SCADA Security Training

SCADA Security
Industrial Computing Applications
5G application in SCADA Wireless security applied to SCADA
SCADA and Automation
SCADA, ICS and DCS Security SCADA Project Management LTE application in SCADA
Programmable Logic Controllers (PLC)
https://www.tonex.com/training-courses/scada-security-training/
Price:
$1,699.00
Call Tonex Today:
+1-972-665-9786
Length:
2 Days

SCADA Security Training
For what reason would it be advisable for you to pick TONEX for your SCADA Security Training?
SCADA Security Training course gives progressed SCADA specialized outline of the developing
patterns, propelled applications, activities, administration and security. We have Providing
SCADA and Automation and Security Training and counseling for more than 15 years with 20+
man-long periods of improvement encounter.
SCADA Security Training course covers all parts of Industrial Control System (ICS) security for a
few kinds of control frameworks including: Supervisory Control and Data Acquisition (SCADA)
frameworks, Distributed Control Systems (DCS) and Other control framework arrangements,
for example, slide mounted Programmable Logic Controllers (PLC).

Amid the course, we additionally talk about SCADA Characteristics, Security Threats and
Vulnerabilities, Threats, Potential SCADA Vulnerabilities, Policy and Procedure, and Platform
Vulnerabilities and Network Vulnerabilities. SCADA Risk Factors, for example, Standardized
Protocols and Technologies, Connectivity, Insecure and Rogue Connections, SCADA Public
Information, SCADA Possible Incident Scenarios and Sources of Incidents are additionally
talked about.
Assaulting basic foundation control frameworks, for example, SCADA requires arranging,
detached observing, insight gathering, dynamic assaults and the utilization of elective access
strategies. Insights around many SCADA, PLC, ICS vulnerabilities will be talked about on the off
chance that reviews with confirmation of-idea abuse code.

Some of the highlights of the SCADA Security Training:
1. Understand concepts behind Industrial Control Systems (ICS) and SCADA Security
2. Learn about DCS, SCADA and Industrial Control Systems technology, Infrastructure,
instrumentation, HMI and Data Historians
3. SCADA and ICS Characteristics, Threats and Vulnerabilities
4. SCADA and ICS Security Program Development and Deployment
5. SCADA Network Architecture
6. SCADA Security Controls
7. Learn Passive and Active Techniques
8. Explore the impact of Wireless communications on SCADA System Security Testing
9. Explore SCADA System Security Testing with Active Techniques
10. Understand SCADA vulnerabilities and different techniques behind exploiting SCADA Systems
11. Understand how SCADA defense techniques and procedures work
12. Identify the weak links and challenges in SCADA cybersecurity
13. Review the available solutions and standards for secure SCADA architectures
14. Examine the state of policies on data privacy and Internet security and their impact on SCADA
15. Define a “To Do” list of action items to secure the SCADA systems
16. ICS/SCADA Security Essentials Essentials for NERC Critical Infrastructure Protection
17. ICS Active Defense and Incident Response
18. Assessing and Exploiting SCADA and Control Systems
19. Critical Infrastructure and Control System Cybersecurity
20. SCADA Security Management

Learn more about the following aspects of SCADA, ICS and DCS Security:
1. Understanding Control System Vulnerabilities
2. Understanding and Identifying SCADA and ICS Vulnerabilities
3. SCADA, Industrial Control System (ICS) and Distributed Control Systems (DCS) Exploitation
4. Securing and Protecting Industrial Control Systems (ICS)
5. ICS, DCS and PLC Penetration Testing, Exploiting and Vulnerability Assessments
6. Hacking SCADA using Nmap, Nessus and Metasploit
7. Hacking Remote Web Servers
8. SCADA SQL Injection Attack
9. Man-in-the-Middle Attack on SCADA
10. Secure Socket Layer (SSL) Stripping
11. Assessing the Security of ICS Systems
12. SCADA Risk Identification
13. SCADA Risk Classification and Threat Modeling
14. Typical SCADA and ICS Vulnerabilities
15. Consequences of an SCADA and ICS Attacks
16. SCADA Security Controls
17. Auditing and Assessing SCADA Security
18. SCADA Security Audits

Who Should Attend
This course is suitable for anyone who needs to understand and deal effectively with advanced
SCADA issues:
1. SCADA Systems Personnel
2. Engineers and Operations
3. Process Engineers and Managers
4. Operations and Maintenance Managers, Engineers and Technicians
5. Hardware and Instrument Specialists
6. Business System Analysts Who Support SCADA Interfaces
7. System and Application Programmers
8. Project Managers
9. Telecommunications and Wireless Support Personnel
10. Control engineers, integrators and architects when designing and implementing secure SCADA
and/or ICS
11. System administrators, engineers and other IT professionals when administering, patching,
securing SCADA and/or ICS
12. Security consultants when performing security assessments of SCADA and/or ICS
13. Managers responsible for SCADA and/or ICS Researchers and analysts who are trying to
understand the unique security needs of SCADA and/or ICS Vendors developing products that
will be deployed in SCADA and/or ICS

Learning Objectives
Upon completing this course, students will be able to:
1. Explain the basic SCADA operations
2. Explore Advanced SCADA Systems
3. Review telecommunications services related to SCADA
4. Audit SCADA network operations and management
5. Describe SCADA security architecture
6. Describe the security issues with a SCADA system
7. Design a SCADA Security Policy
8. Look at access control to field devices with Microsoft Active Directory
9. Review interception and analyzing Modbus/TCP network traffic with a sniffer
10. Understand unauthorized commands to field device
11. Setup and configure a Modbus/TCP firewall
12. Review SCADA security policies
13. Describe Firewall architecture, DMZ, and rule bases for SCADA systems
14. Review SCADA protocol security issues
15. Explore user authentication technologies and integration with SCADA applications
16. Review access control principles and implementation
17. Look at active Directory integration with SCADA applications
18. Explore how to Detect cyber attacks on SCADA systems
19. Review security patch management
20. Review anti-virus protection and management
21. Review SCADA security standards

Introduction to ICS/SCADA operations and security
1. Industrial Computing Applications and SCADA Systems
2. Telecommunications Services
3. Types of SCADA Networks
4. SCADA Network Operations and Management
5. Communications Media and Signals
6. SCADA Reliability, Redundancy and Safety
7. Planning and Managing SCADA Projects
8. SCADA Technical Operations’
9. SCADA Project Management
10. SCADA Characteristics, Threats and Vulnerabilities
11. Comparing SCADA and IT Systems
12. Threats

Introduction to SCADA vulnerabilities and threats
1. Potential SCADA Vulnerabilities
2. Policy and Procedure Vulnerabilities
3. Platform Vulnerabilities
4. Network Vulnerabilities
5. Risk Factors
6. Standardized Protocols and Technologies
7. Increased Connectivity
8. Insecure and Rogue Connections
9. Public Information
10. Possible Incident Scenarios
11. Sources of Incidents
12. Documented Incidents

SCADA Security program development and deployment
1. Business Case for Security
2. Potential Consequences
3. Key Components of the Business Case
4. Resources for Building Business Case
5. Presenting the Business Case to Leadership
6. Developing a Comprehensive Security Program
7. SCADA Security Network Architecture
8. Firewalls
9. Logically Separated Control Network
10. Network Segregation
11. Dual-Homed Computer/Dual Network Interface Cards (NIC)
12. Firewall between Corporate Network and Control Network
13. Firewall and Router between Corporate Network and Control Network
14. Firewall with DMZ between Corporate Network and Control Network
15. Paired Firewalls between Corporate Network and Control Network
16. Network Segregation Summary

Recommended defense-in-depth architecture
1. General Firewall Policies for SCADA
2. Recommended Firewall Rules for Specific Services
3. Domain Name System (DNS)
4. Hypertext Transfer Protocol (HTTP)
5. FTP and Trivial File Transfer Protocol (TFTP)
6. Telnet
7. Simple Mail Transfer Protocol (SMTP)
8. Simple Network Management Protocol (SNMP)
9. Distributed Component Object Model (DCOM)
10. SCADA and Industrial Protocols
11. Network Address Translation (NAT )
12. Specific SCADA Firewall Issues
13. Data Historians
14. Remote Support Access
15. Multicast Traffic
16. Single Points of Failure
17. Redundancy and Fault Tolerance
18. Preventing Man-in-the-Middle Attacks

SCADA Security controls
1. Management Controls
2. Risk Assessment
3. Planning
4. System and Services Acquisition
5. Certification, Accreditation, and Security Assessments
6. Operational Controls
7. Personnel Security
8. Physical and Environmental Protection
9. Contingency Planning
10. Configuration Management
11. Maintenance
12. System and Information Integrity
13. Media Protection
14. Incident Response
15. Awareness and Training
16. Identification and Authentication
17. Access Control
18. Audit and Accountability
19. System and Communications Protection
20. Programmable Logic Controllers (PLC)
21. Industrial Sectors and Their Interdependencies

Wireless security applied to SCADA
1. Overview of Current Wireless Technologies
2. 802.11, 802.15 and 802.16 Technologies
3. Overview of Wireless Security
4. WEP
5. TKIP and the WPA/WPA2
6. IEEE 802.11i
7. Authentication, Encryption, and Integrity Methods
8. Cellular/Mobile Interworking
9. LTE application in SCADA
10. 5G application in SCADA

ICS/SCADA Security requirements
1. Governing SCADA Security
2. Electric: North American Electric Reliability Corporation Critical Infrastructure Protection
(NERC CIP)
3. Chemicals: Chemical Industry Data Exchange/American Chemistry Council (CIDX/ACC)
4. Natural gas: American Gas Association 12 (AGA 12)
5. Oil and liquids: American Petroleum Institute (API)
6. Manufacturing: International Society for Automation/International Electro-technical
Commission (ISA/IEC 62443) (formerly ISA 99)
7. Some governments have come up with their own regulations and standards, e.g., the US
National Institute of Standards and Technology (NIST), the UK Center for Protection of
National Infrastructure (CPNI) and The Netherlands Center for Protection of National
Infrastructure (CPNI)

Constructs of a SCADA Security framework
1. Governance, risk and compliance administrative controls
2. SCADA controls
3. Data and application security
4. System assurance
5. Monitoring controls
6. Third-party controls
7. Administrative Controls
8. Policy, standards and exceptions
9. Risk assessments
10. Asset management
11. Vulnerability management
12. SCADA network security controls
13. Data and Application Security
14. Data security
15. Application security
16. Change management
17. Malicious code detection/prevention
18. System Assurance
19. System resilience
20. Secure configuration
21. Business continuity/disaster recovery planning (BCP/DRP
22. More…

SCADA
SECURITY TRAINING

SCADA Security Training

More Related Content

What's hot

Similar to SCADA Security Training

More from Bryan Len

Recently uploaded

SCADA Security Training