home.social

#icscybersecurity — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #icscybersecurity, aggregated by home.social.

  1. 🎖️ El Curso de Hacking OT - Tecnología Operacional está permanente disponible en el aula virtual para acceso inmediato. 📲 WhatsApp: https://wa.me/51949304030 🌐 https://www.reydes.com/e/Curso_Hacking_OT #otsecurity #icscybersecurity #scadasecurity #industrialcybersecurity #criticalinfrastructure #ics
  2. 🎖️ El Curso de Hacking OT - Tecnología Operacional está permanente disponible en el aula virtual para acceso inmediato. 📲 WhatsApp: https://wa.me/51949304030 🌐 https://www.reydes.com/e/Curso_Hacking_OT #otsecurity #icscybersecurity #scadasecurity #industrialcybersecurity #criticalinfrastructure #ics
  3. Check out my latest appearance with the 'PrOTect IT All' podcast. You can tune in here where we discuss how to practically build an OT cybersecurity program, and how to build a career in the field as a cybersecurity practitioner! protectitall.co/episodes/under #ICScybersecurity

  4. Not feeling quite ready to jump right into IR for OT, and want some more foundational knowledge of ICS? My colleague Don Weber will be teaching ICS410 at the same time! This is a great way to get your start in #icscybersecurity. Both courses are full of hands on labs with industrial technologies.

  5. I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. careers.dragos.com/jobs/2118?l #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs

  6. I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. careers.dragos.com/jobs/2118?l #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs

  7. I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. careers.dragos.com/jobs/2118?l #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs

  8. I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. careers.dragos.com/jobs/2118?l #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs

  9. I know some of you have been waiting patiently: @dragosinc has a Principal Industrial Consultant role open in the US (fully remote with onsite travel). This is a great way for a person who has done vertical or government-specific OT cybersecurity to move into more varied OT consulting and join our team. careers.dragos.com/jobs/2118?l #otcybersecurity #ICSCybersecurity #industrial_cybersecurity #cybersecurityjobs

  10. Speaking of #ICSCybersecurity… I think I’ve gotten a lot of followers on social justice and general IT lately. As a little re-intro, what I do for a living is respond to and investigate hacking of critical industrial infrastructure like power, water, manufacturing, and transportation. Stuff that doesn’t look like computers but often is today. I’ve been doing it for over a decade and a half, If that’s ever something you want to know more about, AMA and I’ll do my best to answer your questions.

  11. I’m sorry, but for some reason there are exactly two types of humans in industrial cybersecurity. 95% are mission driven and incredibly fun and kind. 5% are very angry and gatekeepy senior people who want to prevent anyone else from ever contributing to the field. #ICSCybersecurity

  12. I’m not our year in review report, but I’ve definitely noted a fascinating uptick in some specific types of Incident Response in our (all) industrial customers:

    1) Structured investigations of already occurred industrial accidents to eliminate or identify computer root cause as part of process.
    2) Forensic analyses and clean up of long-term infections and lack of perimeter control of those environments.
    3) Follow on investigation of intrusions into IT to eliminate or identify potential overflow to or from OT.

    It’s really great to see now’s companies taking these on procedurally and with an understanding of how different IR is in these spaces. #OTcybersecurity #ICSCybersecurity

  13. In my last post, I mentioned some cool things to come in 2023... so let's gooo! 🙌

    In my research analyst role at SANS, I'm running a survey through March 28 on OT/ICS visibility-- and I want to hear from the community! We're looking for experts to share their perspective on IT and OT visibility, #industrial organizations and their SOCs, as well as detection capabilities across IT and OT networks. We'll share the findings in a public report released later this year so everyone can leverage the insights to help improve their OT visibility program.

    Link to survey ➡ sans.org/u/1pqp

    If driving our industry's detection capabilities is not enough incentive for you, don't worry, there's more! All respondents will be entered for a chance to win a $250 Amazon gift card for participating!

    #otcybersecurity #otsecurity #ICSCybersecurity #soc #detection

  14. I'm pleased to announce our new paper has been published! This work discusses a technique, and subsequently presents a proof of concept, for scanning for vulnerabilities within PLC control logic. As I've mentioned through numerous talks and work recently, traditional enterprise focused reconnaissance, enumeration, and vulnerability scanning techniques are inadequate against OT and provide very little information on OT-specific vulnerabilities. This tool goes further than typical network scanning to understand where the control logic itself may have vulnerabilities. Read the paper here:

    sciencedirect.com/science/arti

    We hope this work is just the first step in tooling to improve the state of in-PLC vulnerabilities and PLC programming practices, greatly reducing the exploitability of OT moving forward.

    #otcybersecurity #icscybersecurity #icssecurity #plcprogramming #cybersecurity

  15. If I answered some questions about Industrial Control System cybersecurity and cyberattacks during my downtime today, what would you like to know?

    Some background - my expertise is in incident response and digital forensic investigation of hacking of infrastructure systems - like power, water, manufacturing, oil and gas, transportation, agriculture, etc. There aren’t a lot of people who specialize in this. My company provides consulting and products to do cybersecurity for weird stuff that powers critical infrastructure like PLCs and SCADA. These networks are quite different than enterprise IT, and doing security in them can be challenging.

    My own background is pretty left field as expected, with degrees in Networks, Electronics, and Avionics. I’ve been doing this for a while now. What would you like to know?

    #cybersecurity #DFIR #ics #CriticalInfrastructure #ICSCybersecurity #IndustrialControl

  16. If I answered some questions about Industrial Control System cybersecurity and cyberattacks during my downtime today, what would you like to know?

    Some background - my expertise is in incident response and digital forensic investigation of hacking of infrastructure systems - like power, water, manufacturing, oil and gas, transportation, agriculture, etc. There aren’t a lot of people who specialize in this. My company provides consulting and products to do cybersecurity for weird stuff that powers critical infrastructure like PLCs and SCADA. These networks are quite different than enterprise IT, and doing security in them can be challenging.

    My own background is pretty left field as expected, with degrees in Networks, Electronics, and Avionics. I’ve been doing this for a while now. What would you like to know?

    #cybersecurity #DFIR #ics #CriticalInfrastructure #ICSCybersecurity #IndustrialControl

  17. If I answered some questions about Industrial Control System cybersecurity and cyberattacks during my downtime today, what would you like to know?

    Some background - my expertise is in incident response and digital forensic investigation of hacking of infrastructure systems - like power, water, manufacturing, oil and gas, transportation, agriculture, etc. There aren’t a lot of people who specialize in this. My company provides consulting and products to do cybersecurity for weird stuff that powers critical infrastructure like PLCs and SCADA. These networks are quite different than enterprise IT, and doing security in them can be challenging.

    My own background is pretty left field as expected, with degrees in Networks, Electronics, and Avionics. I’ve been doing this for a while now. What would you like to know?

    #cybersecurity #DFIR #ics #CriticalInfrastructure #ICSCybersecurity #IndustrialControl

  18. If I answered some questions about Industrial Control System cybersecurity and cyberattacks during my downtime today, what would you like to know?

    Some background - my expertise is in incident response and digital forensic investigation of hacking of infrastructure systems - like power, water, manufacturing, oil and gas, transportation, agriculture, etc. There aren’t a lot of people who specialize in this. My company provides consulting and products to do cybersecurity for weird stuff that powers critical infrastructure like PLCs and SCADA. These networks are quite different than enterprise IT, and doing security in them can be challenging.

    My own background is pretty left field as expected, with degrees in Networks, Electronics, and Avionics. I’ve been doing this for a while now. What would you like to know?

    #cybersecurity #DFIR #ics #CriticalInfrastructure #ICSCybersecurity #IndustrialControl

  19. If I answered some questions about Industrial Control System cybersecurity and cyberattacks during my downtime today, what would you like to know?

    Some background - my expertise is in incident response and digital forensic investigation of hacking of infrastructure systems - like power, water, manufacturing, oil and gas, transportation, agriculture, etc. There aren’t a lot of people who specialize in this. My company provides consulting and products to do cybersecurity for weird stuff that powers critical infrastructure like PLCs and SCADA. These networks are quite different than enterprise IT, and doing security in them can be challenging.

    My own background is pretty left field as expected, with degrees in Networks, Electronics, and Avionics. I’ve been doing this for a while now. What would you like to know?

    #cybersecurity #DFIR #ics #CriticalInfrastructure #ICSCybersecurity #IndustrialControl