• Industrial Automation Cybersecurity: Principles & Application (TS13)


    Course Length:  4.5 days
    CEUs:  3.2


    This advanced course will expand your practical knowledge of cybersecurity technologies as applied to an industrial setting. The course will familiarize you with the latest developments in cybersecurity, including practical guides to design, implementation, and testing industrial networks and applications to ensure their security and reliability in an industrial production environment. The course will discuss the functions and purposes of the elements used to create and protect an industrial network. Course topics include the use of Internet technologies, web servers, TCP/IPV6, fiber optics, intrusion protection systems (IPS), virtual private networks (VPNs), and cryptography. The course will also cover the details of VPN configuration, IPS analysis, and other software (predominantly open-source) to discover and protect different network functions. In addition, the course will include cybersecurity problem-solving and the use of different security diagnostics. Special focus will be placed on the assessment of security risks and hazards in the industrial setting using ANSI/ISA99 and other cybersecurity organizational documents.

    Note: This is an advanced course with a minimum satisfactory completion of TS06 and TS12 (or equivalent in experience/training) as a mandatory prerequisite for successful completion of this course.

    You Will Be Able To:

    • Expand your knowledge of industrial network concepts
    • Apply the TCP/IPV6 protocols, addressing, and troubleshooting
    • Explain how web technology works, how web server capability is used in industry, and the security problems engendered by such use
    • Locate web technologies where they can be used securely for process control
    • Develop network security architectures and explain how to use layering and segmentation to improve security
    • Use security technologies such as firewalls, VPNs, virtualization, virus scanning, and intrusion protection from a security perspective
    • Industrially harden and secure your networks and perform "team red' testing of your systems

    You Will Cover:

    • TCP/IPV6 Networking:  Over Ethernet | Over Serial Links (PPTP) | Using other industrial Protocols
    • Converting from IPV4 to IPV6 Without Causing Security Problems
    • Making Networks Secure: Local, Global, and Organizational Policies
    • COTS OS: Vulnerabilities and Hardening Techniques
    • Security/Performance Problems Associated with Patch/Virus Update Management
    • Secure Architectures: Layering Based on Function and on Firewall/VPN Placements
    • Building a Secure Plant Floor Web Server:  HTML | XML | Methods to Enhance Security
    • Network Security Issues: Risks and Vulnerabilities | Attack Methods and Technologies
    • Applying: IPS/Virus Protection/Access-ACLs | Identification/Authentication/Non-repudiation
    • Network Security:  VPN Technology and Application | VLAN Technology and application | Managed Switch/Router Configuration
    • Security Management: Access, strong authentication, password strategies, multi-factor, centralized policy management
    • Practical Cybersecurity Applications:  ANSI/ISA-99 | NIST | NCSDOCIPEP | DHS | DOE | CPNI

    Classroom/Laboratory Exercises:

    • Configure industrial network security parameters and settings
    • Use security diagnostic tools
    • Use network analyzers/sniffers/scanners to troubleshoot
    • Use web technology to securely display plant data
    • Configure a managed switch/router/firewall/VPN for the plant floor
    • Perform vulnerability sweeps on a target system

    Includes ISA Standard: ANSI/ISA-99.02.01-2009, Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program

    Not sure this particular course is for you?
    pre-instructional survey is available for you to evaluate your level of understanding of the course material and to show you the types of questions you'll be able to answer after completing the course.