Course Overview
The Securing ICS: Becoming an Industrial Cyber Security Professional course has been designed to provide those at IT/OT operator or equivalent level with an enhanced understanding of today’s cyber security challenges facing their ICS environments. This knowledge is vital when managing the day to day running of all aspects of security risk for those environments.
This course will show students how to combine the disciplines of IT, Operational Technology (OT), Physical Security or Facilities Management to best support their organisations’ cyber security and risk reduction strategies for their ICS environments across multiple industry sectors. In addition, it will provide students with the knowledge level required to challenge the GICSP® certification.
Who Should Attend
- Anyone working to secure an ICS environment
- Non-ICS staff who need to understand ICS terminology and how it differs from their current roles
- If you are a professional working in an ICS environment including:
- Site/Asset Operators
- Procurement/Contract staff
- Supply chain staff
- Site/Asset IT Support engineers
- Site/Asset Physical Security/Facilities Manager staff
- Integration/third party professionals
Learning Objectives
- By the end of the course you will be familiar with:
- Identifying the current and emerging threats to your ICS environments
- Where your ICS environments may be vulnerable
- What actions you need to take to secure those environments and help reduce the risk
- How to prepare for and manage a cyber security incident
- The importance of Security Awareness and Training
Course Content
- The course follows a whole lifecycle approach for designing, implementing, monitoring and decommissioning an ICS with security in mind and covers the following modules
- ICS Basics (for non-OT attendees)
- Cyber security essentials (for OT attendees)
- ICS Security governance and security risk
- ICS Architecture
- ICS Hardening
- Access Management
- Physical Security
- ICS Security Assessments
- ICS Security Monitoring
- Cyber Incident Management
- Cyber TTX
- Exam Preparation (please note that the cost of the GICSP exam is not included in the course cost)
Course Details
- Course Author has 30+ years of engineering experience designing Industrial Control Systems for industrial plant experience.
- There are no pre-requisites for this course. However, all attendees need a good understanding of either basic IT or OT skills.
- A configured laptop is required (configuration instructions are provided).
- A handbook will be provided for each student which can be used for the open-book exam.
- On completion a certificate is provided.
- Attendees can earn 30 CPEs.
- This course aligns to the following CyBOK Knowledge Areas:
- Cyber-Physical Systems
- Distributed Systems Security
- Risk Management and Governance
- Security Operations and Incident Management
- This course is a skilled level course, but it can also be used as preparation for more advanced training such as:
- ICS505: Advanced ICS Security course
- Preparing for the GIAC Global Industrial Cyber Security Professional (GICSP) certification.
Please note that attendees will be asked to download certain software for the purposes of training and should not bring a regular corporate build laptop for this course! When installing software for this course, there is always a chance of damaging or interfering with something else on the system. Students should assume that all data could be lost.
