Explore essential Operational Technology (OT) concepts for Blue Team professionals in this 40-minute conference talk from Ekoparty 2021: BlueSpace. Delve into Industrial Control System (ICS) technologies, architecture, and potential attacks. Learn about Intrusion Detection Systems (IDS) specifically designed for OT environments, including detection use cases and key characteristics. Gain insights into Cyber Threat Intelligence and its application in the industrial sector. Understand the MITRE ATT&CK framework and its relevance to OT security. Discover effective Cyber Threat Hunting techniques for protecting critical infrastructure. Benefit from the expertise of Santiago Abastante, an Incident Responder and Threat Intelligence Specialist, and Matias Manassero, an Industrial Cyber Security Consultant, as they share their knowledge on securing operational technology environments.
Conceptos de OT para Blue Teamers - Santiago Abastante & Matias Manassero - Ekoparty 2021: BlueSpace
Ekoparty Security Conference via YouTube
Overview
Syllabus
Intro
Industrial Control System Technologies (1)
Industrial Control Systems Architecture
Attacks on Industrial Control Systems
Intrusion Detection Systems
Detection Use Cases
Characteristics of an IDS OT
Cyber Threat Intelligence
MITRE ATT&CK
Cyber Threat Hunting
Taught by
Ekoparty Security Conference
Related Courses
-
Improving ICS and OT Visibility - Dragos Platform v1.6 Overview
-
MITRE ATT&CK for ICS: Improving Threat Detection and Response in Industrial Control Systems
-
MITRE ATT&CK for Industrial Control Systems - Demonstration and Analysis
-
Developing a Converged IT/OT Threat Model Using MITRE ATT&CK
-
Threat Hunting - Using MITRE ATT&CK Against Carbanak Malware
-
MITRE ATT&CK Evaluations for Industrial Control Systems - Dragos Retrospective
