power point presentation
Developing Cyber Security Improvement Plan for an Industrial Control System
- Case Learning Objectives:
This assignment provides practical experience developing a plan to improve security on an Industrial Control System based on a completed Cyber Security risk assessment (provided to the student). The following learning objectives are designed to reinforce the unique requirements associated with Industrial Control System Security.
Document and communicate the current state for security of the ICS
Provide an overview of the network design including major weaknesses in the physical design and layout of network components with suggested network layout improvements
Identify the threats and vulnerabilities facing the assets of an Industrial Control System including Advanced Persistent Threats and recommend potential security measures that could have prevented those incidents
Understand applicable regulations and include provisions for achieving compliance within the plan
Based on knowledge of recommended security best practices and standards, document and communicate the desired future state for security of the ICS
Build the plan in a way that incorporates differing levels of security controls depending on risk and criticality of the various devices within the system
Demonstrate understanding of ICS functionality, network components, and protocols by devising a plan that improves security and concurrently minimizes negative impact to process operations and productivity
Provide multiple options for security enhancements to management with guidance on trade-offs involved with the different options
Demonstrate awareness of the unique challenges the exist in securing Industrial Control Systems and customize security plan to address those challenges
Build your security improvement plan while taking into account the following assumptions.
The information provided in the risk assessment is accurate
Time Horizon for implementation is 12-24 months
DHS Regulated Chemical of Interest is used at the Pressurization Station which is physically isolated from the main plant site at a remote location with good physical security
Sample organization is using two ICS standards systems to target Cyber Security improvements:
NIST Guide to Industrial Control Systems (ICS) Security as its preferred guidance document
Department of Homeland Security CFATS regulation where chemicals of Interest are used
Security on the business network is average for a mid-sized corporation but has much room for improvement and routinely deals with malware infection and security incidents.
- Assignment Requirements
Security Improvement Plan
| Requirement | Description | Grading |
| Knowledge of Content elements per Rubric | The plan must address all areas listed in rubric (e.g., current state description, network topology review, regulations, etc.) | Refer to Rubric |
| Critical Thinking elements per Rubric | The plan must address all areas listed in rubric (e.g., unique challenges, security/functionality balance, etc.) | Refer to Rubric |
| Security Improvement recommendations in at least 5 Standards Compliance areas | These Standards Compliance Areas are listed on page 10 of the Site Summary Report PureLand Wastewater on Blackboard |
Security Improvement Presentation
| Requirement | Description | Grading |
| Oral Presentation requirements per Rubric | Good preparation, introduction, logical, organized presentation, concluding remarks, meeting time requirements. | Refer to Rubric |
| 20 minute presentation | Your audience is PureLand WasteWater staff so make a case of how your plan addresses their unique needs and why you believe it will significantly improve their security and compliance posture. | Refer to Rubric |
References
[1] National Institute of Standards Technology Standard, Guide to Industrial Control Systems (ICS) Security, NIST special publication 800-82. Available at:
http://csrc.nist.gov/publications/nistpubs/800-82/SP800-82-final.pdf
