COURSE OVERVIEW

 

This practical and highly-interactive course includes various practical sessions and exercises.  Theory learnt will be applied using one of our state-of-the-art simulators. 

 

This course is designed to provide participants with a detailed and up-to-date overview of Auditing Operational Technology/SCADA/ICS (Advanced). It covers the differences between operational technology (OT), supervisory control and data acquisition (SCADA) and industrial control systems (ICS); the importance of OT security and auditing as well as OT/IT convergence and its challenges; and the OT architectures and the standards and frameworks in OT auditing. 

 

Further, the course will also discuss the role of an auditor in OT/SCADA/ICS and identify OT threats; the vulnerabilities in OT/SCADA systems and risk assessment techniques for OT including governance and compliance; the OT audit planning and scoping, cybersecurity metrics and KPIs for OT; the network auditing, endpoint security in OT/SCADA and physical security audits; and the remote access practices, securing vendor and contractor access and identifying risks associated with cloud integration in OT. 

 

During this interactive course, participants will learn the audit of OT incident response plans, penetration testing in OT/SCADA and ICS-specific security tools; the protocol analysis and auditing including configuration and patch management; the threat hunting in OT environments, securing supply chain auditing and reporting and presenting audit results; the techniques used by advanced persistent threats (APTs), plan operational resilience in ICS and integrating disaster recovery and OT security; the zero trust principles to ICS and identifying and accessing management in OT; the micro-segmentation for OT networks; and securing authentication and authorization mechanisms.