At a Glance

Securing an Industrial Control System (ICS) environment has always been one of the most important considerations for any business but as these systems have evolved from closed, proprietary environments to the modern IP connected systems that we see today, the security risk has evolved with it. Additionally, as the drive towards more connectivity using IP systems gathers speed, it brings with it all the associated vulnerabilities and malware that have already been seen in the IT side of the house. This includes understanding your responsibilities to comply with various regulation(s) such as the EU NIS Directive as well as educating your staff in what to look for and how to report anomalous behaviour. There has also been a growth in understanding how your risk may be increased by the lack of security in your Supply Chain.

A modern ICS is subject to all the threats and vulnerabilities that any normal office network may encounter and, as the attackers are gaining more knowledge about what these systems actually do, the attack is less likely to come from the 'script-kiddies' who seek notoriety but is more likely to come from criminal or state-sponsored groups whose motivation, resources and skills are far more advanced.

We have succesfully been delivering hands-on, instructor-led ICS Security courses for CPNI/NCSC for over 4 years now and the success of these courses has grown into a secondary market of individual companies requiring additional multiple courses as well as the vendors of products and services who need to understand what the front-line business will be demanding from them.

Our Courses

Level 1 - Awareness

ICS110 ICS Managers Security

Level 2 - Foundation

ICS201 Networking Essentials for ICS staff (under development)

ICS202 ICS Incident Response Fundamentals

ICS203 ICS Practitioners Security

ICS204 ICS Basics for non-ICS staff (As the QA ICS Security Introduction) - note this will take you to the QA course page

Level 3 - Practitioner

ICS301 Wireless Security for ICS (under development)

Level 4 - Senior Practitioner

ICS405 Securing ICS: Becoming an Industrial Cyber Security Professional

Additionally, we have been actively designing skills frameworks and learning paths for ICS users and, as the portfolio grows, more of the courses offered are being accredited to GCT (GCHQ Certified Training) level. An example can be seen below:

Useful Resources

Although there is a huge resource set for this subject quite often the comment we hear from customers is "But I don't know where to find it!". Therefore, we have identified a set of links to useful resources and related sites which can be found here


"A thorough and comprehensive review in a short 2 day course, highlighting many key areas to take away and review.”

Bob W, Energy company attendee - Feb 2017

Our Clients include:


United Utilities.png