Support & Downloads

Quisque actraqum nunc no dolor sit ametaugue dolor. Lorem ipsum dolor sit amet, consyect etur adipiscing elit.

s f

Contact Info
198 West 21th Street, Suite 721
New York, NY 10010
youremail@yourdomain.com
+88 (0) 101 0000 000
Follow Us

OT Security - Fundamentals

réf : CYB-OT
Cours Linux-Commandes de base

Objectif de formation : According to Gartner, OT security is defined as « the set of practices and technologies used to (a) Protect people, resources, and information, (b) Monitor and/or control devices, processes, and events, and (c) Initiate change within enterprise OT systems. » OT security solutions span a wide range of security technologies, from next-generation firewalls to SIEM systems, and deploy different layers of protection.
Historically, OT-specific cybersecurity was not necessary, since OT systems were not connected to the Internet. Therefore, they were not exposed to external threats. As digital innovation initiatives progress, and IT and OT networks converge, companies have tended to deploy standalone tools to address specific issues. These approaches to OT security have resulted in a complex network that no longer shares information or provides the necessary visibility.
Often, IT and OT networks operate separately, resulting in a duplication of security efforts and a lack of transparency in operations. These IT/OT networks cannot track what is happening across the entire attack surface. Because of different referees in security organization of both platforms, this results in two separate security teams protecting their respective network perimeters.
When looking into OT, the biggest subset is ICS. ICS (Industrial Control System) is a broad term that embodies both SCADA and DCS.

Objectifs pédagogiques

  • Understand ICS components
  • Understand the different layers/levels
  • Enhance threat handling

Prérequis

Basic understanding of IT systems (Linux/Windows), Basic networking knowledge, Basic system administration.

Public concerné

Cybersecurity expert, OT expert in charge of the security.

Programme

  • Processes & Roles
  • Industries
  • Levels 0 and 1 : Controllers and Field Devices
  • Levels 0 and 1 : Programming Controllers
  • Levels 2 and 3 : HMIs, Historians, Alarm Servers
  • Levels 2 and 3 : Specialized Applications and main Servers
  • Levels 2 and 3 : Control Rooms and Plants
  • Levels 2 and 3 : SCADA
  • ICS Life Cycle Challenges
  • Threat Actors and Reasons for Attack
  • Attack Surface and Inputs
  • Vulnerabilities
  • Threat/Attack Models
  • Attacks Schemes
  • Control Things Platform
  • Technologies
  • Fieldbus Protocol Families
  • Defenses
  • Ethernet Concepts
  • TCP/IP Concepts
  • ICS Protocols over TCP/IP
  • Wireshark and ICS Protocols
  • Attacks on Networks
  • Firewalls and NextGen Firewalls
  • Data Diodes and Unidirectional Gateways
  • NIDS/NIPS and Netflow
  • Crypto Keys
  • Encryption, Hashing, and Signatures
  • Historians and Database
  • HMI and UI Attacks
  • Web-based Attacks
  • Password Defenses
  • Satellite and Cellular
  • Mesh Networks and Microwave
  • Bluetooth and Wi-Fi
  • Risks of Wireless
  • Sniffing, DoS, Masquerading, Rogue AP
  • Patch Decision Tree
  • Vendors, CERTS, and Security Bulletins
  • Microsoft : Windows Services
  • Microsoft : Windows Security Poolicies and GPOs
  • Linux : Differences with Windows
  • Linux Daemons, SystemV, and SystemD
  • Application Runtime and Execution Control
  • Configuration Integrity and Containers
  • Logs in Windows and Linux
  • Windows Event Logs and Audit Policies
  • Syslog and Logrotate
  • Honeypots
  • Attacks on the perimeter
  • Starting the Process
  • Frameworks: ISA/IEC 62443, ISO/IEC 27001, NIST CSF
  • Using the NIST CSF
  • Policies, Standards, Guidance, and Procedures
  • Culture and Enforcement
  • Examples
  • Quantitative vs Qualitative
  • Traditional Models
  • Digital forensics
  • Key focus
  • Key sources
  • Analyze digital evidence

S'inscrire à la session

    Jours

    5 (35 heures)

    Date

    Du 12 au 16 juin 2023

    Prix

    3500 €

    À distance

    Télécharger