An industrial computer emergency response team (I-CERT) is a group of security experts responsible for protecting against, detecting, and responding to cybersecurity incidents within an organization. I-CERTs provide alerts and incident handling guidelines, conduct public awareness campaigns, and perform research to improve security systems. They act as a universal model for incident response using the framework of protect, detect, and respond. I-CERT can help industrial organizations by managing all assets, proactively addressing vulnerabilities, controlling policies, providing forensics support, and monitoring changes. The document outlines the benefits of I-CERTs and provides a roadmap for establishing a practical industry-specific I-CERT.

1. INDUSTRIAL
COMPUTER EMERGENCY
RESPONSE TEAM
(I-CERT)

2. WHAT IS CERT
• Group of information security experts responsible for the protection against, detection of and
response to an organization's cybersecurity incidents.
• Providing alerts and incident handling guidelines.
• CERTs also conduct ongoing public awareness campaigns and engage in research aimed at improving
security systems
• Universal model for incident response
• Protect, Detect ,Respond

3. CYBER-THREAT TO
INDUSTRY

4. • Industrial Networks
• Automation in Industry
• Oil & Gas
• Electricity Grid
• Human Error

5. BENEFITS OF INDUSTRY CERT TO INDUSTRY
• Manage All Assets
• Proactively Address Vulnerabilities
• Control Policies
• Forensics Support
• Snapshot Changes

6. TRAINING PROGRAM
CIT-CERT COORDINATION
INDUSTRY CERT

7. ROLE OF INDUSTRY CERT
• Threat Detection and Mitigation
• Adaptive Assessment
• Risk-Based Vulnerability Management
• Configuration Control
• Complete Visibility

8. ROADMAP FROM TRAINING
TO ESTABLISHING
PRACTICAL INDUSTRY CERT

9. WHAT IS IR 4.0
• Fourth Industrial Revolution
• New Stage in the Organization and Control of the industrial value chain.
• Industrial 4.0 refers to the intelligent networking of machines and processes for industry with
the help of information and communication technology
• Current trend of Automation
• Data Exchange

10. CYBER THREAT TO
IR 4.0
• Cloud Vulnerability
• AI-Enhanced Cyberthreats
• AI Fuzzing
• Machine Learning Poisoning
• Machine Learning Poisoning
• Social Engineering Attacks
• Deepfake

11. CASE STUDY ABOUT I-CERT
• Gas Pipeline Cyber-Intrusion Campaign
• Beginning in late December 2011, ICS-CERT identified an active series of cyber-intrusions by a
sophisticated threat actor targeting natural gas pipeline sector companies.
• Various sources provided information to ICS-CERT describing targeted attempts and intrusions into
multiple natural gas pipeline sector organizations.
Reference
www.osti.gov/servlets/purl/1505628