SCADAhacker.com

EUROPE COURSES CONFIRMED! RESERVE YOUR SEAT NOW ...
SCADAhacker and Training Partner vanderVoort Cyber Security have teamed up to offer advanced course "Understanding and Security Industrial Control Systems"! Details in the Training section. You can also down a flyer here.

SCADAhacker offers professional cyber security services to a range of industrial clients including end users, owner/operators, engineering contractors, system integrators, distributors, security partners and control system vendors. SCADAhacker approaches cyber security in a fashion similar to industrial functional safety, and offers services that meet the unique needs of each client located in industrial sites and corporate offices globally.

With nearly 30 years experience in the industrial automation and control sector, you can be assured that SCADAhacker focuses on the unique aspects of applying the security priorities of Safety, Availability, Integrity and Confidentiality to industrial automation solutions covering not only Supervisory Control and Data Acquisition (SCADA) and Distributed Control Systems (DCS), but the complete automation solution ranging from field instrumentation up to and including integration with enterprise-wide applications.

The services available to clients fall into the following general categories and include security awareness, training, control system services relating to defense (security design) and testing (security assessments), and research.

	CYBER SECURITY TRAINING
	One of the biggest challenges facing industry is the shortage of resources that understand not only traditional IT security concepts, but all have knowledge of the design and operation of industrial control systems. Training curriculum is available to improve the knowledge of your team in both offensive (assessments and penetration) and defensive (security controls and audits) roles.

	ICS (DCS / SCADA) SECURITY SERVICES
	Professional services are available to cover the complete lifecycle of control system security including risk assessments, risk classification, threat identification, security control selection, standards compliance, pre-commissioning testing, commissioning assistance, site audits and assemments. All services are performed using a unique "hard hat" approach to ICS security..

SECURITY RESEARCH & DEVELOPMENT

Equally important to securing control systems from cyber threats is the research that takes place to both uncover and understand vulnerabilities that could impact the availability of the control system, as well as investigating new methods to improve the overall security of the automation solution. Papers and presentations are delivered at various conferences throughout the year, as well as a detailed Resources area of the site for visitors to learn more about ICS security, including documentation, videos, and security tools.

An equally important aspect of cyber security for critical infrastructure protection focuses on basic understanding and awareness of the real-world threats and vulnerabilities that exist within the industrial automation and control system architectures used within most process industries and manufacturing facilities. These issues face the Distribution Control Systems (DCS) and Supervisory Control and Data Acquisition Systems (SCADA) that comprise most industrial environments, and impact not on the common IT infrastructure like Windows-based computers and network appliances (switches, routers and firewalls), but also embedded "proprietary" equipment such as programmable logic controllers (PLC), basic process controllers (BPCS), safety instrumented systems (SIS), operator panels, and ancillary systems that are the basis of most integrated ICS architectures.

One key objective of the SCADAhacker website is to provide a vital source of information that helps visitors understand and secure ICS systems used within most process and manufacturing environments. SCADAhacker provides visitors with a comprehensive collection of security-related resources including tools commonly used to secure and test ICS architectures, information on the latest threats, vulnerabilities, and exploits that exist for ICS architectures, and a comprehensive library of the latest in standards, best practices, guidelines, and ICS-related information that can be used to help improve the security of any ICS system.

A dashboard is also now available which provides visitors with a real-time look into the global security landscape looking at current threat vectors used to launch attacks, as well as the origin of leading threat agents (sources). This information is retransmitted from the Multi-State Information Sharing and Analysis Center (MS-ISAC) in cooperation with the Center for Internet Security.  

Midwest InfraGard 2013 Super Conference
SCADAhacker will be presenting an exciting candid talk and live demonstration of the cyber threats facing the ICS community at the upcoming InfraGard Midwest Super Conference May 22-23 in Wisconsin Dells, WI.