Asia ICS Cyber Security Workshop 2019
20 June 2019 - Introductory Workshop
21 June 2019 - Advanced Workshop
Ibis Singapore on Bencoolen 

Overview

Reliable and safe operation of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) are considered critical for industries supporting the well-being on a national level.

The growing convergence of these long-separated domains calls for special attention and adoption of best practices. That being said, the ICS functionality can be also be jeopardized internally by an incentivised individual, hence appropriate preventive measures should be taken to cover internal breaches as well.

Target Audience

The introductory and advance levels workshops are aimed to empower the competency of a wide range of position holders in the ICS/SCADA arena. Graduates of this course will master the key terms, technologies, and vector activities related to the computerized control which they operate. The training program is suitable for the following groups:

  • IT personnel who need to know more on ICS/SCADA risks and defense in order to assure better collaboration amongst these teams;
  • SCADA/ICS engineers involved with design, maintenance of industrial plants and manufacturing processes;
  • Operators dealing with control of renewable and other power technology plants, sewage plants, desalination and other chemical process plants;
  • A broad range of managers interested in upgrading their technical knowledge and to be able to make informed and cost-effective investment decisions

Upon completion of this program, graduates should be able to defend critical infrastructures and comprehend the mechanisms behind it. It will also better prepare them to apply for certification in classes such as CISO and CISSP.

A certificate of completion will also be provided at the end of the Workshop.

INTRODUCTORY WORKSHOP

Part 1           08:30 – 12:30 Introduction to ICS Technologies

  • Introduction to ICS (SCADA, OT) architecture
  • Roles of the main computers in ICS Architecture
  • Description of the Triangle and the Purdue ICS models
  • Field Control units PLC, RTU, IED and Remote I/Os
  • Structuring an ICS Cabinet with I/O technologies
  • Complementing Sensors and Field Control Devices
  • ICS Data communications; networks and protocols
  • PLC / RTU Configuration and Programming principles

Part 2           13:30 – 17:30 ICS Cyber Security Basics

  • ICS and IT systems differences related to cyber risks
  • Introduction to SCADA system Security Vulnerabilities
  • Cyber risk development through Social Engineering
  • Introduction to IAM, encryption and authentication
  • Defense achieved by PPT: People-Policy-Technology
  • External & Internal attacks: MitM, DOS, DDoS, GPS
  • Defense solutions: Zoning FW, IDS, SIEM, DMZ, UGW
  • Defense achieved by PPT: People-Policy-Technology

ADVANCED LEVEL WORKSHOP

Part 1           08:30 – 12:30 to ICS and Cyber Security Vulnerabilities

  • Introduction to ICS (SCADA, OT) and HMI Solutions
  • Field Control units PLC, RTU, IED and Remote I/Os
  • Use of IoT and IIoT for ICS Installations
  • PLC / RTU Configuration and Programming
  • Introduction to SCADA system Security Vulnerabilities
  • Connection between Safety and Cyber Security
  • ICS and IT systems differences related to cyber risks
  • Experience Sharing: Vulnerability Assessment vs White Hackers – Why You Need Both

Part 2           13:30 – 17:30 ICS Cyber Security Risk and Defense

  • External & Internal attacks: MitM, DOS, DDoS, GPS
  • Industrial Cyber Kill Chain attack step-by step process
  • Communications and Process Anomaly detection using packet’s inspection
  • Firewalls, IDS, SIEM, DMZ, UGW, Visibility Analysis
  • Best practices to enhance ICS-IIoT Cyber defense
  • Periodic assessment to enhance ICS Cyber security
  • Standalone Vs Multi-Purpose Cyber Security SW: Determining Cost vs Effectiveness
  • Applicable standards: NERC-CIP, IEC 62443, NIST 800-82

About the Trainer

Daniel Ehrenreich 2

Interview (Nov 2018) with Magda Chelly during Asia ICS Cyber Security Conference 2018

Daniel Ehrenreich, BSc. is a Consultant and Lecturer acting at SCCE - Secure Communications and Control Experts, teaching in cyber security colleges and presenting at industry conferences on integration of cyber defense with ICS; Daniel has over 25 years’ engineering experience with electricity, water, gas and power plants systems as part of his activities at Tadiran, Motorola, Siemens and Waterfall Security. Daniel is certified lead auditor for ISO 27001-2013 and was re-selected as Chairman for the ICS Cybersec 2019, taking place in Israel September 2019 and the Asia Cyber Security Conference in Singapore taking place in November 2019.