Overview
This course teaches learners how to conduct practical attack simulations in Critical National Infrastructure (CNI). The course covers the importance of attack simulations, understanding the threat model, typical CNI architectures, reducing testing risk, modeling threat actors, selecting a testing team, finding a security champion, and understanding the OT control chain. The teaching method involves a combination of whitebox and collaborative approaches. This course is intended for cybersecurity professionals interested in securing Critical National Infrastructure.
Syllabus
Intro
why bother with attack simulations?
Traditional view of ICS
Threat model
Typical architecture - Field site
Typical architecture - Process control
Typical architecture - Complete picture
Reduce testing risk
Model your threat actor
whitebox and collaborative
Take the ego out of testing
pick your team carefully
Find a security champion
OT control chain
Conclusions
Taught by
WEareTROOPERS