ICS/SCADA Security Essentials from SANS Institute

Online, Self-Paced
Classroom

SANS has joined forces with industry leaders to equip security professionals and control system engineers with the cybersecurity skills they need to defend national critical infrastructure. ICS410: ICS/SCADA Security Essentials provides a foundational set of standardized skills and knowledge for industrial cybersecurity professionals. The course is designed to ensure that the workforce involved in supporting and defending industrial control systems is trained to keep the operational environment safe, secure, and resilient against current and emerging cyber threats.

Learning Objectives

Better understand various industrial control systems and their purpose, application, function, and dependencies on network IP and industrial communications
Work with control network infrastructure design (network architecture concepts, including topology, protocols, and components) and their relation to IEC 62443 and the Purdue Model.
Run Windows command line tools to analyze the system looking for high-risk items
Run Linux command line tools (ps, ls, netstat, ect) and basic scripting to automate the running of programs to perform continuous monitoring of various tools
Work with operating systems (system administration concepts for Unix/Linux and/or Windows operating systems)
Better understand the systems' security lifecycle
Better understand information assurance principles and tenets (confidentiality, integrity, availability, authentication, non-repudiation)
Use your skills in computer network defense (detecting host and network-based intrusions via intrusion detection technologies)
Implement incident response and handling methodologies
Map different ICS technologies, attacks, and defenses to various cybersecurity standards including NIST Cyber Security Framework, ISA/IEC 62443, ISO/IEC 27001, NIST SP 800-53, Center for Internet Security Critical Security Controls, and COBIT 5

Framework Connections

Specialty Areas

Cyber Defense Infrastructure Support
Systems Analysis

Feedback

If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.

Course Location Map

Your Location
Providers
Courses
Course and Provider Quantity

Course Overview

Overall Proficiency Level

2 - Intermediate

Course Catalog Number

ICS410

Course Prerequisites

Course participants need to have a basic understanding of networking and system administration, TCP/IP, networking design/architecture, vulnerability assessment, and risk methodologies. ICS410 covers many of the core areas of security and assumes a basic understanding of technology, networks, and security. For those who are brand new to the field and have no background knowledge, SEC301: Intro to Information Security would be the recommended starting point. While SEC301 is not a prerequisite, it provides introductory knowledge that will help maximize a student's experience with ICS410.

Training Purpose

Skill Development

Specific Audience

All

Delivery Method

Online, Self-Paced

Classroom

Course Locations

2660 Woodley Road, NW
Washington, DC 20008

One Market Place
San Diego, CA 92101

1919 Connecticut Ave. NW
Washington, DC 20009

Two Poydras Street
New Orleans, LA 70130