ICS405 – Securing ICS: Becoming an Industrial Cyber Security Professional





The Securing ICS: Becoming an Industrial Cyber Security Professional course has been designed to provide those at IT/OT operator or equivalent level with an enhanced understanding of today’s cyber security challenges facing their ICS environments. This knowledge is vital when managing the day to day running of all aspects of security risk for those environments. This course will show students how to combine the disciplines of IT, Operational Technology (OT), Physical Security or Facilities Management to best support their organisations’ cyber security and risk reduction strategies for their ICS environments across multiple industry sectors. In addition, it will provide students with the knowledge level required to challenge the GICSP® certification.

Who should attend?

Anyone working to secure an ICS environment. Non-ICS staff who need to understand ICS terminology and how it differs from their current roles. If you are a professional working in an ICS environment including:
  • Site/Asset Operators
  • Procurement/Contract staff
  • Supply chain staff
  • Site/Asset IT Support engineers
  • Site/Asset Physical Security/Facilities Manager staff
  • Integration/third party professionals


There are no pre-requisites for this course and a configured laptop is required (configuration instructions are provided). However, all attendees need a good understanding of either basic IT or OT skills. In addition, a course handbook is provided that can be used for the exam (which is an open-book exam).


Attendees can earn 30 CPEs.

CyBOK Knowledge Areas

This course aligns to the following Knowledge Areas:
  • Cyber-Physical Systems
  • Distributed Systems Security
  • Risk Management and Governance
  • Security Operations and Incident Management


Please note that attendees will be asked to download certain software for the purposes of training and should not bring a regular corporate build laptop for this course! When installing software for this course, there is always a chance of damaging or interfering with something else on the system. Students should assume that all data could be lost.

What you will learn on this course

By the end of the course, you will be familiar with:
  • What exactly is an ICS?
  • How to identify the current and emerging threats to your ICS environments
  • Where your ICS environments may be vulnerable
  • What actions you may need to take to secure those environments and help reduce the risk to your organisation, nation and supply chain
  • How to prepare for and handle a cyber security incident in an ICS environment
  • The need for structured Security Awareness and Training
  • Prepare for the exam

Course Duration

The course consists of 5 days classroom training broken down into a mix of lectures, discussions and exercises.

Course Contents

The course follows a whole lifecycle approach for designing, implementing, monitoring and decommissioning an ICS with security in mind and covers the following modules
  • ICS Basics (for non-OT attendees)
  • Cyber security essentials (for OT attendees)
  • ICS Security governance and security risk
  • ICS ArchitectureICS Hardening
  • Access Management
  • Physical Security
  • ICS Security Assessments
  • ICS Security Monitoring
  • Cyber Incident Management
  • Cyber TTX
  • Exam Preparation (please note that the cost of the GICSP exam is not included in the course cost)
  • Exam
This course has been designed for an attendee to be trained to a level that allows them to undertaking the GIAC GICSP certificate, although the exam is not included in the course.

What training should follow on from this?

This course is a skilled level course, but it can also be used as preparation for more advanced training such as the Siker ICS505: Advanced ICS Security (due late-2023) course as well as preparing for the GIAC Global Industrial Cyber Security Professional (GICSP) certification.   “When I first got involved with the design and development of the GICSP I was really excited by the drive and the passion of the highly skilled group who got together in Houston and worked so hard to bring the concept to life. In those early days, the main thrust was to give the IT and the OT sides a common view of ‘the other side of the firewall’. This certificate remains the baseline for someone entering the world of IT/OT security and this course will take you there” TIM HARWOOD (AUTHOR) 2016   “Fantastic course, with a great and knowledgeable instructor thrown in! I learnt so much to take away and look into when I get back to work” ANDY A, CIVIL NUCLEAR, NOVEMBER 2018   “The instructor’s teaching techniques, real-world examples and ability to share information were invaluable” DAN S, ENERGY, MARCH 2018 Siker Instructors also deliver the ICS405 course as part of our partnership with QA. Courses are delivered throughout the UK and can be booked either through your QA sales manager or by clicking here. Current QA courses Contact us for details  

This website uses cookies.

We use them to give you yhe best experience. If you continue to use our website, you are consenting to receive all cookies on this site.