Talk With an Expert

Industrial Control System Cyber Incident Response

Industrial Control System Cyber Incident Response (PDF, 0.67MB)Published: 19 May, 2025
Created by:
SANS Institute
SANS Institute

This poster offers guidance on preparing for and performing cyber Incident Response (IR) for Industrial Control System (ICS) environments. For the most effective industrial IR and established industrial NSM (Network Security Monitoring) program an updated ICS Asset Inventory is best. See related ICS NSM Poster to assist with this control system network security monitoring and proactive defense.

Author

SANS Institute
SANS Institute

SANS Institute

Launched in 1989 as a cooperative for information security thought leadership, it is SANS’ ongoing mission to empower cyber security professionals with the practical skills and knowledge they need to make our world a safer place.

Read more about SANS Institute