and the Certified Business Resilience Manager (CBRM), and Certified Business Resilience Auditor (CBRA) certifications. Prior to working in the utility compliance industry, Mr. Nielsen served his country as a U.S. Marine and retired as a Law enforcement officer in Phoenix, AZ. He received his Bachelor's degree in Police Science from Ottawa University (Summa Cum Laude) and Master's degree in Administration (leadership emphasis) with Distinction from the Northern Arizona University.
Mr Doug Powell, CPP, PSP
  • Mr Doug Powell, CPP, PSP
  • Manager Security (Site C PMO)
  • BC Hydro & Power Authority
  • Vancouver BC, CANADA
  • Colleagues: 0

Bio: As head of Security for BC Hydro since 2006, Doug gave guidance to protect infrastructure during the 2010 Winter Olympics. He now manages Security, Privacy and Safety risk for smart metering at BC Hydro. Doug has 30 years’ experience managing security. Doug shows leadership internationally serving committees like the ASIS International, Utilities Security Council and Critical Infrastructure Working Group and Canada’s National Electricity Infrastructure Test Centre. He sits on Modulo’s Customer Advisory Board in the U.S. Doug won the 2012 Security Seven Award by Information Security Magazine. He was named 2010 CSO of the Year and his team won the 2011 Security Program of the Year, both from SC Magazine. Doug is a speaker of high-profile and has authored numerous topical papers and articles.

 Hours, Fees, & Hotels

Registration Hours
 5:00-6:00 pm

7:00-8:00 am

Program Hours
8:00 am-5:15 pm

Registration Fees
Registration fees include a networking reception, daily refreshment breaks and continental breakfast. Hotel costs are not included.
Early Bird
$   825
$   925
$ 1,125


Be sure to mention ASIS when requesting the special room rate of $179 single/double (plus tax). This price will be honored until June 20 or until the room block is full. 
Hyatt Regency Toronto
370 King Street
Box 137
Toronto, ON M5V 1J9
Please note: A passport or other appropriate documentation is required to travel to and from Canada and the United States.


Team Discount:
Receive a 10% discount when three to five attendees register from the same organization, 15% for six or more. Email for details.

Certification Discount:
ASIS members and nonmembers holding the distinction of CPP, PCI, and PSP receive a $25 discount per classroom program. This discount is automatically applied at checkout.

Rental Car Discount:

Contact Dollar at +1.866.542.2303, extension 2 or; reference code CM0140. FL rentals reference code CMO135.