Cybersecurity for Automation, Control, and SCADA Systems

Course at a Glance


Course Name - Cybersecurity for Automation, Control, and SCADA Systems

Course Code - CCW

Qualification - Professional Development

Duration - 6 weeks

CEU/CPD* - on enquiry

*CEU/CPD hours vary according to your professional body.

Cybersecurity for Automation, Control, and SCADA Systems Created by ISA Delivered by EIT

IN THIS INTENSIVE 6-WEEK LIVE ONLINE COURSE YOU WILL LEARN:

  • The principles behind creating an effective long term program security
  • How to interpret the ANSI/ISA99 industrial security guidelines and apply them to your operation
  • The basics of risk and vulnerability analysis methodologies
  • The principles of security policy development
  • The concepts of defence in depth and zone/conduit models of security
  • Current trends in industrial security incidents and methods hackers use to attack a system
  • The principles behind the key risk mitigation techniques, including anti-virus and patch management, firewalls, and virtual private networks

 

Students who successfully complete this program will be eligible to sit the exam with the International Society of Automation (ISA) and receive the highly regarded ISA99/IEC 62443 Cybersecurity Fundamentals Specialist certificate.

 

The next intake starts on the week of July 10, 2017.

Contact us now to apply.

x

 

Details

Overview

The move to using open standards such as Ethernet, TCP/IP, and web technologies in supervisory control and data acquisition (SCADA) and process control networks has begun to expose these systems to the same cyberattacks that have wreaked so much havoc on corporate information systems. This course provides a detailed look at how the ANSI/ISA99 standards can be used to protect your critical control systems. It also explores the procedural and technical differences between the security for traditional IT environments and those solutions appropriate for SCADA or plant floor environments. This course will assist managers, system operators and industrial data communications specialists in setting up secure systems.

Topics covered include: introduction and terminology; electronic security; threat sources; understanding the current industrial security environment; how cyberattacks happen; creating a security program; risk analysis; addressing risk with security policy, organization, and awareness; addressing risk with selected security counter measures; addressing risk with implementation measures; monitoring and improving the CSMS.

If you are using any form of communication system, this course will give you the essential tools in securing and protecting your industrial networks whether they be automation, process control, PLC or SCADA based.

Exercises include:

  • Develop a business case for industrial security
  • Conduct security threat analysis
  • Investigate scanning and protocol analysis tools
  • Apply basic security analysis tools software

 

ISA Standards to be reviewed:

  • ANSI/ISA-62443-1-1 (ANSI/ISA-99.00.01-2007) - Security for Industrial Automation and Control Systems Part 1: Terminology, Concepts & Models
  • ANSI/ISA-62443-2-1 (ANSI/ISA-99.02.01-2009)  - Security for Industrial Automation and Control Systems: Establishing an Industrial Automation and Control Systems Security Program
  • ANSI/ISA-62443-3-3  - Security for industrial automation and control systems: System security requirements and security levels

This course is required for the ISA99/IEC 62443 Cybersecurity Fundamentals Specialist Certificate Program.

Anyone who will be designing, installing and commissioning, maintaining, securing and troubleshooting industrial networked sites will benefit, including:

  • Design engineers
  • Instrumentation engineers
  • Technicians
  • Electrical engineers
  • Network engineers
  • Engineering managers
  • Network system administrators

Course Outline

MODULE 1: INTRODUCTION (PART 1)

Overview of basic concepts
Concepts of physical, operational and electronic security


MODULE 2: INTRODUCTION (PART 2)

Defining Cyber Security
Relative to industrial automation
Relative to control systems


MODULE 3: TERMINOLOGY, CONCEPTS, MODELS AND METRICS (PART 1)

IEC/TS 62443-1-1
Terminology


MODULE 4: TERMINOLOGY, CONCEPTS, MODELS AND METRICS (PART 2)

Concepts and models:

Basis for the ISA99 series of standards
Practices
Technical reports

Current industrial security environment


MODULE 5: NETWORKING BASICS

Network Basics
Network types
ISO/OSI reference models
IP addressing and IT versus Industrial Control System differences


MODULE 6: INDUSTRIAL NETWORKING AND NETWORK SECURITY BASICS

Investigate and study address security
Firewalls
Segmentation
Encryption
Secure protocols
Intrusion detection


MODULE 7: ICS SECURITY MANAGEMENT PROGRAM (PART 1)

Creating an ICS Security Management Program
ISA-62443-2-1
How to create a security program for control systems


MODULE 8: ICS SECURITY MANAGEMENT PROGRAM (PART 2)

Cyber Security Management System (CSMS)
Elements and requirements:

Risk Analysis
Addressing the risk with CSMS
Monitoring and improving the CSMS


MODULE 9: DESIGNING / VALIDATING SECURE SYSTEMS (PART 1)

How to apply security levels
Security lifecycle
Identify risks and significance
Qualitative/quantitative risks


MODULE 10: DESIGNING / VALIDATING SECURE SYSTEMS (PART 2)

Risk assessments
Identifying threats
Security level (SL) definitions


MODULE 11: DEVELOPING SECURE PRODUCTS AND SYSTEMS

Software Security Assurance (SSA)
Control system security layers of responsibility
Incorporating security


MODULE 12: CONCLUSION

Integration of security at the various phases of the development lifecycle
ISA Security Compliance Institute (ICSI)
ISASecure Certification

Learning and Teaching

Benefits of eLearning to Students

  • Cost effective: no travel or accommodation necessary
  • Interactive: live, interactive sessions let you communicate with your instructor and fellow students
  • Flexible: short interactive sessions over the Internet which you can attend from your home or office. Learn while you earn!
  • Practical: perform exercises by remotely accessing our labs and simulation software
  • Expert instructors: instructors have extensive industry experience; they are not just 'academics'
  • No geographical limits: learn from any location, all you need is an Internet connection
  • Constant support: from your instructor(s) and a dedicated Course Coordinator for the complete duration of the course
  • International insight: interact and network with participants from around the globe and gain valuable insight into international practice 


Benefits of eLearning to Employers

  • Lower training costs: no travel or accommodation necessary
  • Less downtime: short webinars (60-90 minutes) and flexible training methods means less time away from work
  • Retain employees: keep staff who may be considering a qualification as full time study
  • Increase efficiency: improve your engineering or technical employees’ skills and knowledge
  • International insight: students will have access to internationally based professional instructors and students

 

How Does it Work?

EIT eLearning courses involve a combination of live, interactive sessions over the Internet with a professional instructor, set readings, and assignments. The courses include simulation software and remote laboratory applications to let you put theory to practice, and provide you with constant support from a dedicated Course Coordinator.


Practical Exercises and Remote Laboratories

As part of the groundbreaking new way of teaching, our online engineering courses use a series of remote laboratories (labs) and simulation software, to facilitate your learning and to test the knowledge you gain during your course. These involve complete working labs set up at various locations of the world into which you will be able to log to and proceed through the various practical sessions.

These will be supplemented by simulation software, running either remotely or on your computer, to ensure you gain the requisite hands-on experience. No one can learn much solely from lectures, the labs and simulation software are designed to increase the absorption of the materials and to give you a practical orientation of the learning experience. All this will give you a solid, practical exposure to the key principles covered and will ensure that you obtain maximum benefit from your course.

 

Contact Our Course Advisors

Click here to contact us to receive assistance from our Course Advisors.

 Enquire abut our online engineering course fees

 

In Company Online Training Solutions

Special class groups can be arranged on request to match your own schedule. If you have a large number of staff who should complete any of our programs, read more about EIT's In Company Online Training HERE and contact us to assist you further.

 

Brochure

To access the detailed program brochure, please complete this form.

Cybersecurity for automation control scada systems

Fee Information

What are the fees for my country?

The Engineering Institute of Technology (EIT) provides distance education to students located all around the world – it is one of the very few truly global training institutes. Course fees are paid in a currency that is determined by the student’s location. We aim to give you a rapid response regarding course fees that are relevant to your individual circumstances.

We understand that cost is a major consideration before a student begins to study. For a rapid reply to your query regarding courses fees and payment options, please contact a Course Advisor in your region via the below button and we will respond within two (2) business days at most.

Enquire abut our online engineering course fees

 

EIT Course Payment Information

Please contact us with your location for short course fees in the relevant currency. Full payment is required between two (2) and four (4) weeks before the course starts.

Fees include:

  • All live webinars with a professional instructor
  • Four (4) technical manuals (as searchable eBooks)
  • Course materials
  • Software
  • Assignments, and
  • Ongoing support from a dedicated Course Coordinator

All you need to participate is an Internet connection, a computer, speakers and, if possible, a microphone.

 

Fee concessions may apply for multiple bookings on our certificate courses.

For a rapid reply to your query regarding courses fees and payment options, please contact your nearest Course Advisor.

Enquire abut our online engineering course fees 

Related Courses

Other courses available from EIT's School of Data Communications & Industrial IT

Industrial data communications, networking and IT systems are key components of all modern plants and facilities and industrial infrastructure. Robust and reliable communications links are now critical in almost every industry. There are daily reports of viral and hack attacks on industrial computer systems and there is an extraordinary need for up-to-date training and education in these areas.

To address the shortage of well-trained industrial data communications, networking and industrial IT personnel, EIT has developed an Advanced Diploma in Industrial Data Communications, Networking and IT. The short courses that form part of EIT's professional development series are designed to provide students with critical knowledge and practical tools that can be immediately applied to the workplace. They are ideal to up-skill and/or cross-skill in a particular area or technology.

Typical subjects that are taught and researched in the EIT School of Data Communications and Industrial IT include: computer systems engineering, data communications and networking protocols and standards, troubleshooting systems, Fieldbus, DeviceNet, Ethernet, Radio telemetry systems, fiber optics, DNP3, 61850, routers and switches, SCADA, Modbus, programmable logic controllers, RFID tagging, industrial network security and programming.

Frequently Asked Questions