How to start your career in OT/ICS Security? Part-1

If you are an Industrial Automation Engineer who is looking to kickstart your career in OT/ICS (Operational Technology/Industrial Control System) security or if you are someone who wants to enhance your knowledge on OT/ICS security or if you are from IT background who is interested to join OT security domain, then you might find this article helpful.

There are a lot of open source resources available on the internet about OT cybersecurity. Often with ample of resources available it becomes difficult to choose the right one. Based on my experience and discussion with my fellow colleagues, friends, I am listing out the best material to start with.

1)?Free Online Trainings - by CISA:?

Many thanks to Cybersecurity and Infrastructure Security Agency (CISA) for providing the below online training courses via the?CISA Training?Virtual Learning Portal (VLP). These are the best free trainings available on OT security.

Click on the link to register for and complete the courses - https://ics-training.inl.gov/learn

In order to complete your registration, please click the confirmation link in the email that is sent to your mail ID as a first step in the registration process. Please note it may take 12 to 24 hours to receive the mail. If not received, try registering with your company mail ID, that should work.

Also there are Instructor Led Trainings available on below Topics.

• Introduction to Control Systems Cybersecurity (101) - 4 hrs
• Intermediate Cybersecurity for Industrial Control Systems (201) - 8 hrs
• Intermediate Cybersecurity for Industrial Control Systems (202) - 8 hrs
• ICS Cybersecurity (301V)
• ICS Cybersecurity (301L) - 4 days
• ICS Evaluation (401) - 3 days
• ICS Evaluation (401V)

You can register for the above trainings and complete the courses. If the?course?has an open enrollment,?it will be posted to the?CISA?calendar.?Note that all?CISA training?courses are presented with no tuition?cost to the attendee.

2) ? National Institute of Standards and Technology (NIST) NIST 800-82 - Guide to Operational Technology (OT) Security

This document provides guidance on how to secure operational technology (OT), while addressing their unique performance, reliability, and safety requirements. It provides an overview of OT and typical system topologies, identifies typical threats and vulnerabilities to these systems, and provides recommended security countermeasures to mitigate the associated risks.

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-82r3.ipd.pdf

3)?Other NIST Publications which you can refer:

Protecting Information and System Integrity in Industrial Control System Environments: Cybersecurity for the Manufacturing Sector: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.1800-10.pdf

Framework for Improving Critical Infrastructure Cybersecurity https://nvlpubs.nist.gov/nistpubs/CSWP/NIST.CSWP.04162018.pdf

NIST Special Publication 800-30 - Guide for Conducting Risk Assessments https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-30r1.pdf

NIST Special Publication 800-53 - Security and Privacy Controls for Information Systems and Organizations - https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r5.pdf

4) Understanding ISA/IEC62443 standard is the key

International Society of Automation (ISA) , ISA99 committee has published a comprehensive family of standards and technical reports purpose-built to address securing automation and control systems.

The ISA/IEC 62443 series of standards define requirements and processes for implementing and maintaining electronically secure industrial automation and control systems (IACS).

ISA IEC 62443 bridging the gap between operations and information technology as well as between process safety and cybersecurity.?

The following links will be useful for understating 62443 standards:

https://www.isa.org/standards-and-publications/isa-standards/isa-iec-62443-series-of-standards

An Overview of ISA/IEC 62443 Standards https://gca.isa.org/hubfs/ISAGCA%20Quick%20Start%20Guide%20FINAL.pdf

Security Lifecycles in the ISA/IEC 62443 Series https://gca.isa.org/blog/download-the-new-guide-to-security-lifecycles-in-the-isa/iec-62443-series-of-standards

5) Recommended Books (Available online to Purchase)

• Industrial Cybersecurity: Second Edition by Pascal Ackerman https://www.packtpub.com/product/industrial-cybersecurity-second-edition/9781800202092
• Industrial Cybersecurity: Case Studies and Best Practices https://www.isa.org/products/industrial-cybersecurity-case-studies-and-best-pra
• Pentesting Industrial Control Systems by Paul Smith https://www.packtpub.com/product/pentesting-industrial-control-systems/9781800202382

These documents, books and training materials are enough to start your preparation towards OT/ICS cybersecurity domain.

I will be back with more resources in my next article (Part-2).

Happy Learning! Welcome to OT Security!

#learn #careerdevelopment #otsecurity #icssecurity #otnetworks #criticalinfrastructure #protection #industrialautomation #industrialcontrolsystems #isa #iec62443 #nist80082 #nerccip