Certified Security Professional in SCADA/ICS
This five-day intensive course enables participants to develop the necessary expertise to plan, design, and implement an effective program to protect SCADA systems. Participants will be able to understand common Industrial Control System (ICS) threats, vulnerabilities, and risks related to ICS systems and how they can be managed. This training focuses on a mix of knowledge and skills related to SCADA/ICS security.
The course has been designed by industry experts with in-depth experience in SCADA and Industrial Control Systems Security. Unlike other certifications, this course focuses specifically on the knowledge and skills needed by a professional looking to advice on, or manage risks related to SCADA environments and systems. Given the high profile nature, and the significant impacts associated with such environments, a holistic professional approach to security is needed and that is exactly what this course is designed to provide.
In addition to presenting the theoretical knowledge needed by a SCADA Security Professional, a comprehensive methodology for the implementation is presented. Thus, at the end of this course, participants will gain knowledge on how to effectively implement a security program for SCADA/ ICS systems.
- Security professionals wanting to gain SCADA/ICS security professional skills
- IT staff looking to enhance their technical skills and knowledge
- IT and Risk Managers seeking a more detailed understanding of ICS and SCADA systems
- SCADA/ICS System Developers
- SCADA/ICS Engineers and Operators
- SCADA IT personnel
- Instrument Control Engineer
- ICS Security Engineer
- Process Control Domain Security Engineer
- To understand and explain the purpose and risks to SCADA Systems, Distributed Control Systems and Programmable Logic Controllers.
- To understand the risks faced by these environments and the appropriate approaches to manage such risks.
- To develop the expertise to support a pro-active SCADA security program including policies and vulnerability management.
- To define and design network architecture incorporating defense in depth security controls for SCADA.
- To explain the relationship between management, operational and technical controls in a SCADA security program.
- To improve the ability to design resilient high availability SCADA systems.
- To be able to manage a program of effective security testing activities.
Day 1: Introduction to SCADA and ICS with Fundamental Principles
- Course objective and structure
- Fundamental principles and concepts of SCADA and SCADA Security
- Industrial Control Systems (ICS) characteristics, threats and vulnerabilities
Day 2: Designing a Security Program and Network Security Architecture
- SCADA Security Program, design, development and implementation
- Risk assessment
- Network security architecture for SCADA Systems
Day 3: Implementing ICS Security Controls, Incident Management and Business Continuity
- Development and implementation of security controls for SCADA Systems
- Incident management in relation to SCADA
- Business Continuity and Disaster recovery
- Monitoring, measurement analysis and evaluation of SCADA security
Day 4: Security testing of SCADA systems
- Testing principles
- Legal and ethical issues
- Penetration testing approaches
- Security testing of ICS
- Management of a penetration test
- Documentation of the test, quality review and report
- Maintaining a testing program
Day 5: Certification Exam
Knowledge of SCADA systems is preferred.
For more, visit https://www.pecb.com/scada-professional
- The “PECB Certified SCADA Professional” credential is a professional certification for professionals needing to demonstrate the competence to implement, maintain and manage effective programs to protect SCADA systems. Unlike other certifications, this course focuses specifically on the knowledge and skills needed by a professional looking to advice on, or manage risks related to SCADA environments […]