Topics addressed in the course include:
- Critical infrastructure (CI) and critical infrastructure security and resilience (CISR), including the 16 critical infrastructure sectors, as defined by the Department of Homeland Security (DHS) and identified in Presidential Policy Directive 21 (PPD-21: Critical Infrastructure Security and Resilience).
- Industrial Control Systems (ICS) such as SCADA, PCS, and DCS.
- Risk Management Frameworks applicable to CI systems.
- Cybersecurity services, such as confidentiality, integrity, availability, and authentication, as they apply to CI systems.
- Cybersecurity threats, risks, vulnerabilities, and attacks as they apply to CI systems.
- Vulnerability assessments and tools applicable to CI systems.
- CI systems risk management strategies.
- Trends in cybersecurity impacting CI sectors.
At the conclusion of the course, students will be able to:
- Define CI sectors and identify legislation and standards addressing CI protection.
- Define common terms and concepts associated with CI, including ICS, SCADA, PCS, and DCS.
- Identify the components and process of implementing a CISR risk management program.
- Describe cybersecurity services such as confidentiality, integrity, availability, and authentication as they apply to CI systems.
- Select appropriate vulnerability assessment frameworks and tools as part of a risk assessment of a CI system.
- Identify and describe cybersecurity threats, risks, vulnerabilities, and attacks as they apply to CI systems.
- Identify an appropriate risk management strategy for CISR.