ICS310: ICS Cybersecurity Foundations
Key Takeaways
The SANS Institute's ICS310 course provides foundational knowledge of Industrial Control Systems (ICS) and explores how automation works across industries, with a focus on cybersecurity and defense strategies. The course covers five key ICS controls and provides a virtual machine for research and education in a lab environment.
Full Transcript
[music] My name is Tim Conway. I am one of the course authors of ICS 310. And as we have multiple authors of this 1-day course, we have Jeff Sheer who is coming from a system integrator and kind of a implementation side. Rob Mley who is coming from sort of a product and a intelligence side and then myself. I'm coming more from an asset owner and operator perspective. >> [music] >> We put together this on demand course together as three different instructors, three different authors, really trying to tie different perspectives across. As we bring new people into this industry, we know everybody's coming from different backgrounds and different experience. So, we tried to build a course that presented that as well. So, SANS IC 310 was really a creative thing for SANS cuz we made it as a one-day course and try to price it as aggressively as possible. That way we could really serve as an entry point into the community and we get a lot of people that want to come take one of the advanced courses but really need the fundamentals and they need it in an approachable way. So we've also bundled it in with every single course in ICS you take just for free. I've had very seasoned people come to the class and said hey I wished I would have taken your class a long time ago because you've boiled down [music] the information with the important essentials of foundational things that I thought I understand but didn't. I've had very beginning people come to the class and they said, "Boy, you gave me an awesome on-ramp to be able to start from the start. What is a motor? What is a pump? How do I control it? And how is it applied to [music] everything from boiler controls to heat loops? All that kind of stuff." So, we give you kind of that fast-paced [music] but digestible nuggets so that now you can jump into a full class and you're ready. ICS 310. Not only do we want them to put something into action at work, we want them to be able to put something into action when they take that course and then come into 410 or 5:15 as a prerequisite. When they take 310, we want them to understand and sort of interact differently at our summits because now they've sort of built a language that they can talk to others during networking and sort of get a better understanding or seek better guidance and ask better questions. I've taken this course and I want to understand this better. But there are absolutely things in ICS 310 [music] from a case study perspective. If this is what happened to this industry, what would that look like if that attack happened to me? What would our response look like? What would the impact look like? [music] As I understand these environments, what can I do? And the five critical controls that is immediately actionable working with your leadership and what are we doing on incident response? What are we doing on architectures? What are we doing on network visibility? Where do we sit from a vulnerability management perspective? And how are we handling remote access? looking at those things, they can start a program on every single one of them. >> ICS310 is unique because it's so accessible to everybody and it's also a shorter course form, but it's also unique because you get Jeff, Tim, and I all giving you the different angles and views of government, private industry, integrator, folks that have operated as an asset owner and operator. So, it's just a lot of knowledge to speed you up as quickly as possible. So in 310 we provide something of high value that is a relics virtual machine and that is for research [music] education in a lab environment for industrial control systems. That virtual machine has a number of tools [music] for packet capture and traffic analysis. And so we give them packet captures that they can learn from and how to use those tools. But it also has programmable logic controller local software [music] and simulations so they can practice doing some coding and seeing what happens in a process environment. And then there's a number of other things they can use that virtual machine for in their normal daily job life. >> So ICS is traditional in so much [music] as that it does fulfill the SANS promise. You're going to be able to take our information and actually apply that when you get back to your office [music] in a meaningful way. And that is what we promise from IC 310. [music] If you'd like to learn more about the ICS 310 course, I would welcome you to go to sans.org/ic3. org/ICS310 and you can learn everything you need to know about the foundations of industrial control systems.
Original Description
ICS310: ICS Cybersecurity Foundations builds foundational knowledge of ICS systems and explores how automation works across industries. Students analyze real-world cyberattacks to uncover defense strategies and learn five key ICS controls adaptable to any environment.
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from SANS Institute · SANS Institute · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
SANS FOR610: Reverse Engineering Malware: Malware Analysis Tools & Techniques
SANS Institute
SANS Institute Cybersecurity Training Customer Stories
SANS Institute
SANS Institute UK Cyber Academy
SANS Institute
SANS Institute UK Cyber Academy
SANS Institute
CISSP® Prep Exam, MGT414, by SANS Institute
SANS Institute
SANS Institute's Rob Lee Discusses The OPM.GOV Hack on CNN
SANS Institute
Information Security Training from SANS Institute - Student Testimonials
SANS Institute
SANS NetWars
SANS Institute
SANS DFIR NetWars
SANS Institute
Hack The Drone - SANS Cyber Academy UK
SANS Institute
SANS VetSuccess Immersion Academy
SANS Institute
SANS Cybersecurity Training, Certifications & Placement for Veterans
SANS Institute
The 2015 SANS Holiday Hack Challenge
SANS Institute
SANS VetSuccess Academy: Hands-on Skills
SANS Institute
SANS VetSuccess Academy Overview
SANS Institute
SANS ICS Security Summit & Training 2017
SANS Institute
Exploring the Unknown Industrial Control System Threat Landscape – SANS ICS Security Summit 2017
SANS Institute
WannaCry recap, patches, and analysis
SANS Institute
If We’re Doing So Well at Cyber Security, Why Are We Still Doing So Poorly?
SANS Institute
Graduation Day - SANS HM Gov Cyber Retraining Academy
SANS Institute
Incentivizing ICS Security: The Case for Cyber Insurance – SANS ICS Security Summit 2017
SANS Institute
SANS Data Breach Summit & Training 2017
SANS Institute
SANS Secure DevOps Summit & Training 2017
SANS Institute
How Threats Are Slipping In the Back Door - SANS ICS Security Summit 2017
SANS Institute
SANS Webcast – Continuous Opportunity: DevOps & Security
SANS Institute
SANS Cybersecurity Programs for the Department of Defense
SANS Institute
SANS Pen Test HackFest Summit & Training 2017
SANS Institute
SANS SIEM & Tactical Analytics Summit & Training
SANS Institute
If We’re Doing So Well, Why Are We Still Doing So Poorly? – SANS ICS Security Summit 2017
SANS Institute
SANS Institute
SANS Institute
ICS515: ICS Active Defense and Incident Response
SANS Institute
SANS Institute
SANS Institute
Introducing the NEW SANS Pen Test Poster
SANS Institute
SANS Institute - An Inside Look at the Newly Updated ICS515 Course
SANS Institute
SANS ICS Security Training, Munich, Germany
SANS Institute
SANS Automotive Summit Webcast
SANS Institute
Privesc Playground - SANS Pen Test HackFest Summit 2017
SANS Institute
Introduction to Reverse Engineering for Penetration Testers – SANS Pen Test HackFest Summit 2017
SANS Institute
Honey, Please Don’t Burn Down Your Office: Fun with Smart Home Automation
SANS Institute
SANS Security Operations Summit & Training 2018
SANS Institute
Sh*t Happens! (But You Still Need to Drink the Water) – SANS ICS Summit 2018
SANS Institute
ICS Threat Intelligence: Moving from the Unknowns to a Defended Landscape – SANS ICS Summit 2018
SANS Institute
You’re Probably Not Red Teaming (And Usually I’m Not, Either) – SANS ICS Summit 2018
SANS Institute
A Sneak Peak at the New ICS410
SANS Institute
Jumping Air Gaps – SANS ICS Summit 2018
SANS Institute
Introduction to Linux
SANS Institute
Introduction to Malware Analysis
SANS Institute
You’re Probably Not Red Teaming (And Usually I’m Not, Either) Webcast by Deviant Ollam
SANS Institute
Hacking your SOEL: SOC Automation and Orchestration – SANS Security Operations Summit 2018
SANS Institute
Hunting for Post-Exploitation Stage Attacks with Elastic Stack and the MITRE ATT&CK Framework
SANS Institute
Apples and Oranges?: A CompariSIEM – SANS Security Operations Summit 2018
SANS Institute
SANS Webcast - Perimeter Security and Why it is Obsolete
SANS Institute
SANS Webcast - Trust No One: Introducing SEC530: Defensible Security Architecture
SANS Institute
The Science of Security: The Psychological Impacts of Security Awareness Programs
SANS Institute
How I Pulled Off an Edgy Security Campaign – SANS Security Awareness Summit 2018
SANS Institute
Practical Advice for Submitting to Speak at a Cybersecurity Conference
SANS Institute
SANS Webcast - Consuming OSINT: Watching You Eat, Drink, and Sleep
SANS Institute
SANS Webcast - Zero Trust Architecture
SANS Institute
SANS STX Cyber Range
SANS Institute
Part 1 – SANS Institute and Tenable talk about cloud security
SANS Institute
More on: Security Basics
View skill →Related Reads
📰
📰
📰
📰
mcp-bastion v0.3.0: Teaching an MCP Security Proxy to Defend More of the Attack Surface
Medium · Cybersecurity
mcp-bastion v0.3.0: Teaching an MCP Security Proxy to Defend More of the Attack Surface
Medium · LLM
Web3 Navigates Cyber Threats Amidst Bearish Sentiment and Core Development Growth
Dev.to AI
How I Built a Log Analysis Tool to Detect Network Anomalies
Dev.to · Atena
🎓
Tutor Explanation
DeepCamp AI