ATLANTA--(BUSINESS WIRE)--Modulo, a leading provider of IT governance, risk and compliance (GRC) solutions, announced today that customer Doug Powell, Manager of Security, Privacy and Safety for BC Hydro has been named a 2012 Security 7 Award winner by Information Security magazine. Powell is honored for securing and managing risk of Critical Infrastructure (CI) in the energy sector. Each year the editors honor seven outstanding professionals in seven vertical markets who have made an impact on the advancement of information security practices, policies and technologies. In its eighth year, many of the industry’s most notable cybersecurity luminaries have been recognized for this prestigious award.
"Doug’s efforts to re-evaluate GRC practices for smart grid and his community contributions to international security standards, best practices and lab research is advancing the protection of CI globally," says Sergio Thompson-Flores, CEO of Modulo. “His insight to extend GRC beyond the traditional bounds by integrating cybersecurity, physical security and operational risk mirrors the Modulo vision and is helping to drive innovative new applications and capabilities of the Modulo Risk Manager platform.”
Powell oversees all aspects of security, privacy and safety governance and risk within the smart grid program of Canada’s third largest utility. When faced with the daunting task of navigating the regulatory community for BC Hydro’s $1 billion AMI (smart grid) program, Powell implemented a GRC assessment as the foundation for its enterprise-wide security standards framework. Doug worked with Modulo to add NERC CIP and NISTIR 7628 controls to the already extensive GRC standards base. Further, Modulo's nimble GRC engine became the standard for BC Hydro's risk reporting within its smart metering project and will hold the knowledge base and detailed asset repository for this complex architecture.
Powell also leveraged Modulo Risk Manager to successfully implement the critical infrastructure protection program for BC Hydro during the 2010 Winter Olympic Games in Vancouver.
“I am honored to be included in this impressive group of award winners and to be recognized by the esteemed editors of Information Security magazine. By bringing to light important advancements in every industry sector, the Security 7 award is enabling cross-industry collaboration – a critical step toward effective cybersecurity in this new world of Stuxnet-size threats,” said Powell.
Powell is currently Vice Chair of the ASIS Utilities Security Council and Chair of the ASIS Critical Infrastructure Working Group; an advisor on the Canadian National Energy Infrastructure Test Centre (SCADA Lab), Industry Advisory Board; and a British Columbia representative of the Canadian Energy & Utilities Sector Network cross-industry working group. He also received a written commendation from the Royal Canadian Mounted Police, Critical Infrastructure Intelligence Team in 2011 for his contribution to critical infrastructure protection initiatives aligned with industry cooperation in national information and intelligence sharing initiatives.
Powell’s essay titled “GRC Management and Critical Infrastructure Protection” and accompanying profile can be found online at: http://searchsecurity.techtarget.com/feature/GRC-Management-and-Critical-Infrastructure-Protection. In this essay he points to the need for GRC management to adapt in a new comprehensive way to include ongoing, real-time assessments (as opposed to periodic assessment) and physical and situational awareness inputs.
Adds Powell, “One model to watch and learn from is the recent United Nations Rio +20 event, where Modulo demonstrated how it can process and analyze real-time inputs from both the cyber and the physical world for effective situational awareness – exactly the type of assessment tool that is needed for complex protection environments from smart grid to national infrastructure.”
According to Information Security magazine, “These winners represent diverse interests, from emerging critical infrastructure protection issues and protecting federal networks, to information sharing and big data security analytics. While they have different focuses, all share a tireless devotion to cybersecurity.”
About Information Security magazine and SearchSecurity.com
SearchSecurity.com provides enterprise security professionals with the information they need to keep their corporate data and assets secure. No other site delivers the depth and breadth of security focused content that SearchSecurity.com does. At over 2 million, our registered member base includes the highest concentration of security-focused IT professionals anywhere. Tightly integrated with industry-leading Information Security magazine, the site offers security-specific news, technical tips and strategic planning content, written by our dedicated editorial staff and a network of over 150 of the top independent industry experts.
Modulo is a leading global enterprise provider of comprehensive Governance, Risk and Compliance (GRC) management solutions. Modulo’s award-winning Risk Manager™ provides hundreds of organizations worldwide with the tools they need to automate the entire GRC management process to monitor, manage and sustain adherence to policy and regulations while reducing enterprise risk and complexity. Customers span the financial, health care, retail, telecom, power & gas and government sectors and include BASF, BC Hydro, Commercial Bank of Dubai, Microsoft, New York University Medical Center, Synovus Financial, and Schlumberger. Modulo Risk Manager has earned “Best Buy” and “5-Star” ratings in SC Magazine’s 2011 and 2012 risk and policy management group product review and is the winner of the 2011 & 2010 Info Security Products Guide Global Excellence Award and 2010 Network Products Guide Product Innovation Award and is a finalist for the 2011 & 2010 SC Magazine Excellence Award.