OT-ICS Cybersecurity SOC/SIEM Implementation with WSUS & AD

Name: OT-ICS Cybersecurity SOC/SIEM Implementation with WSUS & AD
Price: 64.99 USD
Rating: 4.3 (53 reviews)

Create full functional SIEM and SOC dashboard on Security Onion solution with SOC/NOC visualizations.

(53 ratings)

586 students

Created by Sourabh Suman

Last updated 4/2023

English

English [Auto]

What you'll learn

Design own SIEM/SOC Lab for ICS Environment
Working on Azure for deploying ICS machines and SOC lab
Complete end to end log integration and visualization
IDS/IPS Solution deployment and visualization
Hands-on experience of cybersecurity control deployment
Log forwarding from Firewalls, Endpoints and Applications.
Life time creation of lab for multiple use cases with pay as you go from Azure
Create and destroy as many workstations, HMI, Servers you want to

Requirements

Basic Industrial Software Knowledge Windows Server, Workstation
Prior experience in ICS required
Understands SIEM Solution
Intent for learning is much required
If you are IT guy, you know all, it will be video game for you, don't buy!

Description

*MAKE YOUR OWN ICS SIEM/SOC LAB SETUP WITHOUT HARDWARE*

Welcome to our comprehensive course on ICS Cybersecurity from end-to-end deployment. This course covers key concepts essential to safeguarding Industrial Automation and Control Systems cybersecurity.

We will delve into critical cybersecurity components such as Security Information and Event Management (SIEM), with a focus on Elasticsearch-Logstash-Kibana (ELK Stack), SIEM Dashboarding/ Query: Kibana, and NOC- Network Monitoring/ Operations Dashboarding: Grafana.

You will also learn about EDR/HIDS - Endpoint Detection and Response/ Host Intrusion Detection: Wazuh, Log Management: Beats/Sysmon (Log collector for Windows Event logs and more), Asset Management: OSQuery - FleetDM, Endpoint Visibility: Sysmon, Malware Detection: Strelka, Firewall: pfsense (Firewall), and IPS-Intrusion Prevention System: Snort Based.

We will also explore Nmap for network-based queries, Vulnerability Management: Using Nessus, Active Directory- Windows Server, WSUS-Windows Server Update Services, Modbus Communication, DNP3 communication, and OPC Server-Client Communication.

By the end of this course, you will have a comprehensive understanding of ICS Cybersecurity from end-to-end deployment, including key concepts and tools essential to safeguarding your systems. Enroll now to gain valuable knowledge and expertise in this critical field.

This course is totally practical, in all chapters we are installing, configuring, or deploying something on machines located in azure infrastructure, and it's simple, I promise.

We will cover some key concepts of ICS Cybersecurity from end-to-end deployment which are as follows:

Security information and event management (SIEM): Elasticsearch-Logstash-Kibana (ELK Stack)
SIEM Dashboarding/ Query: Kibana
NOC- Network Monitoring/ Operations Dashboarding: Grafana
EDR/HIDS - Endpoint Detection and Response/ Host Intrusion Detection: Wazuh
Log Management: Beats/Sysmon (Log collector for Windows Event logs and more)
Asset Management: OSQuery - FleetDM
Endpoint Visibility: Sysmon
Malware Detection: Strelka
Firewall: pfsense (Firewall)
IPS-Intrusion Prevention System: Snort Based
Nmap for network-based queries
Vulnerability Management: Using Nessus
Active Directory- Windows Server
WSUS-Windows Server Update Services
Modbus Communication
DNP3 communication
OPC Server-Client Communication

And this is a dynamic list, and with time keeps on updating and increasing to increase coverage.

* Connect to me on Linkedin/ or visit cyberotsecure{dot}com website to get discounts.*

The environment is deployed on Azure with the cheapest region and minimum resource requirements. All the steps are guided and well explained so that you can follow and create your own ICS SOC easily. after doing this course you will have a good understanding of cybersecurity technologies that are in use in the ICS landscape as well as in the overall industrial control system environment. You can run all types of tests and simulate this environment, you can also install applications from your organization to test in a similar mode.

Who this course is for:

Control engineers, integrators, and architects who design or implement OT systems
System administrators, engineers, and other information technology (IT) professionals who administer, patch, or secure OT systems
Security consultants who perform security assessments and penetration testing of OT systems
Researchers and analysts who are trying to have hands-on experience
Engineers who need practical understanding of systems
Vendors that are developing products that will be deployed as part of an OT system

Sourabh Suman

10000+ Enrollments | NIST | IEC 62443 | MITRE | GICSP

4.2 Instructor Rating
1,359 Reviews
7,805 Students
9 Courses

Sourabh Suman is a renowned ICS cybersecurity expert, an engaging instructor on Udemy, and a sought-after speaker at industry conferences. With over a decade of experience working with elite companies like JPL, Schneider Electric, Siemens, and Capgemini, he has implemented several mega cybersecurity projects.

Sourabh is known for his practical, hands-on approach and has authored "Unblocking Your Potential in ICS Cybersecurity," a comprehensive guide for those interested in building a successful career in this field. His Udemy courses on industrial automation, network security, and risk management are among the most popular in the industry.

His clarity, depth of knowledge, and engaging teaching style have helped numerous professionals transform their careers, making him a valuable asset to the ICS cybersecurity industry.

He holds Bachelors in Technology degree in Control and Instrumentation followed by Post graduate in Management. He loves teaching and is passionate about spreading awareness on ICS cybersecurity.

Lets join hands to understand ICS cybersecurity and safeguard these critical infrastructures.