The I3P will kick off the Annual API IT Security Conference on October 5 with a half-day security course.
This course provides technical knowledge and first-hand practical experience to better understand the vulnerabilities of control systems to attack and also strategies for mitigating those attacks.
The target audience is control system operators and security managers in the oil and gas industry.
Instruction will be provided by security experts and I3P researchers from Sandia National Laboratories, who are studying the security of control systems in the oil and gas industry and other critical infrastructures (Survivability and Recovery of Process Control Systems).
The I3P course--by offering a combination of lectures and hands-on exercises--will heighten the participants' awareness of cyber vulnerabilities and risks and also improve their understanding of mitigation strategies.
Lectures will include:
In addition, two breakout sessions are offered. In response to industry requests, the course includes a detailed breakout session on wireless security featuring an overview of current and emerging wireless technologies, an explanation and demonstration of vulnerabilities, and a summary and demonstration of security features in 802.11i. A second breakout session provides access to virtualized control system test beds. This hands-on opportunity will allow participants to witness, and therefore better understand various cyber attacks, and then configure and test hardened security architecture using a DMZ, strict firewall rules, and open-source IDS.
Registration is available online through the API website at http://www.api.org/meetings/topics/technology/it-security.cfm.
Early registration ends October 8.
