{"product_id":"practical-industrial-cybersecurity-isbn-9781119883029","title":"Practical Industrial Cybersecurity","description":"\u003cp\u003e\u003cb\u003eA practical roadmap to protecting against cyberattacks in industrial environments\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eIn \u003ci\u003ePractical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT\u003c\/i\u003e, veteran electronics and computer security author Charles J. Brooks and electrical grid cybersecurity expert Philip Craig deliver an authoritative and robust discussion of how to meet modern industrial cybersecurity challenges. The book outlines the tools and techniques used by practitioners in the industry today, as well as the foundations of the professional cybersecurity skillset required to succeed on the SANS Global Industrial Cyber Security Professional (GICSP) exam. \u003c\/p\u003e\u003cp\u003eFull of hands-on explanations and practical guidance, this book also includes: \u003c\/p\u003e\u003cul\u003e \u003cli\u003eComprehensive coverage consistent with the National Institute of Standards and Technology guidelines for establishing secure industrial control systems (ICS)\u003c\/li\u003e \u003cli\u003eRigorous explorations of ICS architecture, module and element hardening, security assessment, security governance, risk management, and more\u003c\/li\u003e\n\u003c\/ul\u003e\u003cp\u003e\u003ci\u003ePractical Industrial Cybersecurity\u003c\/i\u003e is an indispensable read for anyone preparing for the Global Industrial Cyber Security Professional (GICSP) exam offered by the Global Information Assurance Certification (GIAC). It also belongs on the bookshelves of cybersecurity personnel at industrial process control and utility companies. \u003c\/p\u003e\u003cp\u003e\u003ci\u003ePractical Industrial Cybersecurity\u003c\/i\u003e provides key insights to the Purdue ANSI\/ISA 95 Industrial Network Security reference model and how it is implemented from the production floor level to the Internet connection of the corporate network. It is a valuable tool for professionals already working in the ICS\/Utility network environment, IT cybersecurity personnel transitioning to the OT network environment, and those looking for a rewarding entry point into the cybersecurity field. \u003c\/p\u003e\u003cp\u003eIntroduction xxiii\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 Industrial Control Systems 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 2\u003c\/p\u003e \u003cp\u003eBasic Process Control Systems 3\u003c\/p\u003e \u003cp\u003eClosed- Loop Control Systems 5\u003c\/p\u003e \u003cp\u003eIndustrial Process Controllers 6\u003c\/p\u003e \u003cp\u003eSupervisory Control and Data Acquisition Systems 20\u003c\/p\u003e \u003cp\u003eSystem Telemetry 21\u003c\/p\u003e \u003cp\u003eUtility Networks 23\u003c\/p\u003e \u003cp\u003eOT\/IT Network Integration 25\u003c\/p\u003e \u003cp\u003eIndustrial Safety and Protection Systems 28\u003c\/p\u003e \u003cp\u003eSafety Instrument Systems 29\u003c\/p\u003e \u003cp\u003eReview Questions 39\u003c\/p\u003e \u003cp\u003eExam Questions 41\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 ICS Architecture 43\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 44\u003c\/p\u003e \u003cp\u003eNetwork Transmission Media 45\u003c\/p\u003e \u003cp\u003eCopper Cabling 45\u003c\/p\u003e \u003cp\u003eFiber- Optic Cabling 46\u003c\/p\u003e \u003cp\u003eIndustrial Network Media Standards 49\u003c\/p\u003e \u003cp\u003eEthernet Connectivity 52\u003c\/p\u003e \u003cp\u003eExternal Network Communications 53\u003c\/p\u003e \u003cp\u003eTransmission Media Vulnerabilities 55\u003c\/p\u003e \u003cp\u003eField Device Architecture 56\u003c\/p\u003e \u003cp\u003ePLC I\/O Sections 58\u003c\/p\u003e \u003cp\u003ePLC Implementations 62\u003c\/p\u003e \u003cp\u003eIndustrial Sensors 63\u003c\/p\u003e \u003cp\u003eFinal Control Elements\/Actuators 71\u003c\/p\u003e \u003cp\u003eRelays 73\u003c\/p\u003e \u003cp\u003eProcess Units 76\u003c\/p\u003e \u003cp\u003eIndustrial Network Protocols 79\u003c\/p\u003e \u003cp\u003eCommon Industrial Protocols 79\u003c\/p\u003e \u003cp\u003eEtherNet\/IP Protocol 79\u003c\/p\u003e \u003cp\u003eModbus 80\u003c\/p\u003e \u003cp\u003eProfiNet\/ProfiBus 81\u003c\/p\u003e \u003cp\u003eDnp3 82\u003c\/p\u003e \u003cp\u003eIccp 83\u003c\/p\u003e \u003cp\u003eOpc 83\u003c\/p\u003e \u003cp\u003eBACnet 83\u003c\/p\u003e \u003cp\u003eEnterprise Network Protocols 84\u003c\/p\u003e \u003cp\u003eTcp\/ip 84\u003c\/p\u003e \u003cp\u003eDynamic Host Configuration Protocol 89\u003c\/p\u003e \u003cp\u003eReview Questions 90\u003c\/p\u003e \u003cp\u003eExam Questions 91\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Secure ICS Architecture 95\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 96\u003c\/p\u003e \u003cp\u003eBoundary Protection 97\u003c\/p\u003e \u003cp\u003eFirewalls 98\u003c\/p\u003e \u003cp\u003eProxies 104\u003c\/p\u003e \u003cp\u003eSecurity Topologies 105\u003c\/p\u003e \u003cp\u003eNetwork Switches 106\u003c\/p\u003e \u003cp\u003eRouters 108\u003c\/p\u003e \u003cp\u003eSecurity Zoning Models 109\u003c\/p\u003e \u003cp\u003eFlat Network Topologies 113\u003c\/p\u003e \u003cp\u003eNetwork Segmentation 122\u003c\/p\u003e \u003cp\u003eControlling Intersegment Data Movement 128\u003c\/p\u003e \u003cp\u003eTunneling 128\u003c\/p\u003e \u003cp\u003eWireless Networking 129\u003c\/p\u003e \u003cp\u003eWireless Sensors 131\u003c\/p\u003e \u003cp\u003eWireless Gateways 134\u003c\/p\u003e \u003cp\u003eModems 135\u003c\/p\u003e \u003cp\u003eReview Questions 137\u003c\/p\u003e \u003cp\u003eExam Questions 139\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 ICS Module and Element Hardening 143\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 145\u003c\/p\u003e \u003cp\u003eEndpoint Security and Hardening 145\u003c\/p\u003e \u003cp\u003eUser Workstation Hardening 145\u003c\/p\u003e \u003cp\u003eBIOS Security Subsystems 147\u003c\/p\u003e \u003cp\u003eAdditional Outer Perimeter Access Hardening 148\u003c\/p\u003e \u003cp\u003eMobile Device Protection 154\u003c\/p\u003e \u003cp\u003eOS Security\/Hardening 155\u003c\/p\u003e \u003cp\u003eFile System Security 156\u003c\/p\u003e \u003cp\u003eOperating System Security Choices 160\u003c\/p\u003e \u003cp\u003eLinux SystemV vs Systemd 160\u003c\/p\u003e \u003cp\u003eHardening Operating Systems 162\u003c\/p\u003e \u003cp\u003eCommon Operating System Security Tools 162\u003c\/p\u003e \u003cp\u003eVirtualization 169\u003c\/p\u003e \u003cp\u003eApplication Software Security 172\u003c\/p\u003e \u003cp\u003eSoftware Exploitation 172\u003c\/p\u003e \u003cp\u003eInformation Leakage 173\u003c\/p\u003e \u003cp\u003eApplying Software Updates and Patches 174\u003c\/p\u003e \u003cp\u003eDatabase Hardening 174\u003c\/p\u003e \u003cp\u003eSQL Injection 175\u003c\/p\u003e \u003cp\u003eAnti-Malware 177\u003c\/p\u003e \u003cp\u003eAntivirus 178\u003c\/p\u003e \u003cp\u003eAnti-spyware 178\u003c\/p\u003e \u003cp\u003eAnti- Malware: Sanitization 181\u003c\/p\u003e \u003cp\u003eEmbedded Device Security 182\u003c\/p\u003e \u003cp\u003eMeters 184\u003c\/p\u003e \u003cp\u003eNetwork Hardening 189\u003c\/p\u003e \u003cp\u003eOT\/IT Network Security 189\u003c\/p\u003e \u003cp\u003eServer Security 191\u003c\/p\u003e \u003cp\u003eHardening the Server OS 193\u003c\/p\u003e \u003cp\u003eLogical Server Access Control 194\u003c\/p\u003e \u003cp\u003eHardening Network Connectivity Devices 196\u003c\/p\u003e \u003cp\u003eReview Questions 201\u003c\/p\u003e \u003cp\u003eExam Questions 202\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Cybersecurity Essentials for ICS 205\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 207\u003c\/p\u003e \u003cp\u003eBasic Security Tenets 208\u003c\/p\u003e \u003cp\u003eConfidentiality, Integrity, and Availability 208\u003c\/p\u003e \u003cp\u003eAvailability in ICS Networks 209\u003c\/p\u003e \u003cp\u003eNonrepudiation 210\u003c\/p\u003e \u003cp\u003ePrinciple of Least Privilege 211\u003c\/p\u003e \u003cp\u003eSeparation of Duties 211\u003c\/p\u003e \u003cp\u003eVulnerability and Threat Identification 212\u003c\/p\u003e \u003cp\u003eNation- States 213\u003c\/p\u003e \u003cp\u003eCyberterrorists 213\u003c\/p\u003e \u003cp\u003eCybercriminals 214\u003c\/p\u003e \u003cp\u003eInsider Threats 216\u003c\/p\u003e \u003cp\u003eEvents, Incidents, and Attacks 217\u003c\/p\u003e \u003cp\u003eThreat Vectors 217\u003c\/p\u003e \u003cp\u003eWeaponization 230\u003c\/p\u003e \u003cp\u003eDelivery 230\u003c\/p\u003e \u003cp\u003eExploitation 231\u003c\/p\u003e \u003cp\u003eInstallation 232\u003c\/p\u003e \u003cp\u003eCommand and Control 233\u003c\/p\u003e \u003cp\u003eActions on Objectives 233\u003c\/p\u003e \u003cp\u003eAttack Methods 234\u003c\/p\u003e \u003cp\u003eUnauthorized Access 251\u003c\/p\u003e \u003cp\u003eCryptographics 260\u003c\/p\u003e \u003cp\u003eEncryption 262\u003c\/p\u003e \u003cp\u003eDigital Certificates 264\u003c\/p\u003e \u003cp\u003ePublic Key Infrastructure 264\u003c\/p\u003e \u003cp\u003eHashing 266\u003c\/p\u003e \u003cp\u003eResource Constraints 267\u003c\/p\u003e \u003cp\u003eReview Questions 268\u003c\/p\u003e \u003cp\u003eExam Questions 268\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 Physical Security 271\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 272\u003c\/p\u003e \u003cp\u003eInfrastructure Security 273\u003c\/p\u003e \u003cp\u003eAccess Control 274\u003c\/p\u003e \u003cp\u003ePhysical Security Controls 276\u003c\/p\u003e \u003cp\u003eAuthentication Systems 278\u003c\/p\u003e \u003cp\u003eRemote Access Monitoring and Automated Access Control Systems 286\u003c\/p\u003e \u003cp\u003eIntrusion Detection and Reporting Systems 289\u003c\/p\u003e \u003cp\u003eSecurity Controllers 290\u003c\/p\u003e \u003cp\u003eVideo Surveillance Systems 295\u003c\/p\u003e \u003cp\u003eCameras 297\u003c\/p\u003e \u003cp\u003eIP Cameras 297\u003c\/p\u003e \u003cp\u003ePan- Tilt- Zoom Cameras 298\u003c\/p\u003e \u003cp\u003ePhysical Security for ICS 306\u003c\/p\u003e \u003cp\u003eIndustrial Processes\/Generating Facilities 307\u003c\/p\u003e \u003cp\u003eControl Center\/Company Offices 307\u003c\/p\u003e \u003cp\u003eNerc Cip-006-1 309\u003c\/p\u003e \u003cp\u003eReview Questions 311\u003c\/p\u003e \u003cp\u003eExam Questions 312\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Access Management 315\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 316\u003c\/p\u003e \u003cp\u003eAccess Control Models 317\u003c\/p\u003e \u003cp\u003eMandatory Access Control 317\u003c\/p\u003e \u003cp\u003eDiscretionary Access Control 318\u003c\/p\u003e \u003cp\u003eRole- Based Access Control 318\u003c\/p\u003e \u003cp\u003eRule- Based Access Control 319\u003c\/p\u003e \u003cp\u003eAttribute- Based Access Control 319\u003c\/p\u003e \u003cp\u003eContext- Based Access Control 320\u003c\/p\u003e \u003cp\u003eKey Security Components within Access Controls 320\u003c\/p\u003e \u003cp\u003eDirectory Services 321\u003c\/p\u003e \u003cp\u003eActive Directory 321\u003c\/p\u003e \u003cp\u003eLinux Directory Services 324\u003c\/p\u003e \u003cp\u003eApplication Runtime and Execution Control 326\u003c\/p\u003e \u003cp\u003eUser Access Management 326\u003c\/p\u003e \u003cp\u003eEstablishing User and Group Accounts 328\u003c\/p\u003e \u003cp\u003eGroup Account Security 330\u003c\/p\u003e \u003cp\u003eNetwork Authentication Options 331\u003c\/p\u003e \u003cp\u003eEstablishing Resource Controls 332\u003c\/p\u003e \u003cp\u003eICS Access Control 334\u003c\/p\u003e \u003cp\u003eRemote ICS Access Control 336\u003c\/p\u003e \u003cp\u003eAccess Control for Cloud Systems 340\u003c\/p\u003e \u003cp\u003eReview Questions 343\u003c\/p\u003e \u003cp\u003eExam Questions 344\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 ICS Security Governance and Risk Management 347\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 348\u003c\/p\u003e \u003cp\u003eSecurity Policies and Procedure Development 348\u003c\/p\u003e \u003cp\u003eRequirements 349\u003c\/p\u003e \u003cp\u003eExceptions and Exemptions 350\u003c\/p\u003e \u003cp\u003eStandards 351\u003c\/p\u003e \u003cp\u003eICS Security Policies 356\u003c\/p\u003e \u003cp\u003eRisk Management 357\u003c\/p\u003e \u003cp\u003eAsset Identification 358\u003c\/p\u003e \u003cp\u003eRisk Assessment 359\u003c\/p\u003e \u003cp\u003eRisk Identification Vulnerability Assessment 362\u003c\/p\u003e \u003cp\u003eImpact Assessment 363\u003c\/p\u003e \u003cp\u003eICS Risk Assessments 364\u003c\/p\u003e \u003cp\u003eRisk Mitigation 366\u003c\/p\u003e \u003cp\u003eNerc Cip-008 367\u003c\/p\u003e \u003cp\u003eReview Questions 369\u003c\/p\u003e \u003cp\u003eExam Questions 370\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 ICS Security Assessments 373\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 374\u003c\/p\u003e \u003cp\u003eSecurity Assessments 374\u003c\/p\u003e \u003cp\u003eICS Device Testing 376\u003c\/p\u003e \u003cp\u003eVulnerability 376\u003c\/p\u003e \u003cp\u003eSupply Chain 377\u003c\/p\u003e \u003cp\u003eCommunication Robustness Testing 382\u003c\/p\u003e \u003cp\u003eFuzzing 382\u003c\/p\u003e \u003cp\u003eICS Penetration Testing 384\u003c\/p\u003e \u003cp\u003eThe Pentest Process 385\u003c\/p\u003e \u003cp\u003eSecurity Testing Tools 392\u003c\/p\u003e \u003cp\u003ePacket Sniffers 392\u003c\/p\u003e \u003cp\u003eNetwork Enumeration\/Port Scanning 393\u003c\/p\u003e \u003cp\u003ePort Scanning 395\u003c\/p\u003e \u003cp\u003eVulnerability Scanning 395\u003c\/p\u003e \u003cp\u003eReview Questions 401\u003c\/p\u003e \u003cp\u003eExam Questions 402\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10 ICS Security Monitoring and Incident Response 405\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 407\u003c\/p\u003e \u003cp\u003eICS Lifecycle Challenges 408\u003c\/p\u003e \u003cp\u003eChange Management 408\u003c\/p\u003e \u003cp\u003eEstablishing a Security Baseline 409\u003c\/p\u003e \u003cp\u003eChange Management Documentation 411\u003c\/p\u003e \u003cp\u003eConfiguration Change Management 412\u003c\/p\u003e \u003cp\u003eControlling Patch Distribution and Installation for Systems 414\u003c\/p\u003e \u003cp\u003eMonitoring 419\u003c\/p\u003e \u003cp\u003eEvent Monitoring 420\u003c\/p\u003e \u003cp\u003eNetwork Monitoring 421\u003c\/p\u003e \u003cp\u003eSecurity Monitoring 423\u003c\/p\u003e \u003cp\u003eLogging and Auditing 424\u003c\/p\u003e \u003cp\u003eEvent Logging 425\u003c\/p\u003e \u003cp\u003eIncident Management 433\u003c\/p\u003e \u003cp\u003eThe Incident Response Lifecycle 434\u003c\/p\u003e \u003cp\u003ePreparation 435\u003c\/p\u003e \u003cp\u003eIncident Response 442\u003c\/p\u003e \u003cp\u003eRecovery 445\u003c\/p\u003e \u003cp\u003ePost- Incident Activities 446\u003c\/p\u003e \u003cp\u003eReview Questions 449\u003c\/p\u003e \u003cp\u003eExam Questions 450\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 11 Disaster Recovery and Business Continuity 453\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction 454\u003c\/p\u003e \u003cp\u003eBusiness Continuity Plans 455\u003c\/p\u003e \u003cp\u003eSystem Redundancy 455\u003c\/p\u003e \u003cp\u003eLocal Virtualized Storage 459\u003c\/p\u003e \u003cp\u003eSystem Backup and Restoration 462\u003c\/p\u003e \u003cp\u003eBackup Options 463\u003c\/p\u003e \u003cp\u003eBackup Media Rotation 466\u003c\/p\u003e \u003cp\u003eSecuring Backup Media 467\u003c\/p\u003e \u003cp\u003eOther BCP Considerations 467\u003c\/p\u003e \u003cp\u003eDisaster Recovery 469\u003c\/p\u003e \u003cp\u003ePlanning 470\u003c\/p\u003e \u003cp\u003eDocumenting the Disaster Recovery Plan 472\u003c\/p\u003e \u003cp\u003eThe Disaster Response\/Recovery Team 473\u003c\/p\u003e \u003cp\u003eNerc Cip-009-6 475\u003c\/p\u003e \u003cp\u003eReview Questions 477\u003c\/p\u003e \u003cp\u003eExam Questions 478\u003c\/p\u003e \u003cp\u003e\u003cb\u003eAppendix A GICSP Objective Map 481\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eICS410.1 ICS: Global Industrial Cybersecurity Professional (GICSP) Objectives 482\u003c\/p\u003e \u003cp\u003eOverview 482\u003c\/p\u003e \u003cp\u003eICS410.2: Architecture and Field Devices 483\u003c\/p\u003e \u003cp\u003eICS410.3: Communications and Protocols 484\u003c\/p\u003e \u003cp\u003eICS410.4: Supervisory Systems 485\u003c\/p\u003e \u003cp\u003eICS410.5: Security Governance 485\u003c\/p\u003e \u003cp\u003e\u003cb\u003eAppendix B Glossary 487\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eAppendix C Standards and References 533\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eReference Links 536\u003c\/p\u003e \u003cp\u003e\u003cb\u003eAppendix D Review and Exam Question Answers 539\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eChapter 1: Industrial Control Systems 540\u003c\/p\u003e \u003cp\u003eReview Question Answers 540\u003c\/p\u003e \u003cp\u003eExam Question Answers 541\u003c\/p\u003e \u003cp\u003eChapter 2: ICS Architecture 542\u003c\/p\u003e \u003cp\u003eReview Question Answers 542\u003c\/p\u003e \u003cp\u003eExam Question Answers 544\u003c\/p\u003e \u003cp\u003eChapter 3: Secure ICS Architecture 545\u003c\/p\u003e \u003cp\u003eReview Question Answers 545\u003c\/p\u003e \u003cp\u003eExam Question Answers 547\u003c\/p\u003e \u003cp\u003eChapter 4: ICS Modules and Element Hardening 548\u003c\/p\u003e \u003cp\u003eReview Question Answers 548\u003c\/p\u003e \u003cp\u003eExam Question Answers 550\u003c\/p\u003e \u003cp\u003eChapter 5: Cybersecurity Essentials for ICS 551\u003c\/p\u003e \u003cp\u003eReview Question Answers 551\u003c\/p\u003e \u003cp\u003eExam Question Answers 553\u003c\/p\u003e \u003cp\u003eChapter 6: Physical Security 554\u003c\/p\u003e \u003cp\u003eReview Question Answers 554\u003c\/p\u003e \u003cp\u003eExam Question Answers 556\u003c\/p\u003e \u003cp\u003eChapter 7: Access Management 556\u003c\/p\u003e \u003cp\u003eReview Question Answers 556\u003c\/p\u003e \u003cp\u003eExam Question Answers 558\u003c\/p\u003e \u003cp\u003eChapter 8: ICS Security Governance and Risk Management 559\u003c\/p\u003e \u003cp\u003eReview Question Answers 559\u003c\/p\u003e \u003cp\u003eExam Question Answers 560\u003c\/p\u003e \u003cp\u003eChapter 9: ICS Security Assessments 561\u003c\/p\u003e \u003cp\u003eReview Question Answers 561\u003c\/p\u003e \u003cp\u003eExam Question Answers 563\u003c\/p\u003e \u003cp\u003eChapter 10: ICS Security Monitoring and Incident Response 564\u003c\/p\u003e \u003cp\u003eReview Question Answers 564\u003c\/p\u003e \u003cp\u003eExam Question Answers 565\u003c\/p\u003e \u003cp\u003eChapter 11: Disaster Recovery and Business Continuity 567\u003c\/p\u003e \u003cp\u003eReview Question Answers 567\u003c\/p\u003e \u003cp\u003eExam Question Answers 568\u003c\/p\u003e \u003cp\u003eIndex 571\u003c\/p\u003e \u003cp\u003e\u003cb\u003eCHARLES J. BROOKS\u003c\/b\u003e is the co-Owner and Vice President of Educational Technologies Group Inc and the co-Owner of eITPrep LLP. He oversees research and product development at those organizations and has  authored several books, including the \u003ci\u003eA+ Certification Training Guide\u003c\/i\u003e and \u003ci\u003eThe Complete Introductory Computer Course\u003c\/i\u003e. For the past eight years Charles has been lecturing and providing Instructor training for cybersecurity teachers throughout the U.S. and abroad. His latest projects have been associated with IT and OT cybersecurity courses and hands-on lab activities that include Cybersecurity Essentials — Concepts \u0026amp; Practices; Cybersecurity Essentials – Environments \u0026amp; Testing; and Industrial Network Cybersecurity.\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePHILIP A. CRAIG JR \u003c\/b\u003eis the founder of BlackByte Cyber Security, LLC, a consultancy formed to develop new cybersecurity tools and tactics for use in U.S Critical Infrastructure.  He oversees research and product development for the U.S. Department of Energy (DOE), the Defense Advanced Research Projects Agency (DARPA), and the National Rural Electric Cooperative Association (NRECA), as well as providing expert knowledge in next generation signal isolation techniques to protect automated controls in energy generation, transmission, and distribution systems. Mr. Craig has authored regulation for both the Nuclear Regulatory Commission (NRC) and National Energy Reliability Corporation (NERC) and is an active cyber responder in federal partnerships for incident response.  \u003c\/p\u003e\u003cp\u003e\u003cb\u003eA hands-on roadmap to the GICSP exam and industrial cybersecurity best practices\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIn \u003ci\u003ePractical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT\u003c\/i\u003e, a team of veteran computer security professionals and educators delivers an accessible and authoritative discussion of the tools and techniques used by industrial cybersecurity professionals. The book walks you through the foundations of a modern cybersecurity skillset as it is applied in an industrial setting, as well as the skills and competencies you’ll need to succeed on the Global Industrial Cyber Security Professional (GICSP) exam. \u003c\/p\u003e\u003cp\u003eThe authors provide comprehensive coverage that is fully consistent with the National Institute of Standards and Technology (NIST) guidelines governing the establishment of secure industrial control systems (ICS). They present explanations of best practices in the design and implementation of ICS architecture, module and element hardening, security assessment and governance, risk management, and more. \u003c\/p\u003e\u003cp\u003eAn indispensable handbook for anyone preparing for the GICSP exam, as well as industry professionals seeking to upgrade their on-the-job, industrial cybersecurity skillset, \u003ci\u003ePractical Industrial Cybersecurity also offers\u003c\/i\u003e: \u003c\/p\u003e\u003cul\u003e\u003cb\u003e\u003cli\u003eUnderstand and configure access management\u003c\/li\u003e \u003cli\u003eImplement disaster recovery and business continuity strategies\u003c\/li\u003e \u003cli\u003ePlan and design industrial control systems architecture\u003c\/li\u003e \u003cli\u003eAssess and monitor industrial control system security\u003c\/li\u003e \u003cli\u003eBuild a physical security system that complements your industrial cybersecurity setup\u003c\/li\u003e\u003c\/b\u003e\u003c\/ul\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989832941797,"sku":"NP9781119883029","price":50.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781119883029.jpg?v=1761785617","url":"https:\/\/k12savings.com\/es\/products\/practical-industrial-cybersecurity-isbn-9781119883029","provider":"K12savings","version":"1.0","type":"link"}