Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE)

Print Friendly, PDF & Email
Introduction

Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) Course Hands-on

Train how to execute cyberspace operations within a SCADA environment with this Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE).

This Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) course provides you with a thorough understanding of Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) devices and their inner workings. You will learn how to execute cyber missions in which a SCADA environment is part of the greater cyberspace operational environment. By performing incident response on SCADA devices, you will learn in-depth concepts about SCADA devices.

Duration: 5 days

Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) Related Courses

Customize It!

• We can adapt this Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) course to your group’s background and work requirements at little to no added cost.
• If you are familiar with some aspects of this Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) course in manner understandable to lay audiences.

Audience / Target Group

• Anyone involved with designing, monitoring, or operating SCADA/ICS networks
• Security personnel whose job involves assessing, deploying, or securing control system components,
• communications, and operations
• Programmers
• Network and system administrators supporting control systems
• Process engineers and field technicians
• Operations and plant management personnel
• Control system hardware, software and integrator vendor personnel
• Penetration testers
• NERC CIP, DHS CFATS, and other auditors
• Managers who need to build deeper technical skills
• Computer emergency response teams

Certified SCADA Cyberspace Operations Engineer Training - Prerequisites

• Familiarity with basic network topology such as switching, routing, and IP addressing
• Recommended course book: Cybersecurity for Industrial Control Systems: SCADA, DCS, PLC, HMI, and SIS

Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) - Objectives:

After completing this course, attendees will be able to:

• Concepts of SCADA devices
• SCADA devices work and function
• Security concepts and challenges directly with SCADA devices
• Vulnerability assessments within SCADA environments
• Incident response within a SCADA environment
• Penetration tests on Industrial Control systems
• Vulnerabilities in web applications used in industrial control systems
• Hardware, network, user interface, and server-side vulnerabilities
• Incident response on industrial control systems
• Unique differences between ICS incident response and traditional

Certified SCADA Cyberspace Operations Engineer Training (CSFI-CSCOE) - Contents:

Pen-testing SCADA Network Protocols

ICS Systems Overview
Controllers, Embedded Systems and Protocols
PLCS, DCS, Hybrid Controllers, PC-Control
SCADA and ICS Protocols
Working with Modbus, OPC, and HMIs
Different Levels of Network Communication Penetration Testing
Serial Communications (RS-485, RS-232, Modbus RTU)

Pentesting SCADA Field and Floor Devices

Tests performed against SCADA networks
External Penetration Testing
Internal Penetration Testing
Vulnerability Assessments
Wireless Audits
SCADA Vulnerability Assessment Methodology
SCADA Protocols
PLC< RTU, DCS, and Embedded Controllers SCADA Exploitation Analysis of embedded electronics in SCADA field and floor devices Discussion of device disassembly Pentesting SCADA Field and Floor Devices Continued and Intro to SCADA Incident Response

Introduction to SCADA Incident Response
SCADA Incident Response Overview
SCADA Incident Response In-Depth
Analyzing Data Obtained from Data Dumping and Bus Snooping
End-to-End Analysis and Reporting

SCADA Active Defense Methodologies

Introduction to SCAA Active Defense
Network Segmentation

Labs will include the following areas:

Lab 1 – Introduction to SamuraiSTFU (Security Testing Framework for Utilities)
Lab 2 – Pentesting RF Communications Between Master Servers and Field Devices
Lab 3 – Pentesting TCP/IP Based SCADA Protocols
Lab 4 – Pentesting Technician Interfaces On SCADA Field and Floor Devices
Lab 5 – Analyzing Field and Floor Device FirmwareLab 6 – Overview of Pentesting Field and Floor Device Embedded Circuits
Lab 7 – Dumping Data at Rest On Embedded Circuits
Lab 8 – Bus Snooping On Embedded Circuits
Lab 9 – Capture the Flag Event

Request More Information

Time Frame: 0-3 Months4-12 Months

No Comments Yet.

Leave a comment

0