Wednesday, October 26, 2011

SCADAhacker to Offer ICS / SCADA "Blue Team" Security Training and Awareness Course in 2012

Having been involved in the industry for several years, I have realize that there is a lack of specific training to address "how to secure" industrial control systems. There are several very good courses currently available, including those offered by InfoSec Institute (which I will teach until early 2012), Red Tiger Security, Digital Bond, SANS and Idaho National Labs. However, when reviewing the syllabi of these courses, I feel that they tend to focus too much on either (1) theoretical aspects of the problem, or (2) the "hacking" or "red team" side of ICS security.

Knowing this, and not trying to duplicate what is currently available, I have decided to launch my own course entitled "Understanding and Security Industrial Control Systems". This course will be primarily focused on "securing" or "blue teaming" the ICS and will involve several labs that reinforce the selection and implementation of security controls relating specifically to ICS.


The preliminary agenda is as follows:
  • Understanding the Unique Threat Landscape of Industrial Control Systems
  • Understanding Current Standards and Best Practices from a Security and Compliance Point of View (ISA, IEC, ISO, NERC-CIP, CFATS, NIST, CPNI)
  • Risk Identification, Classification, and Threat Modeling
  • Understanding and Identifing ICS Vulnerabilities
  • Selecting and Implementing Administrative Security Controls
  • Selecting and Implementing Technical Controls
  • Auditing and Accessing ICS Security
I expect the first one or two classes to be offered in the Chicago area (near ORD airport). Future classes will be offered in manufacturing epicenters such as Houston, Los Angeles, Detroit, Pittsburgh, New Orleans, Washington D.C. and Calgary (others will be available based on customer interest).

Students will use their own computers and supplied with a bootable external drive which contains the testing environment and other tools studied during the week. Many labs will utilize physical ICS equipment providing a realistic scenario to that actually existing in the field. The course will also stress many new leading edge security technologies that will form the basis of a comprehensive overall ICS security program.

I am also open to nesting this curriculum in existing vendor and supplier training programs. please feel free to contact me for additional details.

All of this is very exciting, and i hope that this material will allow me to write and publish a much needed book on this topic in the 2012-2013 timeframe. The end goal is to offer a textbook in addition to the standard PowerPoint slide deck used to teach the class.

Please stay tuned for more details. i expect the first course to be available in the April-May timeframe, with registration beginning after the start of the year.

9 comments:

  1. Joel,

    I concur with your comments in that SCADA is the new frontier for security growth and opportunity on many fronts; however, in my current role as a Project Manager for a SCADA Security Assessment with a large energy/utilities company, getting more SCADA educated and grounded would only help me lead more projects in the future. Have you offered any classes in the Chicago area in 2012 (I live in Aurora, IL)?

    Thank you very much,

    Darrell Vydra

    ReplyDelete
  2. Excellent information provided by you.
    Thanks for it.
    security training companies uk

    ReplyDelete
  3. I always like your blog post because you always comes with different ideas and information. I always shared your site post with my friends. Keep posting and i will follow you.
    msha courses utah

    ReplyDelete
  4. very interesting post.this is my first time here.i found so many interesting stuff in your blog especially its discussion..thanks for the post! SMAC Security Training

    ReplyDelete
  5. I felt very happy while reading this site. This was really very informative site for me. I really liked it. This was really a cordial post. Thanks a lot!.
    https://medium.com/@irshadseo/rise-your-brand-awareness-impeccably-by-purchasing-real-instagram-followers-2a53e0b8d8a#.87peops14

    ReplyDelete
  6. Automation engineering is all about selecting, integrating, configuring and troubleshooting of various readymade products in different engineering branches which makes the machine run automatically. Autonetics helps to reduce gap between industry and yourself, helps you according to current market trend and industry need. Autonetics provide you portal to meet your professional characteristic and make you industry ready professional. Autonetics offers certification course in PLC Training programs for B.E. and Diploma graduating under and working profession. For a better career and higher post opportunities join Autonetics Training Center.
    To know more visit: http://autoneticstraining.com/
    Contact: +91 7721988881 / 7721988882
    0253 6615509

    ReplyDelete
  7. I read the article you mentioned in this blog. It is very helpful and provide complete information on SCADA vulnerability. Thanks for sharing valuable information.

    ReplyDelete