Intermediate Cybersecurity for Industrial Control Systems – PART 1 (201)

This course builds on the concepts learned in the Introduction to Industrial Control Systems Cybersecurity (101) course. This course provides technical instruction on the protection of industrial control systems (ICS) using offensive and defensive methods. Attendees will recognize how cyberattacks are launched, understand why they work, and learn mitigation strategies to increase the cybersecurity posture of their control systems networks. In addition, this course acts as a prerequisite for the next course, Intermediate Cybersecurity for Industrial Control Systems (202), which offers hands-on application of the concepts presented.

After attending this course, students will be able to:

• Describe ladder logic.
• Describe network discovery.
• Discuss the three main stages of an attack.
• Create a baseline using the Cyber Security Evaluation Tool (CSET^®).
• Describe defense-in-depth strategies.

Who Should Attend

This course is for individuals responsible for evaluating or assessing the cybersecurity posture of critical infrastructure. This could include any number of specific roles and responsibilities, such as cybersecurity management and risk management personnel, information technology (IT) and operational technology (OT) security personnel, and IT and OT managers.

Logistics

This course is a regional training event and is coordinated with each CISA Regional Office. Contact your CISA Regional Office for the event schedule and to register for a training event in your area.

A certificate of completion will be provided at the conclusion of the course. This course is accredited by the International Accreditors for Continuing Education and Training and awards attendees continuing education units (CEUs) upon completion. 

There is no tuition cost to attend this training.

To ask a question or provide other feedback on ICS training, contact us at ICStraining@inl.gov.