Professionally Evil ICS & OT Fundamentals with Giovanni Cofre

Overview
- Course Length: 16 hours
- Support from expert instructors
- Includes a certificate of completion
- Up to 12 months access to Cyber Range
What You
Can
This course, *Professionally Evil ICS & OT Fundamentals*, provides a comprehensive introduction to the foundational principles of ICS/OT environments.
Industrial Control Systems (ICS) and Operational Technology (OT) are the backbone of critical infrastructure, enabling essential processes in energy, manufacturing, transportation, and other industries. However, the increasing integration of traditional IT technologies within ICS/OT environments brings unique security challenges distinct from, yet overlapping with, IT systems. The increase of cyber threats brings to focus the need for security program strategies to be implemented to protect these critical operations.
Participants will explore the architecture and operational dynamics of OT systems, the role of SCADA networks, and the unique considerations for incorporating cybersecurity into these environments. The course also covers the limitations and challenges of applying traditional IT security methodologies in OT settings, highlighting the importance of balancing operational reliability with effective threat mitigation.
Through engaging lectures, hands-on insights, and real-world examples, attendees will gain the knowledge necessary to understand, assess, and improve the cybersecurity posture of ICS/OT systems without compromising operational goals.
Day1
Introduction and Fundamentals of OT
- Role of OT
- OT vs IT
- Real-word Examples
OT Systems
- OT vs OCS vs SCADA
- Common OT Systems and Components
- Uses
Industrial Control Systems (ICS) Basics
- Introduction to ICS
- Differences Between OT and ICS
- Networking
Key Sectors
- Critical Infrastructure
- Sector Specific Challenges
- Role of OT in Critical Infrastructure
ICS Security
- The Purdue Enterprise Reference Architecture (PERA)
- Safety and Control Zones
- Data Zones
- Enterprise and Corporate Zones
Day 2
Control Engineering and Automation
- Benefits
- Process Flow and Control Logic
- Engineering Disciplines in OT System Design
Attack Life-Cycle
- Cyber and Physical Threats
- Attack Vectors
- Attack Methodology
Real-World Examples
Product Vulnerabilities
- Products and Devices
- Assessment and Mitigation
- In-Practice
Regulatory
Enforceable Standards
NERC CIP
March Virtual Class
- March 4th – 9:00 AM to 6:00 PM EST
- March 5th – 10:00 AM to 6:00 PM EST
Who Should Take This Course and Prerequisites
This course is ideal for those interested in learning the fundamentals of ICS/OT, IT professionals new to ICS/OT, IT Security practitioners transitioning to industrial environments, and anyone responsible for securing critical infrastructure.
System Requirements
Able to join the Antisyphon web cast.
Live Training
- Pay What You Can
- Collaborative interaction with Instructor and fellow students through the Antisyphon Discord class channel
- Access to course slides for future reference
- Tips, tools, and techniques that can be applied immediately upon returning to work
- Strengthen your skills by solving challenges within the Antisyphon Cyber Range
- Become part of a community driven to educate and share knowledge