Securing Industrial Control System (ICS) Training

Industrial control systems include various systems and technologies, such as SCADA systems (Supervisory Control And Data Acquisition), Distributed Control Systems (DCS) and Programmable Logic Controllers (PLC). Everyone has one goal: to help manage and control industrial processes. ICS are increasingly used in various industrial sectors: oil, gas, power plants, manufacturing, cities and residential buildings. The course aims to introduce participants to the world of ICS, identifying the best practices of configuration and implementation, management of plant suppliers, monitoring and infrastructure safety. A detailed overview of the documents issued in this area by the main entities (NIST, ENISA) will also be provided.

Ort & Datum

  • 18.06.2020
  • Online training
  • Training in Italienischer Sprache

Benötigte Materialien

  • Bitte bringen Sie einen Laptop mit, auf welchem Firefox oder Google Chrome bereits installiert ist. Das vermittelte theoretische Wissen wird in praktischen Workshops, vertieft und gefestigt. Hierfür stellen wir jedem Teilnehmer eine eigene NetEye-Umgebung zur Verfügung.

Der Trainer

  • Massimo Giaimo, SEC4U Founder
  • Training in italienischer Sprache

Kosten 

  • Teilnahme am Training: € 1.290 (exkl. MwSt.)

Agenda

Securing Industrial Control System (ICS)

  • Introduction to the Industrial Control System (ICS)
    • areas of application
    • evolution of technologies
    • specific threats (the cases Stuxnet, Havex, Blackenergy, CRASHOVERRIDE, Triton / Tritis)
    • attacks that have become historic and directed at critical systems and infrastructures, IoT and IIoT
  • IT network and OT network: differences and similarities
  • standards and reference courses ◦ standard IEC 62443 / ISA 99, ENISA Recommendations & Best Practices, NIST ICS Security 800-82 rev 2, SANS ICS410 and ICS515
  • Legislation
    • NIS directive, Department of Safety Information (Dis)
  • Support tools
    • Computer Security Incident Response Team Italy
  • Research and exploitation of publicly available vulnerabilities
  • Gap Analysis on ICS / SCADA environments
  • Securing ICS: how to design and build a safe and resilient ICS infrastructure
  • Vulnerability Assessment & Pentest on ICS / SCADA environments ◦ methods and tools, differences with VAPT on IT networks
  • Construction of a test laboratory: possibility
    • PyScada, MiniNet / MiniEdit / MiniNAM / OpenPLC
  • Practical workshops 
    • traffic analysis
    • Shodan
    • Kamerka-GUI
    • NetEye / OpenVAS integration for ICS infrastructure verification

Ich möchte teilnehmen

Trainings-Form

Personal Information
Vielen Dank für Ihr Interesse zu unseren Trainings. Die hier eingegebenen Daten werden streng vertraulich behandelt und ausschließlich zur Bearbeitung Ihrer Anmeldung verwendet.