Advanced Essentials of ICS Security (ITSY 1491)

Advanced essentials of Industrial Control System security - this course addresses the broad topic of cybersecurity challenges and practical active defense strategies in the Industrial Control System (ICS) environments. The goal is to incorporate industry standards and practices of security engineering with a focus on availability, safety, integrity, and confidentiality aspects of automation systems.

Course Objectives: understand, practice and apply the following topics as a security professional

  1. Concepts pertaining to automation systems: ICS, DCS, SCADA, SIS, PLC, HMI, OPC, RTU, data historian, sensor, field devices, etc.
  2. How cyber threats, and vulnerabilities impact industrial control system operations.
  3. Importance of ICS passive asset management.
  4. Purdue model reference architecture.
  5. Network segmentation in ICS environments.
  6. Anatomy of an ICS attack.
  7. Past well-known ICS attacks.
  8. Methods used to compromise systems and defenses used by organizations.
  9. Essentials of physical security for ICS environments
  10. ICS cyber incident response
  11. ICS Malware analysis.
  12. MITRE ICS ATT&CK framework, NVD, CVSS.
  13. Industry tools for ICS threat detection and threat prevention.
  14. ICS cyber threat intelligence.
  15. Securing manufacturing industrial control systems: Behavioral Anomaly Detection.
  16. Skillset required for an ICS security professional.
  17. ICS Red teaming & Blue teaming exercises.
  18. Regulation, guidance & frameworks: NIST 800-82 R2, CISA, ISA-99, IEC62443.
  19. PLC Programming, OPC connectors, data acquisition
  20. Identify trends and resources for ICS security.