This course provides training on understanding, protecting, and securing Industrial Control Systems (ICS) from cyber-attacks. In order to understand how to best defend a system, trainees will learn about common vulnerabilities and the importance of understanding the environment they are tasked to protect. Learning the weaknesses of a system will enable trainees to implement the mitigation strategies and institute policies and programs that will provide the defense-in-depth needed to ensure a more secure ICS environment.
The online course consists of pre-recorded videos compiled into sessions by our instructional staff:
Participating in this online course will not restrict you from attending a live 301 in Idaho Falls in the future.
Session 1: Overview of Industrial Control Systems including an attack demonstration
Session 2: Network Discovery and Mapping
Session 3: Network Defense, Detection, and Analysis
Session 4: The Exploitation Process
Session 5: Network Attacks and Exploits
Plan on dedicating around 12 hours of the week to complete the course. Participants can go through the sessions at their own pace during the week, but the sessions must be completed in order. In other words, each session must be completed before the next session will be available for viewing.
Particpants will have the opportunity to submit questions with each session, and our instructors will host a live Q&A webinar on Friday to address those questions. Attendance at the webinar is optional.
A certificate of completion and CEUs will be offered to those who complete all sessions of the course within the week.
Note: This course is not a deep dive into training on specific tools, Control System protocols, Control System vulnerability details or exploits against Control System devices. The 301 designation is simply a course number and has no reference to a “300 level” course. The online version of the class does not currently include the classroom hands-on exercises or the red team vs. blue team exercise.
Who Should attend:
Members of the industrial control systems community associated with IT and process control network operations and security (Operations Technology, OT), operations or management of critical infrastructure (CI) assets and facilities, as well as those who provide CI components and software development.