Gabriel Sanchez
As a director at 1898 & Co., Gabriel leads the ATPC (Advanced Threat Protection Center) focused on ICS (Industrial Control Systems). He works with clients to develop robust cybersecurity programs, ensures that clients are fully supported 24/7/365, and he is on the front lines of protecting critical infrastructure clients from cybersecurity threats.
Gabriel received a master’s in information security engineering from the SANS Technology Institute. For over 20 years, he has worked in cybersecurity across several industries, including banking, utilities, and government research.
Session
To effectively protect Critical Infrastructure from cyber threats, a specialized Security Operations Center (SOC) uses a distinct approach. Unlike a standard IT SOC, where Tier 1 Analysts handle initial event triage, the Critical Infrastructure SOC reverses this hierarchy. The highest-tier analysts, SMEs, form the majority, with lower tiers providing support. Rapid and flawless implementation of detection rules and severity levels for Tier 1 Analysts is impractical. Instead, analysts supporting SMEs gradually become experts and can handle complex Critical Infrastructure alerts, reducing the risk of kinetic impact.