Principal Security Consultant
Mr. Lauriat has more than 15 years of experience in computer networking and cyber security. This has included project delivery, development of reliable and secure networks, SCADA network security, assessment of cyber assets, creation of cyber security specifications and policy, and redesign of network security measures.
Since joining N&ST in 2003, Mr. Lauriat has lead N&ST’s delivery efforts, ensuring projects with dozens of utilities are delivered on-time, on-budget and with solutions that delight N&ST’s clients. While managing N&ST’s consultant resources, Mr. Lauriat also helps large and small utilities across North America address some of their most vexing cyber security and compliance challenges. Mr. Lauriat has helped utilities develop sustainable approaches to NERC CIP compliance, especially CIP-002, CIP-005 and CIP-007. His activities have included identification of BES Cyber Assets (and BES Cyber Systems), establishment of Electronic Security Perimeters, development of remediation plans, execution of remediation activities, RSAW preparation, mock auditing, and audit representation. Specific projects have included: conducting mock audits and SME preparation training, helping utilities develop and maintain NERC CIP compliance program for power plants identified as having Medium Impact BES Cyber Systems, leading Vulnerability Assessments for compliance with CIP-010-2, assessing and implementing cyber security plans for Low Impact BES Cyber Systems and transitioning clients to NERC CIP Version 5 / 6. These projects have required Mr. Lauriat to create innovative and clever solutions to both improve cyber security and better demonstrate compliance.
Since joining the electric power industry in 2001, he has assisted several major electrical utilities with improving the security of their SCADA networks, including leading a project to separate a production SCADA network from a business network without interrupting real-time activities. Mr. Lauriat has also led efforts to assess the security of cyber assets at control centers, substations and generating plants, write cyber security specifications and policy, and redesign network security measures.
Mr. Lauriat began his professional career with GTE Internetworking (BBN) in 1998. While at BBN, Mr. Lauriat developed expertise in TCP/IP based networks and applications as well as security technologies. Major clients at BBN included a nationwide communications company, a large financial services institution and several international telephone companies. During this time, Mr. Lauriat performed numerous evaluations of client networks and lead efforts to address findings from those evaluations to help clients build dependable and secure networks. Following his tenure at BBN, Mr. Lauriat worked for two different small professional services firms. At those firms, he led several strategic consulting programs delivering security expertise in a way that exceeded customer expectations for quality, schedule and price.
Mr. Lauriat received a Bachelor of Arts degree, cum laude, from Middlebury College in Middlebury, Vermont. While at Middlebury College, he majored in Computer Science, and earned a degree with departmental honors. Mr. Lauriat has also held certifications from Cisco and Check Point in computer networking and network security.