A hands-on roadmap to the GICSP exam and industrial cybersecurity best practices
 

In Practical Industrial Cybersecurity: ICS, Industry 4.0, and IIoT, a team of veteran computer security professionals and educators delivers an accessible and authoritative discussion of the tools and techniques used by industrial cybersecurity professionals. The book walks you through the foundations of a modern cybersecurity skillset as it is applied in an industrial setting, as well as the skills and competencies you’ll need to succeed on the Global Industrial Cyber Security Professional (GICSP) exam.

The authors provide comprehensive coverage that is fully consistent with the National Institute of Standards and Technology (NIST) guidelines governing the establishment of secure industrial control systems (ICS). They present explanations of best practices in the design and implementation of ICS architecture, module and element hardening, security assessment and governance, risk management, and more.

•  An indispensable handbook for anyone preparing for the GICSP exam, as well as industry professionals seeking to upgrade their on-the-job, industrial cybersecurity skillset, Practical Industrial Cybersecurity also offers:

• •  Understand and configure access management
• •  Implement disaster recovery and business continuity strategies
• •  Plan and design industrial control systems architecture
• •  Assess and monitor industrial control system security
• •  Build a physical security system that complements your industrial cybersecurity setup

Full of hands-on explanations and practical guidance, this book also includes:

• 
  •  Comprehensive coverage consistent with the National Institute of Standards and Technology guidelines for establishing secure industrial control systems (ICS)
• •  Rigorous explorations of ICS architecture, module and element hardening, security assessment, security governance, risk management, and more

Practical Industrial Cybersecurity is an indispensable read for anyone preparing for the Global Industrial Cyber Security Professional (GICSP) exam offered by the Global Information Assurance Certification (GIAC). It also belongs on the bookshelves of cybersecurity personnel at industrial process control and utility companies.

Practical Industrial Cybersecurity provides key insights to the Purdue ANSI/ISA 95 Industrial Network Security reference model and how it is implemented from the production floor level to the Internet connection of the corporate network. It is a valuable tool for professionals already working in the ICS/Utility network environment, IT cybersecurity personnel transitioning to the OT network environment, and those looking for a rewarding entry point into the cybersecurity field.

About the Author

CHARLES J. BROOKS is the co-Owner and Vice President of Educational Technologies Group Inc and the co-Owner of eITPrep LLP. He oversees research and product development at those organizations and has authored several books, including the A+ Certification Training Guide and The Complete Introductory Computer Course. For the past eight years Charles has been lecturing and providing Instructor training for cybersecurity teachers throughout the U.S. and abroad. His latest projects have been associated with IT and OT cybersecurity courses and hands-on lab activities that include Cybersecurity Essentials ― Concepts & Practices; Cybersecurity Essentials – Environments & Testing; and Industrial Network Cybersecurity.

PHILIP A. CRAIG JR is the founder of BlackByte Cyber Security, LLC, a consultancy formed to develop new cybersecurity tools and tactics for use in U.S Critical Infrastructure. He oversees research and product development for the U.S. Department of Energy (DOE), the Defense Advanced Research Projects Agency (DARPA), and the National Rural Electric Cooperative Association (NRECA), as well as providing expert knowledge in next generation signal isolation techniques to protect automated controls in energy generation, transmission, and distribution systems. Mr. Craig has authored regulation for both the Nuclear Regulatory Commission (NRC) and National Energy Reliability Corporation (NERC) and is an active cyber responder in federal partnerships for incident response.