Cybersecurity testing for ICS - pitfalls and wins
This is a (long overdue) followup post of the talk I gave at the SANS ICS Summit in 2021 - a recording of this talk can be found on youtube
News
Resources to get into #ICS security
Recently I received some questions on what resources I would recommend within the ICS security space to learn more about this. So the question was more specifically about discussion groups, courses, books, certificates…
using IEC62443-2-4 to reach a more secure ICS - Vendor validation
Every ICS environment will sooner or later have to deal with updates, upgrades or additions to the control system environment. Nowadays it is important to include security within such projects, although that is still so…
Remote access for ICS - additional views
Through the past few months, more and more ways of providing remote access surfaced within organizations as people were forced to work from home because of the Covid-19 pandemic. This was also the case for remote access…
Security testing for ICS Owners – Back to Basics - recording
The video recording of the "Security testing - back to basics" presentation that I gave at CS3STHLM last year can be found on Youtube
Security testing for ICS Owners – Back to Basics ...
Why “Back to basics” regarding security testing? Well... during several previous security assessments that I have performed, I have run into a lot of the issues mentioned within the presentation I have given on this…
Operator Jail breakout
In 2018, I gave a presentation at the CS3STHLM conference together with Frank Lycops on Operator Jail breakouts. Operator Jails are meant to prevent process operators from having access to the underlying system
Upcoming talk @CS3STHLM - Operator Jail Breakouts
In a few weeks I’ll be giving a talk together with Frank Lycops ( https://asvalis.com) on the hidden dangers of Operator Jail breakouts, how to test these issues, and how to prevent them. The talk will be provided at…
DIY insider threat presentation CS3sthlm - elaboration on questions received
During my presentation at the CS3sthlm conference (DIY insider threat detection/prevention within ICS environments), I've received some questions on this topic. Within this post I'll elaborate a bit more on these. A …
DIY insider threat detection/prevention within ICS environments
This is a summary of the talk I gave during the CS3sthlm conference in October (link to topic: https://cs3sthlm.se/program/presentations/dieter-sarrazyn/) The goal of the presentation was to help people and organisat…