Six steps to Learning OT Cybersecurity

I have already extensively written and posted on this topic. For more background, please do check my previous article, "OT Cybersecurity Resources to kickstart your learning today!"

But for todays article, I am going to discuss about the Six steps to cybersecurity. Cybersecurity is broadly classified as IT Cybersecurity and OT Cybersecurity. Without going into too many details, IT cybersecurity delves with Information and Data security, whereas OT delves into cybersecurity of Industrial and automation control systems, Industrial Internet of Things, Building/Infrastructure, Energy and Manufacturing.

There is a tonne of information when we speak about Information Security or IT Cybersecurity, so my focus for today is going to be OT Cybersecurity.

Also, I was fortunate enough to find a perfect image that echoed my thoughts exactly the way I wanted too. Most of you, especially if you are a fresher or an experienced professional but do not have cybersecurity experience may ask, How do I start my Cybersecurity career?

Well here is how you do it.

1. Read about Cybersecurity
2. Attend a training
3. Volunteer your time/skills in organizations especially the not for profit ones or share your knowledge by the ways of trainings in schools/colleges
4. Join Professional groups focusing on Cybersecurity
5. Try to get hands-on experience
6. Get yourself Certified

Okay, so now you know the Six Steps to Cybersecurity. Next what.

Read about Cybersecurity

Read books about cybersecurity. Cybersecurity is a vast field, with many specific functions and role responsibilities. There are amazing books out that can help speedup your learning curve and also learn techniques and best practices from the authors experiences. Also most of the books nowadays have practical exercises which can help you in practicing hands-on in your home made lab or online, and always reach out to the author for any clarifications or queries. A selected list of books are mentioned below.

• Overview of Industrial Process Automation, Second Edition by K.L.S. Sharma
• Industrial Automation and Control System Security Principles Protecting the Critical Infrastructure, 2nd edition by Ronald L. Krutz, PhD, PE
• Industrial Cybersecurity, 1st edition and 2nd edition by Pascal Ackerman (Both editions are vastly different and hence suggested to read each as Vol 1 and Vol 2)
• Industrial Network Security Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems, 2nd edition by authors Eric D. Knapp and Joel Langill
• Hacking Exposed Industrial Control Systems ICS and SCADA Security Secrets & Solutions by Clint Bodungen
• Applied Cyber Security and the Smart Grid Implementing Security Controls into the Modern Power Infrastructure, By authors Eric D. Knapp and Raj Samani
• Modern Cybersecurity Practices by Pascal Ackerman

Free Reading Resources

• Read the article, "So you want to be an OT (ICS)Cybersecurity Engineer"
• CISA Cybersecurity -?https://www.cisa.gov/cybersecurity
• ISA GCA Blog -?https://gca.isa.org/blog
• SCADA Hacker Library?created by?Joel Langil
• CISA Training & Exercises -?https://www.cisa.gov/cybersecurity-training-exercises
• ISA -?https://www.isa.org/?Offers one module free of their cybersecurity training cum certification program (but its members only access, to know more about becoming a member visit isa.org)
• NICCS -?https://niccs.cisa.gov/
• MITRE - MITRE ICS ATTACK Framework?https://attack.mitre.org/

Volunteer

Support small to medium businesses, non governmental and not for profit organizations with education, training, awareness or consulting on cybersecurity topics. The more you share, the more you will learn in the process. Also you can share your experience in preparing for cybersecurity to other folks who are seeking guidance or interact with students from schools and colleges as well. Another way is to mentor young professionals by volunteering your time in professional groups.

Join Professional groups

If we are talking about Industry associations, then International Society of Automation would be a best place especially for OT Cybersecurity and all things OT. They also have local sections or chapters all across the world and function like a technical version of Toastmasters. Disclaimer - I am a proud Senior Member of ISA as well and I am part of ISA Bangalore section.

Another very good place would be OT-ICS/SCADA SECURITY PROFESSIONALS, which is run by OT cybersecurity professionals. Disclaimer - I am one of the admins and regularly conduct/host tech-talks. They also have a whatsapp group, which is quite vibrant and active professional community also conducting various regular events.

Currently there is an event planned on June 17th,Tech-Talk #4 "Threat Landscape, Forecast & Hunting in the era of Industry 4.0" By ICS CERT Experts from?Kaspersky do not the miss the wonderfull opportunity to connect and learn from the best.

This session aims to provide valuable insights into the following topics:

?? Demystifying Common myths in Industrial Control Systems Security

?? Attacks in Industrial Organizations (APAC)

?? Threat Actors Active in APAC

?? Industrial Threat Landscape in APAC

?? Forecast

?? Most noteworthy techniques and tactics in future attacks

?? Threat Hunting in the era of Industry 4.0

To reserve your place, click on the below MS Teams event link or SCAN QR Code for Registration! (Limited Entry Only) https://lnkd.in/dffce-2m

Hands-On Experience

Try Hack Me is the foremost labs that comes to my mind but there are many others too. There is a free and paid option. Then you have Pentester Academy labs, which are also very good and regularly updated with new labs. Server Academy too has excellent labs.

Since it is a gamified way to learn by doing, you will also be highly self-motivated yourself, and this works for everyone irrespective of your skill or knowledge level. Also more importantly, while you complete the lab exercises you also get a lot of hands-on experience which may not be generally possible. I know its not a replacement for on the job hands-on work, but its definitely a best equivalent if not alternative.

Get yourself Certified

I had done a document on Certifications for OT Cybersecurity, which you can check here Get yourself trained or Certified for IEC 62443.

Though this is not something I would strongly advise, especially if you are spending out of your own pocket, but its definitely good to do it based on your needs. But you are your own judge, do check out the ROI and select what works best for you.

Attend Training

I had done a document on Trainings for OT Cybersecurity, which you can check Affordable OT ICS Cybersecurity and other OT Trainings

Also I heard from my good friend Sourabh, who I had covered earlier in above article, that he is providing an exciting Opportunity to Learn "Master ICS/OT Cybersecurity: Fundamental to Advanced-Part 1 and Part 2" Course on Udemy for FREE!

I personally had a chance to take a look at the course. And trust me, if you are a beginner or you are already experienced, this still packs in a punch and covers topics comprehensively. Its developed by him who has fantastic industry experience. And helps you in understanding and prepare you for the challenges of securing critical infrastructure effectively, ensuring you have the learning needed to succeed in your certification exam.

A snapshot of Master ICS/OT Cybersecurity: Fundamental to Advanced-Part 1

• Explore an HMI example and how it interfaces with the control system
• Understand the ICS process and how it operates within an organization
• Delve into the Purdue Level in Details and Extended Purdue for organizing industrial control systems
• Gain an understanding of programming languages such as SFC, FBD, Ladder Logic, Structured Text, and Instruction List
• Program controllers and learn about field devices
• Explore protocols and OSI layers, including TCP/IP, Ethernet/IP, EtherNet/CIP Wireshark, Modbus, Modbus Wireshark, Modbus Hacking, DNP3, DNP3_Wireshark, IEC 61850-8-1- GOOSE, IEC 61850-8-1 MMS, Profinet, Profibus, ICCP, and OPC
• Learn about different communication mediums, their connectors, and the potential wireless attacks that can take place
• Dive into the Windows operating system, including its lifecycle, compatibility, and various PowerShell versions (1 to 6)
• Develop skills to maintain a secure and robust industrial control system.

What you’ll learn

• Basics to advanced of ICS /OT Cybersecurity
• Hands-on practice on ICS protocols on Wireshark
• Hands-on practice of powershell commands
• Purdue Model in Details
• Programing methods of PLC and Controllers
• Communication mediums used in ICS

A snapshot of Master ICS/OT Cybersecurity: Fundamental to Advanced-Part 2

Get ready to dive deep into the fascinating realm of Linux, Cryptology, Secure Network Design, Cybersecurity Management, Incident Response, and Contingency and Continuity.

What you’ll learn

• Basics to advanced of ICS /OT Cybersecurity
• Handson practice on Linux
• Handson practice on cryptography
• Learning of Incident response
• Contingency planing and continuity planning

The target audience for both part 1 and part 2, for whom this course is for:

• Control engineers, integrators, and architects who design or implement OT systems
• System administrators, engineers, and other information technology (IT) professionals who administer, patch, or secure OT systems
• Security consultants who perform security assessments and penetration testing of OT systems
• Researchers and analysts who are trying to have hands-on experience
• Engineers who need practical understanding of systems
• Vendors that are developing products that will be deployed as part of an OT system

So what are you waiting for, To claim your FREE training for both Part 1 and Part 2 of this course, follow these simple steps:

1.Like and share this post to spread the word among your professional network.

2.Connect Sourabh : https://www.dhirubhai.net/in/sourabhsuman0/

Links:

Course1: https://www.udemy.com/course/master-ot-ics-security-1/?couponCode=JUNE2023

Course2: https://www.udemy.com/course/master-ot-ics-security-2/?couponCode=ELEARNPART2

In case if the coupons are exhausted, fret not, you are still covered in a way. Do use JUNE23 for a very good competitive discounts, that is still worth every penny spent.

--xx--

Is there something I have not covered, do leave a comment with your thoughts and also look forward to hear how you learned and transitioned to cybersecurity. This valuable tips and feedback will be a guide for other aspiring professionals.

#cybersecurity?#otcybersecurity?#automation?#industrialsecurity?#networksecurity?#iec62443?#ISA?#ISABangalore?#ISAsafesec?#safesec?