Day 1: Introduction to ICS/SCADA systems

• Understanding systems and how they work: Introduction to the fundamental concepts of ICS/SCADA systems, including their architecture, components (such as RTUs and PLCs), and their role in industrial process control.
• Differences between IT and OT environments: Analysis of the distinctions between information technology (IT) and operational technology (OT), including unique security and management challenges.

Day 2: Threats and Vulnerabilities in Industrial Systems

• Identification of threats specific to ICS/SCADA systems: Exploration of common threats, such as cyber attacks targeting critical infrastructures, as well as the risks posed by increasing interconnection with IT networks.
• Vulnerability and risk analysis: Methods for assessing vulnerabilities in ICS/SCADA systems, including the use of risk assessment tools to identify weak points.

Day 3: Cybersecurity principles for ICS/SCADA

• Security models specific to industrial environments: Presentation of security models adapted to ICS/SCADA systems, such as the Purdue model, which helps to structure security according to architecture levels.
• Implementation of physical and logical security measures: Strategies for integrating physical security (access control, monitoring) and logical security (firewalls, network segmentation) into industrial systems.

Day 4: Incident management and response

• Strategies for detecting and responding to security incidents: Introduction to incident detection methods, including the use of intrusion detection systems (IDS) adapted to industrial environments.
• Business continuity and disaster recovery plans: Developing robust plans to ensure operational continuity after an incident, including training staff on the procedures to follow.

Day 5: Compliance and Best Practices

• Standards and frameworks (NIST, ISA/IEC 62443): Review of relevant standards governing cybersecurity in ICS/SCADA environments, and their practical application.
• Development of cybersecurity policies and procedures: Development of appropriate policies to ensure regulatory compliance while effectively protecting industrial systems.
• Simulation of cybersecurity incidents: Practical exercises where participants simulate incident scenarios to test their knowledge.
• Examples of successful implementation of security solutions: Case studies illustrating how different organizations have successfully integrated security solutions into their ICS/SCADA systems.