Join us for the FREE Cyber Defense Forum | Live Online on October 9


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

SANS ICS and SCADA security training

Updated course to reflect real world threats and hands-on incident response practices

  • UK
  • 12th May 2015

Directly following and in support of the International Atomic Energy Agency upcoming International Conference on Computer Security in a Nuclear World, the SANS Institute will be running its recently updated ICS410: ICS/SCADA Security Essentials course in Vienna.

The course intersects with the IAEA event that will receive representatives from the energy sector and International Criminal Police Organisation - INTERPOL, International Telecommunication Union (ITU), United Nations Interregional Crime and Justice Research Institute (UNICRI) and International Electrotechnical Commission (IEC).

"The energy sector has experienced real world cyber-attacks in the last few years that have led to significant damage which has sharpened the focus around information and computer security best practice," says Graham Speake, SANS Instructor and Vice President and Chief Product Architect at NexDefense. Speake, a recognised expert in the field of ICS and SCADA security with over 30 years' experience was Principal Systems Architect for Yokogawa Electric Corporation, ISCI Marketing Chair, and an IEC62443 editor.

"Much of the ICS and SCADA based systems within energy are over 10 years old and don't get upgraded often, which leaves the technology susceptible to cyber-attack and potentially worse, a sense of complacency within operators," says Speake who also spent over a decade at BP looking at control systems security in both upstream and downstream business areas.

The ICS410: ICS/SCADA Security Essentials course has been updated to provide a foundational set of standardised skills and knowledge for industrial cybersecurity professionals. The course is designed to ensure that the workforce involved in supporting and defending industrial control systems is trained to keep the operational environment safe, secure, and resilient against current and emerging cyber threats.

"One of the areas that has undergone some changes is the incident response exercise that we run during the course that has been updated to reflect the types of attacks that we are seeing more commonly out in the wild," says Speake, "It is also worth noting that the course is attracting more students from outside of energy including other national infrastructure providers as well as manufacturing who often rely on similar systems and protocols."

The course also aims to support the IAEA efforts to raise awareness of the growing threat of cyberattacks and their potential impact on nuclear security, and its ongoing efforts to foster international cooperation and to assist the States in this area through the establishment of appropriate guidance, and by providing for its application.

"The IAEA efforts should be applauded but with few country level Infosecurity regulations; it is vital that organisations and suppliers to CNI take a lead in training staff, implementing best practice and keeping pace with the threat landscape," Speake adds.

The course runs from Saturday June 6th to Wednesday June 10th and is hosted in the Melia Vienna Hotel. ICS410 is also recommended preparation for the globally recognised GICSP Certification (Global Industrial Cyber Security Practitioner) from GIAC and reduced certification attempt price is available for all students attending the training. For more information or to register, please visit:

Media Contact

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (