Leadership

MARK FABRO

Mark Fabro is the President and Chief Security Scientist for Lofty Perch, Inc. a market leading security technology company focused on SCADA and control system cyber security. As a recognized expert in attack methodologies and adversarial techniques his work is focused on threat modeling, incident investigations and counter-attack planning. His projects have included supporting some of largest infrastructure asset owners in the world, and in addition to being involved in the development of several security standards for transportation, energy, and water sectors he has testified to Congress on cyber security risk and threat to the North American Bulk Power System.

Mr. Fabro’s was a contributing specialist to the U.S. National Strategy to Secure Cyberspace, the Cyber Annex to the National Response Framework, the post-Katrina control systems recovery plan for Oil and Gas, and most recently the DoE Cybersecurity Capability Maturity Model (C2M2). He has authored several of the Recommended Practices for the DHS ICS-CERT, is a co-founder of the Repository for Industrials Security Incidents (RISI), and is a member of both the NERC Smart Grid and Cyber Attack Task Forces. Over his 20 year career he has been instrumental in helping shape the security technology landscape whether it was creating first generation hardened OS firewalls or assisting the White House in crafting the National Strategy to Secure Cyberspace.

On the research side he is well known for the discovery of numerous critical vulnerabilities in infrastructure technology, authored early proof-of-concept code for next-gen weaponized malware and is a contributing developer to numerous assessment frameworks.  He is regularly published for his work in Smart Grid, integrated radio mesh communications, and control systems forensics. He is the co-founder of numerous security mailing lists, and is involved in several international working groups addressing ‘denial of control’ within the process control and SCADA domain.  He has also contributed to several standards and practices specific to SCADA/EMS security, namely NIST 800-82 and NISTR 7628, and is on the American Public Transit Association (APTA) Control Systems Cyber Security Working Group.

Mr. Fabro has a degree in applied physics and mathematics and is currently working on his PhD in Electrical and Information Engineering. He has completed post graduate studies in national security and counterterrorism at both the American Military University and the United Nations, and has taught cyber security theory at more than 20 universities and government agencies around the globe. He is a regular instructor/speaker at many international security events, including GridSecCon, ICSJWG, SecTor, AUSCERT, BlackHat, SANS and many others. Recently, for his work in critical infrastructure protection, he was recognized as one of the ’25 Most Influential Consultants in the World’ and was named ‘Information Security Professional of the Year’ by SC Magazine.

Prior to Lofty Perch he held senior engineering and director positions with many great companies such as Bearing Point (now Deloitte), American Management Systems (now CGI) and Secure Computing Corporation (now McAfee).

 

STEVE ANDERSON

Mr. Anderson is the co-founder, Executive Vice President, and Chief Operating Officer of Lofty Perch. With more than 25 years of experience in executive and corporate leadership, including in the infrastructure protection arena, Mr. Anderson leads Lofty Perch in the areas of strategic operations and emerging markets. Mr. Anderson’s leadership skills and early insight into the evolution of the information technology market led to the success of many global ventures including Duplium, Magtech, CCBS, and Anderson Media, a world leader in electronic media development.

Since its inception in 2005, Mr. Anderson has overseen all of the major Lofty Perch strategic successes including the expansion into U.S. markets, the solidification of international partner agreements, and all strategic resource acquisitions. Mr. Anderson’s commitment to professionalism and dedication to customer needs drives Lofty Perch’s focus on delivering quality solutions which properly fit the immediate and long-term requirements of all Lofty Perch customers.

 

JOHN SLADEK

John Sladek is a Senior Security Advisor at Lofty Perch Inc. where he specializes in industrial control system (ICS) cyber security governance, incident response, threat risk assessments, cyber security assessments and the development of technical ICS security training. He has worked across several critical infrastructure sectors including bulk power and energy management and is a globally recognized expert in nuclear safety and I&C cyber security. His expertise is both broad and deep and includes operators, regulators (competent authorities) and technical support organizations.

In addition to developing training for several IAEA computer security courses Mr. Sladek was a contributor to International Atomic Energy Agency (IAEA) guidance for cyber security at Nuclear Facilities, including Computer Security of Instrumentation and Control Systems at Nuclear Facilities (NSS-33-T), Computer Security Techniques for Nuclear Facilities (NST-047) and Computer Security for Nuclear Security (NST-045).

Prior to joining Lofty Perch, Mr. Sladek gained over 25 years experience at Ontario Power Generation where he was involved in the development and support of computerized process control and was the Single Point of Contact and Subject Matter Expert for computer security at the Pickering Nuclear Generating Station.  In that role he performed design review, developed and implemented technical vulnerability management programs and supported the entire suite of cyber security activities for systems involved in performing Safety, Security, and Emergency Preparedness functions. While there he initiated the creation of the national Canadian Nuclear Industry working group on cyber security which is a forum where interested parties from across the country share experience and develop common approaches for addressing cyber security issues.

Mr. Sladek has a degree in Electrical Engineering from Queen’s University (Kingston).

 

PAUL KELLY

As Lofty Perch’s Director of Business Development, Paul brings over 20 years of sales and sales management experience in the Information Technology product, service and education marketplace. Having provided comprehensive solutions to Fortune 1000 clients and government agencies, his focus at Lofty Perch is developing, managing and maintaining customer partnerships within the critical infrastructure protection and SCADA security marketplace.