Home Consulting Training Software Technical Materials Contact Employment
   

2008 Schedule

        
 
 

Primatech Training Institute
 

Understanding and Applying Cyber Security for Manufacturing and Computer Control Systems

Course Description

Industry has invested considerable effort in managing the risks of terrorism and other deliberate criminal acts against facilities since the events of September 11, 2001. However, these efforts have focused primarily on physical security and have not dealt with attacks on facilities through their computer systems. While few deliberately focused attacks on manufacturing systems have been reported, random attacks of worms, trojans, viruses, etc. have occurred and adversely impacted computer systems including those operating manufacturing facilities.

While cyber security is an established discipline for computer systems used for business management, its focus is the protection of valuable information stored on those systems from adversaries who want to obtain, corrupt, damage, destroy or prohibit access to it. Cyber security for manufacturing and control systems must also include protection against cyber or physical attack on computer systems and their support systems by adversaries who wish to disable or manipulate them to cause harm. Examples of manipulation include opening/closing valves, starting/stopping equipment, and overriding alarm and trip settings. Traditional IT cyber security countermeasures are not adequate to protect against attacks on control systems. Furthermore, such countermeasures may even compromise the safety or operability of manufacturing processes.

Historically, computer control systems have been kept separate from business and enterprise computer systems but increasingly they are being connected through networks, driven by the need to communicate process information to business groups and the opportunity to intervene in manufacturing processes through an intranet or the Internet. Control systems are exposed to penetration when they are connected to other networks or when there are provisions for remote access. Existing control systems were not designed with public access in mind, often have poor security, and are vulnerable to attack. Furthermore, much of the technical information needed to penetrate these systems is readily available.

Note: For more detail on the need to address industrial cyber security, see "The Business Case for Cyber Security (PDF file)"

This course provides attendees with an understanding of cyber security and knowledge and tools that can be used to manage the risk of cyber attacks. It includes an overview of the basics of computer networks and control systems for those attendees who may not be familiar with them. Sources and types of attack, vulnerabilities, attack techniques and countermeasures are described. The course concludes with a discussion of how to implement a program to manage cyber security within an organization.

Objective

  • Understand what is meant by industrial cyber security and its importance.

  • Become familiar with current initiatives.

  • Learn how computer systems can be attacked and what can be done to protect them.

  • Understand how to assess the current state of cyber security for a facility or company.

  • Become familiar with cyber security management programs.

Target Audience

Individuals involved with or responsible for securing manufacturing and computer control systems from attack.

Prerequisite

Knowledge and/or experience with either computer networks or manufacturing and computer control systems is helpful.

Course Contents

  • Overview

  • Current initiatives

  • Computer networks and control systems

  • Sources and types of attack

  • Vulnerabilities to attack

  • Attack techniques and tools

  • Cyber security countermeasures

  • Cyber security principles

  • Human factors in cyber security

  • Assessment methods

  • Cyber security program

Duration

Two days, 1.4 CEUs awarded

Tuition

See Information on Pricing and Registration - USA for pricing and registration information.

Courses, Prices and Schedule

 

“This training was thorough, concise and very enjoyable.” 
- Mario Urias, Kinder Morgan

 

2008 Courses / Schedule and Registration

Training Annoucements Request

 Sign up for Training Announcements

Process Hazard Analysis (PHA) for Team Leaders

“Excellent course, the depth and coverage fit my needs perfectly.”
- Andy Engels, Praxair Inc.

“Anyone in the chemicals industry should take this course.”
- James Sullivan, BASF Corporation

“Course was very good and covered OSHA & EPA requirements well. Recommend to anyone who has chemicals onsite to attend.”
- Gary O’Hern, REC Silicon

top

Process Hazard Analysis (PHA) Training Courses

top

Process Safety Management (PSM) Training Courses

“Even after 10+ years, dealing with PSM/RMP, this course provided tid-bits of information and additional food for thought…good for those new to these principles, as well as “old-dogs” like me.
- Michelle Maxwell, Reichhold

“Excellent compilation of information on all aspects of PSM. Information provided can be used to improve PSM at Petrojam; ideas as to how I can make a difference have been clearly identified.” 
 - Chevril Wallace, Petrojam Ltd.

“A must for anyone who wants to perform compliance audits or may expect one.”
- Jason Ebin, Dover Chemical

top

S84 / IEC 61511, Layers of Protection Analysis (LOPA) and Safety Integrity Level (SIL) Courses

“Great course!  Helps a novice become expert using working exercises.”
- Vario Corsetti, Praxair Inc.

top

Software Courses

“Very good and qualified instructor.  Sensitive to audience needs (for Primatech software training).”
- Mark Prude, ISP Chemicals

top

JSA, Procedure Writing Courses

“The course gave me the knowledge skill and confidence to write, very good operating procedures.”
- Dave Rossi, TEPPCO

“The JHA course is very informative and will help greatly in the continued success of our JHA Program.”
- Jeff Brown, EES Coke Battery

"If you ever wonder what is necessary to improve or meet requirements, take this class and learn from an expert."
- Susan Stotts, BP America

top

Management of Change (MOC) and Mechanical Integrity (MI) Courses

“I signed up for this course to gain insight and become familiar with the requirements and documents needed (codes and standards) to develop and implement a mechanical integrity program.  My mission was accomplished.”
- Carol Jack, Aerojet Fine Chemicals

top

Cyber Security Courses

“This course was an excellent introduction to methods and principle of the C.S.V.A process.”
- Raymond Gray, Noveon/Lubrizol

top

Human Factors and Human Errors Courses

“Very informative and eye opening.  Leaves you waiting to know more (about Human Factors).”
- Everett Smith, Kaneka Texas Corporation

top

Courses Offered for In-House Delivery Only

Courses delivered in-house can be customized to include your specific process examples and drawings. For more information about training courses, contact us at training@primatech.com, by fax at 614-841-9805 (any time) or call us at 614-841-9800, 8:30 AM - 5:00 PM EST. You can also click on any of the above links for additional information.

top

 

Send email to webmaster@primatech.com with questions or comments about this web site.
Copyright © 1996-2008 Primatech Inc.  AUDIT-PC, FMEA-PC, HAZOP-PC, MANAGE-PC, PHA-PC, WHAT IF-PC, AUDITWorks, PHAWorks, PSMOffice, SVAWorks and Tracker are trademarks or registered trademarks of Primatech Inc.  Microsoft and Windows are registered trademarks of Microsoft Corporation.  Adobe, the Adobe logo, Acrobat, and Acrobat logo are registered trademarks of Adobe Systems Incorporated.  Primatech Inc. is an Ohio Corporation.